Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/NveKQeqCZlve2Sye5NYqlsLFsuA.roa
File: NveKQeqCZlve2Sye5NYqlsLFsuA.roa (raw, json)
Hash identifier: ZuyM0sJEf/K7YVoBas/4hsYriyHXNXKolsHxYiN/wk0=
Subject key identifier: 36:F7:8A:41:EA:82:66:5B:DE:D9:2C:9E:E4:D6:2A:96:C2:C5:B2:E0
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 01942220233C942D20392D16D63767E4E4F6
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/NveKQeqCZlve2Sye5NYqlsLFsuA.roa
Signing time: Wed 01 Jan 2025 13:48:38 +0000
ROA not before: Wed 01 Jan 2025 13:48:38 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8075
IP address blocks: 2a0e:8f02:f05a::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:20:23:3c:94:2d:20:39:2d:16:d6:37:67:e4:e4:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Jan 1 13:48:38 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=36f78a41ea82665bded92c9ee4d62a96c2c5b2e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:27:eb:74:47:3c:0c:cb:ee:2c:85:cb:06:c2:
cc:a7:f4:99:70:8e:af:01:3f:26:77:c4:95:99:2e:
2a:ff:a4:5b:12:56:3f:82:60:3b:04:68:7f:c1:ef:
10:04:e5:33:5d:a8:27:db:47:bb:3a:61:ac:77:43:
b1:c1:11:83:ce:c7:dd:00:1b:8c:69:94:a5:70:83:
d1:84:51:5a:5c:ad:e4:fb:3a:7a:76:ea:e2:02:9f:
0c:e8:30:93:26:a7:15:6f:20:e9:69:ef:40:78:00:
ee:e2:2d:6b:67:61:e0:38:e0:0c:72:dc:30:41:18:
45:71:a3:f5:4f:b2:65:2f:05:dc:ae:89:3c:7d:3b:
c0:c5:ed:39:d1:72:ac:03:55:a1:6f:76:d0:70:a7:
a7:ab:aa:e3:ec:fe:fa:5d:5c:85:e8:85:31:6c:aa:
a8:4f:e9:1d:84:25:9f:f0:ce:85:3e:a1:87:37:7e:
8f:6d:54:e8:b0:5c:c3:ab:dd:c1:80:ac:d6:12:13:
7d:ba:d5:9c:11:ab:23:4a:41:cd:06:e2:f5:af:0f:
7b:48:bf:94:bc:b5:f4:da:42:6c:f6:c6:33:76:e5:
a7:7b:78:a4:4b:ad:eb:c4:62:fb:73:99:f0:ed:fa:
a7:ec:2b:b6:46:d6:87:ff:89:a2:9b:20:f3:5b:95:
00:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:F7:8A:41:EA:82:66:5B:DE:D9:2C:9E:E4:D6:2A:96:C2:C5:B2:E0
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/NveKQeqCZlve2Sye5NYqlsLFsuA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:f05a::/48
Signature Algorithm: sha256WithRSAEncryption
60:94:46:c7:b8:a1:8d:fa:7b:ff:0e:f5:a2:a0:c7:6d:72:7e:
74:6d:ca:bc:1f:9a:70:73:d3:56:84:81:1c:90:d3:0b:17:86:
cf:b5:e3:c1:54:40:ee:5b:d0:3b:59:e3:4a:0a:90:f3:22:68:
81:0c:76:79:e4:1e:0d:01:12:38:82:2a:25:ba:ab:9b:51:d9:
ee:d1:72:b2:3d:16:b0:09:24:c8:8f:b2:33:82:4f:cf:7f:71:
51:14:ea:8e:b9:dc:79:f0:0d:51:aa:93:7b:ee:13:ac:4c:cf:
8a:0c:a0:cd:44:ff:4e:8f:c6:28:fc:13:81:0c:e8:eb:d5:71:
bf:9b:d8:ee:61:9f:ae:12:bc:7b:2b:fd:1a:50:79:5e:dd:d3:
14:ff:c1:6a:4d:5f:d3:3a:8c:62:b8:68:8e:c3:08:4f:dd:43:
3d:86:79:88:3b:7c:aa:04:d8:41:10:1b:48:29:40:38:76:ed:
69:d8:cf:8b:5f:ca:c3:e4:f4:0f:bf:92:96:8a:10:b8:a4:c3:
f7:28:47:38:ad:f5:2c:78:75:d2:21:8c:53:a8:8c:a5:e3:f4:
f9:18:d3:ea:81:55:99:a7:3a:d6:32:f5:23:16:ad:de:8b:f2:
0e:12:c0:ab:60:ed:58:6d:a0:68:c7:30:ed:f0:d7:67:1c:e9:
21:19:f2:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 06:41:20 2025 by rpki-client