Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/dd6e1d-abc9-473b-a91a-d8721375644a/1/A8RTU3pbGtIgr6vqM6RgMhjB6S4.roa
File: A8RTU3pbGtIgr6vqM6RgMhjB6S4.roa (raw, json)
Hash identifier: CblthdeWJ0lL4bSVOXyipIfCv+fQM/AOSVpBlIGAJ0A=
Subject key identifier: 03:C4:53:53:7A:5B:1A:D2:20:AF:AB:EA:33:A4:60:32:18:C1:E9:2E
Certificate issuer: /CN=5e0ff8aaf7453114147028d54ae1c693a8a147bc
Certificate serial: 019493EBB8430A41E1FF3F52E742E634E690
Authority key identifier: 5E:0F:F8:AA:F7:45:31:14:14:70:28:D5:4A:E1:C6:93:A8:A1:47:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xg_4qvdFMRQUcCjVSuHGk6ihR7w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/dd6e1d-abc9-473b-a91a-d8721375644a/1/A8RTU3pbGtIgr6vqM6RgMhjB6S4.roa
Signing time: Thu 23 Jan 2025 16:08:06 +0000
ROA not before: Thu 23 Jan 2025 16:08:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215730
IP address blocks: 2a0b:4142::/32 maxlen: 32
2a0b:4143::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:93:eb:b8:43:0a:41:e1:ff:3f:52:e7:42:e6:34:e6:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e0ff8aaf7453114147028d54ae1c693a8a147bc
Validity
Not Before: Jan 23 16:08:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=03c453537a5b1ad220afabea33a4603218c1e92e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:f0:24:25:60:74:47:53:df:e3:54:90:41:f7:
86:84:1c:b2:a6:86:9f:20:51:4c:72:ff:13:5f:f3:
d2:f5:c8:3b:cf:87:04:ae:2a:d1:f2:e2:4e:60:c1:
fc:23:6b:db:f6:83:8b:6b:cf:4a:94:8b:0f:6a:87:
5d:3b:23:99:9c:f6:7e:dd:58:9f:22:42:21:58:f3:
0a:2d:ce:59:54:fd:e9:76:47:ff:ed:2a:53:2f:17:
46:26:49:f9:d8:66:13:11:ca:8b:b6:7a:94:cb:cc:
ea:81:67:e6:13:e1:a6:82:bd:a1:e0:14:ff:02:df:
33:3a:37:3d:7e:e6:90:bb:15:20:f9:0d:ad:9f:22:
55:44:c7:83:a4:e3:1c:70:e8:59:77:1a:f6:28:3d:
ff:5c:a5:2b:23:94:74:8a:75:48:06:c1:4b:3e:2f:
d1:38:cf:90:70:0f:69:65:1e:53:76:f4:b0:a9:dd:
ca:80:1e:20:53:e2:cb:4a:50:e6:e5:69:97:82:14:
b7:21:ea:2b:2f:98:e4:86:d5:4f:d4:b8:d4:ec:ef:
df:a0:7c:2e:eb:2b:bb:70:54:02:9a:b0:cd:3a:66:
93:09:f6:51:22:e5:02:31:f0:68:31:e4:30:3b:83:
ae:d4:fb:5f:61:ca:07:25:97:9b:a1:96:49:7e:83:
a0:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:C4:53:53:7A:5B:1A:D2:20:AF:AB:EA:33:A4:60:32:18:C1:E9:2E
X509v3 Authority Key Identifier:
keyid:5E:0F:F8:AA:F7:45:31:14:14:70:28:D5:4A:E1:C6:93:A8:A1:47:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xg_4qvdFMRQUcCjVSuHGk6ihR7w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/dd6e1d-abc9-473b-a91a-d8721375644a/1/A8RTU3pbGtIgr6vqM6RgMhjB6S4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/dd6e1d-abc9-473b-a91a-d8721375644a/1/Xg_4qvdFMRQUcCjVSuHGk6ihR7w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:4142::/31
Signature Algorithm: sha256WithRSAEncryption
7e:54:e8:7b:63:36:12:3a:8a:39:a6:a5:52:05:b5:fa:40:c8:
42:08:39:fd:15:65:3a:e4:bb:13:5e:fa:6d:97:6a:1f:79:27:
89:ae:ca:78:11:16:5f:85:01:82:2b:32:dd:08:08:83:28:96:
19:ae:58:19:16:85:21:24:af:37:a8:eb:f1:25:0f:86:3a:41:
29:79:04:a1:a0:3a:48:a1:a1:c1:7a:41:09:d8:fb:1e:67:0b:
eb:45:54:4a:ed:d8:ce:b0:a4:91:56:2d:f8:95:33:c4:c7:46:
5f:fe:9b:d4:07:ca:7b:dd:e2:0d:9e:9d:74:1d:3f:cb:7d:46:
bd:b6:fb:58:35:0d:df:87:e7:57:3c:ae:1a:b0:74:b1:cf:6d:
ce:26:a7:8e:3a:f6:cc:a1:35:fe:b6:fd:e6:08:8b:00:aa:d4:
27:0e:05:ac:13:e0:1e:16:a7:ab:40:70:14:e2:fc:ea:1d:d2:
f5:08:b8:2e:e0:7c:af:5c:ea:9f:61:f3:a4:4d:13:fc:65:75:
01:e8:7b:d5:e1:f3:34:1a:18:f9:ab:52:07:25:f8:fb:f5:d9:
20:0f:68:97:cb:a8:55:64:45:07:e4:16:6a:06:ae:41:e3:2d:
7d:08:f9:18:ad:7d:fa:3d:ff:a7:9b:36:68:01:25:9e:5f:e6:
af:25:77:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 05:44:22 2025 by rpki-client