Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/S9VdrZOTiZLhTeMJTs2sv15-hYc.roa
File: S9VdrZOTiZLhTeMJTs2sv15-hYc.roa (raw, json)
Hash identifier: OwhAJH9qlyU1C/RCYB+ilifbD1LM+mjcGJLSszFCJcg=
Subject key identifier: 4B:D5:5D:AD:93:93:89:92:E1:4D:E3:09:4E:CD:AC:BF:5E:7E:85:87
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 01941FFA96957B4913BA576102F272B3940C
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/S9VdrZOTiZLhTeMJTs2sv15-hYc.roa
Signing time: Wed 01 Jan 2025 03:48:23 +0000
ROA not before: Wed 01 Jan 2025 03:48:23 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 210189
IP address blocks: 2a0c:b641:660::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:96:95:7b:49:13:ba:57:61:02:f2:72:b3:94:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 1 03:48:23 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4bd55dad93938992e14de3094ecdacbf5e7e8587
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:d2:49:61:a9:2f:64:28:0c:9b:8d:6a:03:19:
d1:53:10:c0:f1:89:df:fc:25:d1:de:9e:38:23:98:
6d:10:7a:20:be:38:2f:7f:1f:8f:e8:34:a4:0d:35:
b5:af:5f:45:c0:dd:7e:bd:a4:6e:61:00:7a:7b:ba:
c0:37:27:30:b8:dd:9c:d5:19:16:39:30:5b:4a:8b:
1d:cb:36:0f:6c:cc:98:79:3c:8b:c7:c9:cb:c4:6a:
cf:c0:19:c3:f6:2f:af:99:60:2a:42:1b:8f:85:9d:
01:32:06:6a:b0:74:ff:29:ac:d6:87:da:d4:e8:98:
d4:d1:b7:45:01:2d:a9:95:c6:54:ad:70:b8:9a:53:
b9:31:f4:b1:90:9b:59:ee:c6:ae:8f:4b:18:30:0a:
4a:51:94:15:d1:1e:66:dc:41:20:42:d7:19:f8:d1:
79:dd:d2:1c:26:11:75:6c:15:d6:5e:1c:bd:b3:13:
dd:4d:c4:e9:2e:c3:a8:8a:8b:e4:8a:ec:cf:75:30:
43:59:45:f5:74:5a:eb:f7:28:df:63:32:11:ed:20:
0c:f5:bb:1c:a3:0a:2d:bd:a5:3b:d3:df:d1:c5:aa:
65:83:7b:cd:04:92:ec:8b:b0:f5:25:42:10:70:c6:
9f:22:81:51:e6:a4:f3:15:61:47:4f:51:98:27:72:
04:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:D5:5D:AD:93:93:89:92:E1:4D:E3:09:4E:CD:AC:BF:5E:7E:85:87
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/S9VdrZOTiZLhTeMJTs2sv15-hYc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:660::/44
Signature Algorithm: sha256WithRSAEncryption
49:29:ea:b2:87:b4:cb:70:c5:9c:2f:95:7a:40:bb:c8:3f:6c:
2a:8e:0e:2c:20:94:2f:85:15:1f:8b:87:90:4b:38:2f:3c:f1:
2e:02:1c:57:d6:93:d8:c4:27:81:6e:0e:40:ed:79:df:7d:cd:
9a:e5:62:52:8e:25:e4:5c:cc:f0:3f:85:11:6a:05:65:2e:2f:
d2:b8:e8:70:22:c7:74:91:98:39:bb:b3:5c:7c:e7:16:a2:ca:
8f:96:76:32:33:26:62:32:18:4c:5e:06:51:a4:bf:fd:30:76:
3a:a0:34:00:8f:5d:a0:7a:be:3d:e3:f9:e2:6f:89:98:62:71:
5e:fe:b4:fd:47:e0:22:d5:8c:f8:79:be:bf:a2:a5:33:b1:6d:
91:af:44:33:bf:9b:37:44:8f:dd:c4:7e:5e:4a:9a:3d:c9:a1:
d2:da:93:ed:80:dd:76:83:fe:e7:11:37:8e:89:f1:cf:8a:26:
27:9b:f9:cd:e6:bd:31:40:88:d7:88:fd:2f:1e:46:13:89:69:
11:76:c3:38:b4:94:9c:46:5d:48:b4:4e:9f:a1:fe:6d:00:f1:
82:89:71:8e:87:10:3c:37:59:42:2a:81:4b:ef:de:cd:5c:de:
f7:ff:ab:5a:7c:76:d6:0a:07:3c:52:4b:33:59:fc:ee:17:35:
87:28:e6:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:41:15 2025 by rpki-client