Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/BjnyGiZGjHiQKk_KiK2yHf9VV5E.roa
File: BjnyGiZGjHiQKk_KiK2yHf9VV5E.roa (raw, json)
Hash identifier: yPmoHixaBGhSn0ytp1vI4gHgRuEEubgW3Qlg0aIFvLw=
Subject key identifier: 06:39:F2:1A:26:46:8C:78:90:2A:4F:CA:88:AD:B2:1D:FF:55:57:91
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 019423D7BBC62D1F10A5D343E050A767E0EF
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/BjnyGiZGjHiQKk_KiK2yHf9VV5E.roa
Signing time: Wed 01 Jan 2025 21:48:48 +0000
ROA not before: Wed 01 Jan 2025 21:48:48 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 25198
IP address blocks: 2a12:d3c0::/29 maxlen: 30
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:bb:c6:2d:1f:10:a5:d3:43:e0:50:a7:67:e0:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: Jan 1 21:48:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0639f21a26468c78902a4fca88adb21dff555791
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:97:21:f1:e1:90:49:7d:74:ef:3a:10:89:44:
72:7d:18:b2:fc:80:06:d7:32:5f:93:83:62:5e:73:
31:92:83:45:5b:20:e4:d4:2b:99:54:e3:99:1d:93:
f9:e0:20:7d:3d:80:54:53:9b:dd:99:81:ad:73:d1:
6b:b5:f2:60:19:41:90:26:e4:9d:55:68:4a:66:5d:
51:74:d1:13:14:3b:40:97:8c:86:74:6d:1d:9d:b1:
8c:6e:60:04:53:2e:73:8c:b8:b0:15:68:77:66:c8:
5d:73:57:5d:cd:9e:b3:e6:28:e6:02:01:60:29:cf:
93:59:f3:d5:d1:e5:9a:aa:8d:fb:77:12:fe:7b:d4:
f3:f8:c0:a3:90:21:c6:37:4e:3f:e4:bc:88:41:a1:
e0:ce:ba:2a:b7:f1:60:8b:08:91:ae:b1:3d:24:2d:
58:c6:47:6d:15:56:86:91:bd:67:fd:a6:67:72:18:
73:33:28:85:76:db:f2:83:24:a5:68:21:a7:77:d4:
fb:df:31:3e:bf:e9:d1:9c:80:6b:b8:1a:48:53:25:
c4:45:40:59:cb:99:d7:6e:3d:50:cd:17:e7:34:54:
27:ee:20:9e:00:ac:7d:e2:7c:17:42:46:30:61:50:
25:9e:58:90:4f:5f:5b:db:49:96:3b:5d:ae:68:1c:
b1:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:39:F2:1A:26:46:8C:78:90:2A:4F:CA:88:AD:B2:1D:FF:55:57:91
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/BjnyGiZGjHiQKk_KiK2yHf9VV5E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:d3c0::/29
Signature Algorithm: sha256WithRSAEncryption
3f:4e:7e:42:76:ba:50:00:c6:1f:b7:fb:4b:f9:46:a0:6a:52:
47:fa:e6:82:49:5e:ea:70:61:8e:7a:8a:b2:63:c5:1c:8c:89:
3d:ed:68:1d:df:a4:5c:5e:49:61:e6:32:59:42:ee:57:ee:d5:
55:6e:9c:35:e7:ef:aa:a1:6e:ce:02:f9:b4:f3:b1:29:36:81:
1c:2a:55:e5:e6:87:74:ba:a5:2e:87:a4:d2:23:28:f0:4c:d0:
ed:6b:a4:24:2f:a6:55:b5:10:47:1a:26:28:6c:0d:fd:49:47:
f8:2e:91:ec:f4:a7:bc:5a:6a:e9:2b:fb:52:7e:c0:0f:9e:a1:
e2:69:18:be:d0:af:b3:b0:ec:c5:25:31:73:61:9f:3b:da:e7:
01:08:15:11:de:62:ce:e1:4f:1b:f3:e6:c6:48:32:13:e8:ed:
f1:1f:22:90:f5:17:68:df:9f:cc:72:a8:63:fb:19:5a:18:b0:
db:65:3a:40:6b:c2:a2:db:80:c4:8e:81:29:c3:26:6f:40:a7:
b8:9c:54:8f:d3:fe:36:35:8f:ce:b5:bc:33:c2:4a:66:c5:4e:
69:d2:33:de:a2:05:81:20:ee:b8:7a:80:1a:0f:a6:79:79:84:
7c:68:4d:b7:c1:90:13:87:1d:ae:3f:be:0c:6a:58:69:48:81:
0a:6a:a6:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:21:29 2025 by rpki-client