Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/VNiy0uTyo6aEikXHJ9PKYiAEYzM.roa
File: VNiy0uTyo6aEikXHJ9PKYiAEYzM.roa (raw, json)
Hash identifier: iYQc6ZK9MogbrloNKaeAiyvbHqT1t+TKOGb9H7xXmck=
Subject key identifier: 54:D8:B2:D2:E4:F2:A3:A6:84:8A:45:C7:27:D3:CA:62:20:04:63:33
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 01941FFA72BFBAE088D8459045FA24C092FD
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/VNiy0uTyo6aEikXHJ9PKYiAEYzM.roa
Signing time: Wed 01 Jan 2025 03:48:14 +0000
ROA not before: Wed 01 Jan 2025 03:48:14 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 3280
IP address blocks: 2a0c:b642:1a0b::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:72:bf:ba:e0:88:d8:45:90:45:fa:24:c0:92:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 1 03:48:14 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=54d8b2d2e4f2a3a6848a45c727d3ca6220046333
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:13:21:3e:b0:89:70:d3:a5:9d:6a:d9:ca:33:
b0:f4:7b:9d:00:bd:45:2c:f8:37:78:04:b0:23:42:
3c:32:9a:fe:a0:93:11:03:1c:70:8b:40:30:f3:a1:
c2:29:0b:9b:9f:f0:5f:3d:63:66:9f:7a:82:38:9c:
89:e1:0e:ae:dd:ac:49:30:71:97:b0:0f:ac:e3:50:
db:a4:7a:ad:f5:a5:fc:36:d2:ca:a8:9c:0b:8a:e5:
12:7c:5a:bd:14:e2:a8:51:51:70:6b:ac:e5:c8:3f:
f7:24:89:48:7d:5e:81:97:6e:41:2e:1f:fb:97:19:
ca:b7:de:64:40:9c:b6:90:fd:56:84:7d:67:0c:71:
31:a5:f5:79:a1:ae:b1:92:2c:3a:b8:49:4a:d6:79:
45:a7:3c:a0:6c:d2:b9:e4:43:89:b0:78:0b:75:fb:
3f:d6:b7:26:f3:c0:c1:b5:30:2c:81:81:65:ee:14:
3b:8c:09:d0:e8:8d:73:ec:71:18:cd:3e:9d:b4:6a:
bd:e8:20:05:29:19:cb:56:fe:b6:c0:cb:63:78:ed:
13:42:ff:06:cd:25:d5:73:40:e9:0d:6d:18:76:b9:
49:52:bd:6c:1c:56:a0:5c:06:64:a8:e6:01:3a:d5:
92:9b:01:66:e0:6e:15:6b:da:fc:0f:76:f4:8e:83:
0b:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:D8:B2:D2:E4:F2:A3:A6:84:8A:45:C7:27:D3:CA:62:20:04:63:33
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/VNiy0uTyo6aEikXHJ9PKYiAEYzM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b642:1a0b::/48
Signature Algorithm: sha256WithRSAEncryption
16:e9:5f:1b:32:b6:70:fe:fc:db:c5:c3:e5:6d:0f:10:49:4a:
59:f7:78:5e:f3:f0:da:a7:7c:5f:00:e7:bd:e2:e2:9f:30:1f:
e5:b0:2c:95:65:3f:42:37:5f:78:f6:a0:73:c2:db:33:3f:25:
bd:ec:97:6f:b8:9c:69:c5:09:ae:de:70:a8:f9:64:3e:a3:2f:
a3:38:0c:e2:ee:67:a0:54:7f:fe:08:82:8a:08:68:da:35:ab:
b2:9c:be:75:cb:93:ea:a1:99:ea:a5:8c:72:2d:a5:c0:9e:4a:
7b:0e:a1:62:57:3b:53:98:d6:3b:8f:dd:ef:58:ca:e7:de:83:
d1:3b:ea:17:33:d1:eb:81:21:be:5f:12:0c:cd:20:d7:a1:e6:
f1:d3:55:ed:04:0e:0e:24:34:45:88:98:b8:df:07:32:dd:94:
60:4e:97:4c:75:1e:b5:cf:00:a3:1e:bd:7f:ef:05:94:db:a0:
f8:2d:02:8b:54:74:71:d7:5d:31:be:42:19:2c:bf:45:5b:94:
d1:82:17:c3:9c:73:10:93:c5:23:e7:20:44:1e:c1:4e:d0:8e:
e2:40:42:fb:79:04:d3:ec:25:5a:2c:e5:55:09:f2:4b:13:19:
d4:8d:08:8d:67:c1:12:da:9f:4c:e9:47:77:ee:47:48:fc:d8:
d3:1d:5e:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 19:31:02 2025 by rpki-client