Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/JUjbvXmVQNFmg8gFzfF7TJRUjCA.roa
File: JUjbvXmVQNFmg8gFzfF7TJRUjCA.roa (raw, json)
Hash identifier: LQPv4a+jDGGGdY2qK+PdvLidHybbhb2XqnrS+1UopSk=
Subject key identifier: 25:48:DB:BD:79:95:40:D1:66:83:C8:05:CD:F1:7B:4C:94:54:8C:20
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 01941FFA8E0AD64F53B56EEAEEDE22C61E18
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/JUjbvXmVQNFmg8gFzfF7TJRUjCA.roa
Signing time: Wed 01 Jan 2025 03:48:21 +0000
ROA not before: Wed 01 Jan 2025 03:48:21 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 208210
IP address blocks: 2a0c:b641:870::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:8e:0a:d6:4f:53:b5:6e:ea:ee:de:22:c6:1e:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 1 03:48:21 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2548dbbd799540d16683c805cdf17b4c94548c20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:2e:99:2e:b7:d4:e2:b5:99:0d:2e:2d:7f:89:
be:b0:72:ae:82:87:b4:e7:54:84:69:2f:c8:8a:a3:
21:81:6d:f5:fc:ac:0a:78:9c:ed:ea:08:c8:4f:5a:
6e:57:a6:8e:f7:bf:83:45:ab:19:3c:b7:98:d1:fc:
30:7e:e2:53:2d:22:2e:d9:12:77:b6:52:69:18:ff:
9f:98:f2:a0:a3:70:b1:d5:08:68:1f:4d:e4:11:1a:
14:8f:65:cd:58:95:6e:02:fc:d1:2a:44:a0:99:f6:
bb:a0:6c:34:5e:b4:3e:bb:c6:c9:a7:b4:f0:29:48:
50:4e:86:cf:0e:0c:a9:fe:1d:ca:d5:be:a3:fb:28:
d4:46:1a:74:52:33:9a:93:40:36:eb:28:3d:10:30:
03:71:cc:fb:07:de:aa:70:df:b6:ba:55:a0:f9:dd:
43:76:90:f1:84:80:b5:d4:26:c1:fe:6a:bf:96:4d:
d3:93:eb:ff:d8:93:a8:86:d4:46:15:90:a2:2e:ee:
b0:8a:00:88:9c:de:4e:c4:68:32:4a:e9:a1:3e:2e:
9e:56:57:6e:e8:12:32:1a:80:4b:4a:ab:73:14:34:
9d:ad:3c:e7:a4:98:b6:a0:b9:59:9a:26:8d:40:3c:
b3:0e:c2:ed:ad:29:d7:f0:b2:19:c9:b1:ef:ae:4e:
54:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:48:DB:BD:79:95:40:D1:66:83:C8:05:CD:F1:7B:4C:94:54:8C:20
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/JUjbvXmVQNFmg8gFzfF7TJRUjCA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:870::/44
Signature Algorithm: sha256WithRSAEncryption
6e:0a:f3:ce:a2:f4:ed:da:3e:66:5b:bd:ab:93:84:35:61:29:
11:8d:a3:bf:86:b7:fa:7c:36:4f:91:be:04:03:da:68:88:8d:
98:ca:04:d2:ce:2e:8b:ec:ad:f2:78:b5:95:ca:04:37:f1:9b:
71:cc:4b:c5:1c:41:d7:d8:b8:79:1e:6a:8f:2f:c8:84:28:a1:
a0:2a:a6:03:73:6e:cc:dc:9f:cc:b5:dd:f3:7e:aa:b5:8d:c3:
2b:17:8c:67:26:6f:fb:eb:3e:40:70:f2:60:08:bd:0f:a9:39:
e9:d2:59:5d:2a:be:1a:c1:f1:6b:de:b2:9c:d1:24:4c:5c:c9:
97:e6:21:8f:95:c2:47:a0:d4:e3:64:18:31:8a:97:98:c1:c5:
24:ec:00:4a:e6:e2:81:db:47:24:05:d7:2e:b4:03:c2:b5:fc:
e4:51:15:4b:e4:eb:74:c3:27:50:2e:d0:d7:da:04:cf:03:9b:
01:20:5d:74:7c:af:47:89:b7:78:5f:94:c5:26:a5:32:3d:b2:
f6:8a:b7:6c:50:3a:a1:14:3b:22:f0:c6:c1:34:91:81:d6:7e:
a4:75:a6:e0:5c:f6:f5:60:eb:a8:12:68:65:8b:aa:d9:cf:48:
92:7e:78:e6:76:89:14:fe:3d:f1:02:83:41:dd:d9:0d:d8:23:
70:24:b0:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:03:58 2025 by rpki-client