Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/O1F-ODicrMXX2i7pWR3YWK3Vmmk.roa
File: O1F-ODicrMXX2i7pWR3YWK3Vmmk.roa (raw, json)
Hash identifier: JPOOncFjIDkOgk+fIBZsVlqGkK3VgrPjP7Xq8ntxi3o=
Subject key identifier: 3B:51:7E:38:38:9C:AC:C5:D7:DA:2E:E9:59:1D:D8:58:AD:D5:9A:69
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 01941FFAA8931BE4E579A47A262499FEAA64
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/O1F-ODicrMXX2i7pWR3YWK3Vmmk.roa
Signing time: Wed 01 Jan 2025 03:48:28 +0000
ROA not before: Wed 01 Jan 2025 03:48:28 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213382
IP address blocks: 2a0c:b641:830::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:a8:93:1b:e4:e5:79:a4:7a:26:24:99:fe:aa:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 1 03:48:28 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3b517e38389cacc5d7da2ee9591dd858add59a69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:ad:44:d9:09:02:03:07:21:a0:94:31:df:e5:
c3:fc:a1:62:88:76:87:f4:b9:de:3d:f1:c5:c9:ff:
8d:81:53:c5:44:b4:41:35:9e:0c:e7:dd:dc:52:e9:
31:e6:a3:a1:d2:af:e2:ad:52:c4:9b:e5:f3:89:e3:
bd:f7:5c:97:04:4b:0c:0c:b7:bf:94:2d:af:e9:8c:
1f:53:34:ad:7b:83:a5:5e:2b:f2:22:cd:e8:38:7c:
a4:54:4e:1a:08:5a:96:b8:81:7e:2b:60:6b:12:b7:
99:e5:19:f3:6f:77:1c:c4:d9:04:7f:18:ce:81:41:
70:08:11:a2:b6:ce:38:49:6f:00:d6:9d:5d:46:60:
eb:1c:27:57:77:c1:da:f3:51:d7:4f:94:19:28:9a:
8a:c5:4c:e6:91:62:ce:e4:88:66:5e:d7:91:c1:ab:
50:73:00:d5:b3:eb:c1:28:ff:0d:c0:c3:7a:64:b2:
ea:dd:cf:d3:b2:7e:95:19:cb:3f:81:89:c1:d0:af:
c1:2e:66:61:f2:e3:9e:06:b4:c5:b2:08:57:15:fe:
06:78:03:de:ba:30:e9:68:8f:1d:f1:b3:2a:51:84:
6b:e7:93:02:51:ad:b2:99:31:ed:60:5e:cd:26:c0:
5e:23:33:80:40:60:c9:eb:37:ac:70:94:6e:2b:68:
ab:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:51:7E:38:38:9C:AC:C5:D7:DA:2E:E9:59:1D:D8:58:AD:D5:9A:69
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/O1F-ODicrMXX2i7pWR3YWK3Vmmk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:830::/44
Signature Algorithm: sha256WithRSAEncryption
97:10:a8:fb:de:d3:5c:22:2c:f2:61:17:cb:0e:1b:22:13:bd:
cb:38:94:92:63:37:7e:b8:51:d1:48:2c:51:2b:e5:89:3e:97:
b7:77:5c:84:ee:85:23:6e:e3:b2:a6:2f:ac:d8:8a:bf:cf:3b:
e6:3d:72:54:9f:ee:9d:64:7f:fd:18:c4:bd:90:1a:9b:d9:13:
34:7c:c7:dc:8c:0a:e9:af:5f:20:be:b5:38:1c:8b:5a:4c:0c:
a3:c2:f6:d4:54:7a:e1:19:24:7d:cf:fe:e2:f2:36:d7:93:89:
06:29:9d:f3:d9:60:2b:d7:16:b1:ef:ed:14:94:83:77:75:2a:
ed:53:de:73:5f:10:94:d0:fe:cc:2f:a4:cd:f1:ab:6b:4f:db:
19:82:06:b8:15:20:a7:0b:cd:d5:34:9b:81:19:33:ea:ae:e0:
3a:61:d4:e4:cd:23:52:65:a9:1a:61:d3:12:c8:5e:68:46:5a:
de:c5:40:c2:dc:e1:c1:6c:cb:85:7a:97:8d:05:21:98:b2:3a:
7b:a3:6f:7f:aa:11:29:ec:fb:f3:97:81:76:25:ae:5a:bb:d2:
8c:cf:3a:60:9e:c9:57:23:75:e5:2d:af:21:ea:4e:ee:47:f4:
0e:a7:c4:bc:2e:a7:59:44:8e:38:9e:7a:3b:b2:b0:20:15:7d:
14:47:05:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 00:16:26 2025 by rpki-client