Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/ee8b98-7240-4b62-acc5-780a25cd0dd9/1/We2ZtgzVV-o2FaqtR72itzqRcIc.roa
File: We2ZtgzVV-o2FaqtR72itzqRcIc.roa (raw, json)
Hash identifier: kO199FyJ7RgUqt9rreCO91K7dqx63YjPzKMufwWpwb8=
Subject key identifier: 59:ED:99:B6:0C:D5:57:EA:36:15:AA:AD:47:BD:A2:B7:3A:91:70:87
Certificate issuer: /CN=4d5a2921fbeb8a448e7ae1ec5a11b8ab898d22fd
Certificate serial: 0194258F51E6EB78373CBCA7AAFDCC1C08F4
Authority key identifier: 4D:5A:29:21:FB:EB:8A:44:8E:7A:E1:EC:5A:11:B8:AB:89:8D:22:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TVopIfvrikSOeuHsWhG4q4mNIv0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/ee8b98-7240-4b62-acc5-780a25cd0dd9/1/We2ZtgzVV-o2FaqtR72itzqRcIc.roa
Signing time: Thu 02 Jan 2025 05:48:57 +0000
ROA not before: Thu 02 Jan 2025 05:48:57 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 216084
IP address blocks: 2001:728:1407::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:51:e6:eb:78:37:3c:bc:a7:aa:fd:cc:1c:08:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d5a2921fbeb8a448e7ae1ec5a11b8ab898d22fd
Validity
Not Before: Jan 2 05:48:57 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=59ed99b60cd557ea3615aaad47bda2b73a917087
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:5b:17:27:e5:d9:64:e2:60:30:55:e6:f3:8d:
c3:cd:b3:a5:7e:55:51:db:e1:ee:c8:3a:e1:1f:8a:
d2:3c:95:c6:d1:dc:11:9a:2a:45:b3:9a:c7:56:24:
94:5e:95:cd:af:53:fa:57:64:d9:33:d7:bf:05:58:
9a:ee:76:c2:2e:61:bf:54:d1:b5:01:0c:ca:9d:eb:
39:ad:72:5a:f4:40:7a:fa:e6:7b:c9:22:c4:4c:e3:
fa:be:81:4e:f2:81:de:24:ab:75:82:82:45:71:c1:
7e:f3:4f:03:0e:3e:d6:59:2d:3a:8e:a9:c2:77:4d:
b9:48:8d:f9:c0:26:ba:d6:e8:62:6e:ac:b5:67:1f:
3a:a7:e5:e9:a8:81:79:53:2a:ee:c1:34:8c:4e:37:
1a:76:67:5e:d0:dc:54:06:38:41:32:4f:e9:9c:d3:
61:58:ef:54:17:a4:49:53:81:99:23:70:35:b0:37:
f2:25:72:08:34:61:8c:e2:39:a4:be:da:d5:eb:61:
ce:0c:61:4e:43:01:c7:95:3a:6c:e0:4c:d9:22:fd:
b9:cb:e9:6a:f3:1d:a7:e5:aa:5d:86:1c:f5:5a:d7:
d1:99:06:e5:72:ce:50:d7:dd:3a:bf:1e:6b:1d:04:
20:1a:ee:c1:46:d5:3d:32:7a:4f:60:40:04:5d:4a:
b7:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:ED:99:B6:0C:D5:57:EA:36:15:AA:AD:47:BD:A2:B7:3A:91:70:87
X509v3 Authority Key Identifier:
keyid:4D:5A:29:21:FB:EB:8A:44:8E:7A:E1:EC:5A:11:B8:AB:89:8D:22:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TVopIfvrikSOeuHsWhG4q4mNIv0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/ee8b98-7240-4b62-acc5-780a25cd0dd9/1/We2ZtgzVV-o2FaqtR72itzqRcIc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/ee8b98-7240-4b62-acc5-780a25cd0dd9/1/TVopIfvrikSOeuHsWhG4q4mNIv0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:728:1407::/48
Signature Algorithm: sha256WithRSAEncryption
1d:a2:24:b8:bb:e1:24:ef:c9:11:87:83:c2:f8:90:4d:9f:0c:
56:25:9c:2b:63:48:31:9c:41:8f:a5:dd:66:0a:7d:a8:25:0e:
e3:2f:5e:0a:ee:3b:d6:e3:67:53:c2:e0:16:84:1c:34:df:57:
48:cf:db:39:2f:2a:75:2e:a3:22:21:d3:a6:f7:c9:b6:ca:d9:
97:ab:27:65:08:29:fe:94:c6:64:4e:35:33:e4:90:bb:22:6c:
c1:30:b0:0e:fe:aa:90:ca:e5:d0:41:24:36:9e:9f:2d:56:32:
2c:04:b2:fb:d8:57:2d:89:c4:2e:02:17:3f:d5:e5:7c:d6:a9:
c0:71:51:76:eb:4b:2b:92:c8:7f:46:94:95:41:3f:7c:09:7a:
86:c5:4c:d3:30:f9:4a:cf:bd:e2:89:83:13:a2:24:20:95:7b:
1b:36:46:c1:80:a7:e2:f5:02:9f:d3:5d:82:df:65:ad:64:b3:
d8:1e:2d:db:00:73:74:39:0c:74:9e:72:cd:e7:b3:6d:84:93:
e9:06:9d:73:58:de:62:b0:d6:c8:7d:1b:e7:cd:e6:c7:ae:f6:
e5:d2:c2:ca:80:20:90:6c:9a:49:1d:f3:04:46:ed:af:85:2b:
37:87:36:9f:9d:07:1d:c5:6a:d3:c4:06:8a:1e:02:dc:bf:53:
24:83:d3:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:55:31 2025 by rpki-client