Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/12155c-cd13-4aa7-8949-638dcfa13003/1/lwTz-Iu-xRGiJCEKiYy6AXyhWVU.roa
File: lwTz-Iu-xRGiJCEKiYy6AXyhWVU.roa (raw, json)
Hash identifier: 9/KJ7UCtpwvfH6BEI/aqGtWMMZWRIfxm0UW7cHmVOtw=
Subject key identifier: 97:04:F3:F8:8B:BE:C5:11:A2:24:21:0A:89:8C:BA:01:7C:A1:59:55
Certificate issuer: /CN=97ea541c123faa9c0edc729f829e959fd292e37d
Certificate serial: 01942368E87DDEE48BB70B680B59F83C7FFD
Authority key identifier: 97:EA:54:1C:12:3F:AA:9C:0E:DC:72:9F:82:9E:95:9F:D2:92:E3:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l-pUHBI_qpwO3HKfgp6Vn9KS430.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/12155c-cd13-4aa7-8949-638dcfa13003/1/lwTz-Iu-xRGiJCEKiYy6AXyhWVU.roa
Signing time: Wed 01 Jan 2025 19:47:45 +0000
ROA not before: Wed 01 Jan 2025 19:47:45 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 16509
IP address blocks: 2a0d:9b84:ff00::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:68:e8:7d:de:e4:8b:b7:0b:68:0b:59:f8:3c:7f:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97ea541c123faa9c0edc729f829e959fd292e37d
Validity
Not Before: Jan 1 19:47:45 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9704f3f88bbec511a224210a898cba017ca15955
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:c1:b1:82:b5:e8:22:ed:7c:f3:40:dc:a1:e4:
6e:a9:0a:fb:03:8a:11:b4:7a:e2:5c:1a:11:6d:09:
f1:79:37:2f:66:6a:0e:5c:48:bc:90:2e:4b:8a:00:
8f:42:d9:ba:c3:a3:5c:43:33:d2:e6:8d:67:d3:da:
bf:c3:11:b5:24:d8:5f:51:a9:ff:af:19:72:34:aa:
03:4c:3d:bc:c1:ab:9b:81:f3:53:c1:24:5b:08:da:
82:b8:76:49:aa:20:4a:11:f6:ee:af:57:48:dc:e1:
60:d7:fb:87:30:9e:66:10:2d:67:4c:ce:cb:4a:5d:
b4:21:12:13:46:4a:4e:ad:01:64:9a:f3:b9:c6:ae:
c4:c3:ad:e5:51:ac:0c:ef:63:4d:10:13:69:7e:60:
5e:25:4c:4f:ea:0b:85:c4:36:70:90:0b:69:f9:05:
dc:69:27:89:b0:75:df:99:ca:b7:60:b6:35:30:33:
0b:21:61:80:8d:4f:44:22:21:4e:2c:12:db:8c:c3:
dd:38:ca:14:c9:36:3e:b6:47:54:1a:2c:68:29:2d:
80:82:bb:90:07:30:05:33:17:a8:68:de:ba:ca:a1:
a1:12:c8:59:ed:c7:42:a4:f4:11:a5:c6:c6:71:ac:
ad:cb:ce:97:c0:76:1f:ee:3d:8e:27:05:ca:f3:12:
50:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:04:F3:F8:8B:BE:C5:11:A2:24:21:0A:89:8C:BA:01:7C:A1:59:55
X509v3 Authority Key Identifier:
keyid:97:EA:54:1C:12:3F:AA:9C:0E:DC:72:9F:82:9E:95:9F:D2:92:E3:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l-pUHBI_qpwO3HKfgp6Vn9KS430.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/12155c-cd13-4aa7-8949-638dcfa13003/1/lwTz-Iu-xRGiJCEKiYy6AXyhWVU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/12155c-cd13-4aa7-8949-638dcfa13003/1/l-pUHBI_qpwO3HKfgp6Vn9KS430.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:9b84:ff00::/48
Signature Algorithm: sha256WithRSAEncryption
b8:ba:6b:3b:07:59:5c:b9:4f:fa:8a:48:80:4e:ba:e0:2f:6b:
82:e2:39:53:1c:31:43:12:b5:d1:a5:e1:46:4a:b4:4b:cf:5f:
47:2a:8c:a9:6f:de:aa:7f:22:7c:9b:a5:76:b7:27:44:23:36:
d3:59:73:de:23:8b:64:8b:39:4e:3c:69:73:6e:fd:15:cc:5b:
58:79:0e:17:bd:b3:53:bd:50:60:53:fa:28:23:ea:2d:2f:bd:
17:8c:f9:ba:a3:ac:8d:cb:ad:6c:27:b9:19:0f:c9:c4:75:df:
bd:dc:20:c5:a7:50:6e:e0:53:e6:8a:86:24:90:f7:16:2b:6a:
dd:a2:3e:ab:d7:ee:27:52:87:d0:e2:95:90:5c:1e:6b:66:49:
4d:89:c8:6f:65:dd:dc:75:e9:b2:90:c9:1f:45:43:58:59:a8:
39:9f:f1:a8:9a:32:03:a5:76:2f:7e:3b:97:a7:26:c7:74:c1:
b5:7d:8b:07:a8:88:dd:8f:d0:41:69:ec:84:38:18:bb:08:9f:
7c:0e:3b:8f:f8:c2:9a:da:af:d4:52:08:9d:45:b4:d2:5d:29:
f0:49:7e:3c:45:1e:73:a0:fd:5c:58:d4:33:62:ea:92:c5:02:
d5:52:e4:a5:be:3a:88:6d:4f:73:80:f5:bd:95:cc:f7:7b:4f:
37:5a:22:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 11:05:38 2025 by rpki-client