Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/0Mj4xIlHfpjoo-BXFHC8fVTxB14.roa
File: 0Mj4xIlHfpjoo-BXFHC8fVTxB14.roa (raw, json)
Hash identifier: GvLoRJl3+oziyW0ye88c3AjgkcaR3y6hbObnLlxPXPo=
Subject key identifier: D0:C8:F8:C4:89:47:7E:98:E8:A3:E0:57:14:70:BC:7D:54:F1:07:5E
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 01941FFAB3A40782E3043191597543411853
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/0Mj4xIlHfpjoo-BXFHC8fVTxB14.roa
Signing time: Wed 01 Jan 2025 03:48:31 +0000
ROA not before: Wed 01 Jan 2025 03:48:31 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215016
IP address blocks: 2a0c:b641:c40::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:b3:a4:07:82:e3:04:31:91:59:75:43:41:18:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 1 03:48:31 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d0c8f8c489477e98e8a3e0571470bc7d54f1075e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:c4:f7:b1:6a:cd:7b:d0:9b:05:67:a3:07:da:
6c:37:cd:4f:9c:cf:c8:12:f9:70:d9:9d:e8:05:8c:
8b:81:17:32:ba:d6:8c:cd:b1:3c:f3:63:65:0e:6f:
63:53:61:4f:cd:4b:e9:9d:20:2e:c1:70:f6:9e:f3:
42:42:cc:26:24:72:03:31:60:f8:49:7c:91:fd:c9:
d6:aa:5c:dc:54:84:56:8e:61:69:f5:69:cf:f3:a0:
ba:da:b1:fb:b8:5c:d4:db:6e:d0:0e:01:9a:96:98:
6b:1a:e8:33:cb:e2:0e:4d:df:02:2b:cf:13:df:9d:
ce:bc:97:79:7b:22:ec:48:a4:60:05:e2:83:e7:f3:
49:9a:97:47:8b:df:ab:3b:33:54:5c:34:f6:29:c5:
a6:33:be:b0:79:a4:66:a0:a7:fa:64:6b:18:d7:ff:
b7:30:c5:16:df:88:8e:5c:6c:0e:34:31:8f:45:16:
5d:2d:2f:1a:09:bb:14:1c:40:d8:30:0c:83:1d:4a:
f2:4e:c7:fa:e9:11:92:0a:1e:d2:2a:1d:18:2a:99:
7f:55:14:7e:6e:b7:a6:aa:19:98:2b:25:74:24:cf:
09:39:ec:cc:24:7a:4d:45:f7:72:63:ff:a7:60:a8:
23:50:34:39:47:99:d2:d2:b6:49:28:a4:9e:ea:cd:
64:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:C8:F8:C4:89:47:7E:98:E8:A3:E0:57:14:70:BC:7D:54:F1:07:5E
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/0Mj4xIlHfpjoo-BXFHC8fVTxB14.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:c40::/44
Signature Algorithm: sha256WithRSAEncryption
73:fe:06:0e:fb:8c:ff:4c:28:d7:94:17:e5:d6:65:d7:33:83:
8d:6e:33:d5:f2:33:72:9d:3d:3c:59:24:6c:28:2a:41:98:e8:
7e:54:64:a1:fb:21:a8:a4:91:fa:3c:e0:72:a7:40:c7:8f:69:
6f:e0:f2:10:60:5a:4d:08:84:a0:11:66:d5:61:d9:3d:20:d0:
4c:d1:8f:7f:5d:72:98:a7:9e:31:6a:f7:17:13:5e:8e:94:f1:
d3:23:86:4b:c0:84:8b:fe:19:d5:ec:50:ee:98:a6:0c:aa:57:
15:6f:30:a6:d1:35:c4:9e:ec:df:8c:35:28:1c:18:16:8a:98:
90:e1:47:3a:4e:47:50:93:c3:80:8d:c7:ff:56:63:7b:a1:61:
d6:9b:85:59:eb:f8:78:99:aa:04:de:9f:20:3d:63:99:6d:40:
83:35:6c:56:d7:aa:66:bb:9c:1d:66:ac:d1:85:fe:b6:b4:fd:
c1:a7:b7:08:24:20:a1:96:0b:1f:63:18:8a:90:e8:ff:74:88:
3b:02:6f:45:b6:2c:a9:6d:75:b9:de:08:47:f6:99:00:35:fb:
ed:0d:c8:09:00:cb:6d:88:c9:36:6f:48:06:79:8c:6f:e9:0c:
19:e0:c7:48:ae:5c:4e:97:43:b6:fe:c3:63:93:0a:8e:2f:31:
0c:73:de:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:36:29 2025 by rpki-client