Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/3xENmcTCq9SEBK7kle27ajL_Unc.roa
File: 3xENmcTCq9SEBK7kle27ajL_Unc.roa (raw, json)
Hash identifier: tcfJsn1dKCEkoyuW2wli1rjr6jn+d+cvDbx2Q63NzgM=
Subject key identifier: DF:11:0D:99:C4:C2:AB:D4:84:04:AE:E4:95:ED:BB:6A:32:FF:52:77
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 01941FFA83B5983C02310AF822AC54DBA090
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/3xENmcTCq9SEBK7kle27ajL_Unc.roa
Signing time: Wed 01 Jan 2025 03:48:18 +0000
ROA not before: Wed 01 Jan 2025 03:48:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 200385
IP address blocks: 2a0c:b641:f0::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:83:b5:98:3c:02:31:0a:f8:22:ac:54:db:a0:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 1 03:48:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=df110d99c4c2abd48404aee495edbb6a32ff5277
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:9f:58:fc:2d:3e:65:77:6f:40:bc:16:d8:9b:
68:dd:8e:77:a1:e7:1f:b6:61:00:30:f4:c4:44:f3:
55:b2:03:a6:34:24:1d:3b:c0:40:3b:31:30:2d:09:
ff:19:77:3b:ab:f1:ac:8b:5f:66:38:b9:58:84:fc:
9a:86:e8:73:aa:c6:d0:53:b6:1e:2f:6e:04:66:55:
0c:1e:3a:f6:86:f0:08:b4:52:8e:29:03:ce:11:fb:
14:e0:78:6e:0d:e6:53:2d:a2:75:32:18:2d:d7:ac:
71:7d:1c:eb:c5:fa:13:02:af:76:68:fd:99:f2:a4:
b7:79:64:81:54:43:f5:2b:27:3a:8b:70:8d:cd:aa:
66:30:5a:c2:f2:a8:19:8f:2b:8d:82:7a:e1:e5:f3:
e0:ab:90:21:9b:eb:ee:84:cf:16:9f:f9:91:3d:44:
ba:42:67:1c:1a:51:77:02:38:db:f3:76:78:30:d8:
92:54:e9:0f:31:d3:04:e4:f4:81:71:a7:4d:f3:b6:
72:f9:1e:37:c1:e4:99:c0:b2:67:dd:16:db:9b:25:
f9:26:93:08:88:81:14:ea:af:9e:23:fc:7c:b3:e9:
db:96:66:4f:d1:0f:5c:80:24:b2:e7:43:45:39:95:
60:2a:4b:75:04:23:83:6c:a7:e8:85:05:0f:30:f9:
b4:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:11:0D:99:C4:C2:AB:D4:84:04:AE:E4:95:ED:BB:6A:32:FF:52:77
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/3xENmcTCq9SEBK7kle27ajL_Unc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:f0::/44
Signature Algorithm: sha256WithRSAEncryption
9f:84:07:94:8e:0b:7e:52:ba:79:e9:32:6a:07:42:c9:d1:d3:
83:43:76:2f:5d:f0:26:36:e0:46:5a:5f:c2:fe:c6:fb:40:14:
8e:6a:c8:e9:47:49:45:88:66:b1:cc:1a:b2:85:ec:10:e6:45:
d8:a4:7f:27:6e:87:3b:10:da:c1:1b:03:bd:08:ee:57:b3:b2:
c0:d4:9e:de:4d:e0:a9:54:d2:22:7d:0a:c1:76:73:84:1a:b0:
58:7a:f1:42:11:50:67:4b:c7:7a:5c:50:06:07:2d:b4:a2:e0:
29:27:2c:9a:88:56:de:47:91:ea:4b:ab:79:79:9c:3e:5f:e4:
c6:3b:24:01:e1:a8:76:81:1e:a6:7f:49:9d:03:fc:c2:1f:07:
1c:81:d6:27:e6:b9:ad:be:1a:7a:39:ea:06:b1:59:fe:a0:20:
cd:55:f6:43:ed:2e:9c:3c:56:60:b2:40:5c:af:ad:ba:16:23:
77:b0:eb:50:35:00:b0:0b:73:2f:02:97:c8:9c:9e:12:82:20:
84:59:72:53:46:b9:df:72:f3:13:0b:78:9a:2d:00:da:76:20:
bd:31:05:d2:63:05:e3:a4:e8:d1:6c:d1:e7:7f:bb:d6:c7:d2:
a0:7f:04:7e:9c:5d:69:0a:89:1d:0e:ff:89:52:6d:d3:06:e5:
82:84:d2:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:51:13 2025 by rpki-client