Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/1-IsyWjZz4AnzB8fb74lyTklVxZs.roa
File: 1-IsyWjZz4AnzB8fb74lyTklVxZs.roa (raw, json)
Hash identifier: ZocjizFmJtx+M21ZEOBbwlQzS0piZcuvMDsAos9HAc4=
Subject key identifier: F8:8B:32:5A:36:73:E0:09:F3:07:C7:DB:EF:89:72:4E:49:55:C5:9B
Certificate issuer: /CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Certificate serial: 0195BF3276060E56070323239B568B504003
Authority key identifier: 4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/1-IsyWjZz4AnzB8fb74lyTklVxZs.roa
Signing time: Sat 22 Mar 2025 18:51:50 +0000
ROA not before: Sat 22 Mar 2025 18:51:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 205659
IP address blocks: 2a14:1103:8000::/33 maxlen: 33
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:bf:32:76:06:0e:56:07:03:23:23:9b:56:8b:50:40:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Validity
Not Before: Mar 22 18:51:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f88b325a3673e009f307c7dbef89724e4955c59b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:26:5a:54:c1:07:ac:8c:f1:36:8b:a7:76:56:
08:30:74:13:a0:b2:40:4f:b7:59:e5:cc:8f:36:ca:
9b:fa:67:57:16:14:8c:c7:28:d0:1e:35:df:76:81:
6d:86:cc:cc:4a:f6:2c:cf:a6:9d:3e:7c:cb:84:2b:
e4:a3:cb:90:b3:cf:e1:d8:5f:eb:31:9e:4e:58:40:
68:94:47:c1:43:8c:e0:bc:47:32:5d:1b:16:05:b3:
7d:69:cc:1f:24:43:a1:49:f9:2f:00:38:f2:2b:85:
e3:70:48:44:18:6a:af:b2:53:9f:fa:a4:f3:32:36:
38:5b:51:f6:d0:98:fa:71:f4:2c:40:f9:07:a8:52:
63:e8:d9:c4:73:b4:6b:e3:a1:ee:ad:70:8a:10:fe:
8f:96:79:3d:6e:87:f5:b7:14:af:83:63:75:a8:f1:
6f:5f:49:d4:20:62:24:47:10:f4:6c:87:63:b0:f5:
7a:43:17:6c:4e:0b:94:7f:7b:63:c3:0d:97:01:3d:
be:d1:2c:cb:cc:03:17:18:cb:43:40:1e:24:7e:f1:
b7:d4:ba:fe:a3:e7:95:bb:6a:34:52:a5:cc:7e:4a:
40:0f:be:f0:3f:59:9e:cd:34:58:2e:4d:2c:07:11:
65:cd:93:be:b6:81:d5:34:e1:29:af:71:02:26:17:
26:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:8B:32:5A:36:73:E0:09:F3:07:C7:DB:EF:89:72:4E:49:55:C5:9B
X509v3 Authority Key Identifier:
keyid:4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/1-IsyWjZz4AnzB8fb74lyTklVxZs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:1103:8000::/33
Signature Algorithm: sha256WithRSAEncryption
04:01:61:e6:75:88:25:8d:10:2f:7a:98:f3:47:55:85:0e:19:
01:17:a5:56:4e:d9:6f:fd:7a:12:3f:4a:f7:ce:80:17:54:bb:
ef:8e:b7:bb:ee:ca:de:20:cd:bc:72:b8:c7:02:fb:d4:d0:db:
5f:32:4a:9e:03:e5:21:90:8b:38:71:81:ac:f2:20:c9:ed:fc:
8a:83:83:f1:98:4c:63:0b:ea:e1:d7:03:65:30:2a:2e:45:c7:
7b:26:29:83:f4:ee:2a:b5:ed:47:d1:ef:5e:15:82:85:52:74:
a3:78:f4:89:b9:58:a5:44:53:e4:4f:bf:24:a7:4e:70:1f:ea:
5a:d6:08:2c:37:ba:47:cb:0b:77:cd:01:7e:56:71:7b:fb:0e:
4e:43:bb:ac:43:f1:71:22:41:79:da:c1:de:c1:d6:c5:79:65:
d7:61:3c:dc:f8:0a:0c:79:75:b6:80:96:7e:04:8c:af:6c:54:
5e:f1:7a:f0:fb:3e:ca:91:05:3c:ce:60:b7:75:21:be:0d:c6:
ae:96:54:a4:b9:b1:7f:fe:3f:83:82:5f:d8:fd:1e:04:2a:d5:
51:6a:2d:7c:71:f2:1c:ba:4b:41:91:eb:ee:fc:50:36:99:d5:
d7:26:b7:c1:95:f4:32:fb:b6:34:49:8c:8b:d1:62:a8:be:f2:
ea:a2:5d:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:45:21 2025 by rpki-client