Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/uTBf8ASY064kAd8VNukaFpakrBo.roa
File: uTBf8ASY064kAd8VNukaFpakrBo.roa (raw, json)
Hash identifier: S9bycuYdXa6wA2wBB7dg27xGkdeXfxH+icb+gqEl12g=
Subject key identifier: B9:30:5F:F0:04:98:D3:AE:24:01:DF:15:36:E9:1A:16:96:A4:AC:1A
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 019459DB4DDCBE52F65713C5DD20D95D6EA9
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/uTBf8ASY064kAd8VNukaFpakrBo.roa
Signing time: Sun 12 Jan 2025 09:32:11 +0000
ROA not before: Sun 12 Jan 2025 09:32:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 198825
IP address blocks: 2a0c:b641:af0::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:59:db:4d:dc:be:52:f6:57:13:c5:dd:20:d9:5d:6e:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 12 09:32:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b9305ff00498d3ae2401df1536e91a1696a4ac1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:2e:46:cb:a0:2c:0a:36:1b:4a:01:d9:99:f9:
8b:a0:dd:b2:7f:21:ae:8c:7f:96:89:a6:85:ce:83:
7e:87:89:57:80:12:64:7a:99:1e:70:fc:f5:5b:03:
8d:ae:af:d8:81:c3:34:a8:a1:a5:66:ed:46:27:61:
89:7f:86:eb:86:bf:7c:ae:8a:cb:6a:c4:13:7f:83:
1a:f4:a8:6b:39:a7:84:f8:92:8b:02:18:04:4b:6b:
e1:4e:cc:84:0b:14:9e:1a:47:b1:83:28:34:15:03:
9b:af:20:1a:28:d9:fc:47:48:21:7b:79:73:ce:44:
30:f0:70:1e:c1:dc:8a:2f:ff:a8:df:6c:1b:0b:dc:
b0:23:2e:bd:2e:78:4c:6c:e1:68:26:ff:fa:3c:af:
3f:fe:50:f6:3a:41:70:e7:ba:75:e9:05:48:dd:43:
4f:a2:76:d3:7e:ca:34:07:d6:f3:11:56:30:ca:c2:
40:e8:f8:f3:e1:a1:fa:1c:bf:fd:88:f4:88:ab:27:
47:b3:b9:1a:87:64:e9:ee:3f:15:c7:58:f0:3e:70:
00:0f:ef:b6:df:df:8a:86:78:17:88:73:da:17:bc:
7f:8d:14:37:c5:4d:b4:a3:3d:7e:2e:7f:b9:dc:16:
1a:06:49:4f:8f:76:75:51:8b:24:84:f8:49:ce:52:
79:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:30:5F:F0:04:98:D3:AE:24:01:DF:15:36:E9:1A:16:96:A4:AC:1A
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/uTBf8ASY064kAd8VNukaFpakrBo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:af0::/44
Signature Algorithm: sha256WithRSAEncryption
80:7d:2a:9b:e9:ce:7f:70:63:ac:68:00:4b:06:c2:f1:69:28:
a6:5a:ae:88:ab:5d:a4:28:2f:d2:79:ef:a0:71:60:e7:7e:86:
03:56:41:8e:b8:12:73:a3:49:f1:10:0a:15:62:79:a3:75:ce:
c9:1a:41:75:50:1e:9a:ef:59:de:19:ff:f1:81:81:07:f3:e9:
e0:21:cd:2b:23:4d:36:46:dc:72:65:bf:dc:44:d0:89:36:55:
72:c1:ef:5c:ed:28:e2:0a:00:a6:6e:5b:b4:6b:ba:a1:37:50:
b7:a5:7a:19:b9:22:58:8b:9d:d8:25:e2:71:23:01:a3:59:af:
04:f9:ed:ff:5b:eb:62:09:01:38:ca:b8:d0:fc:98:5b:06:fb:
1d:27:99:3d:4c:3a:68:3f:69:a6:e4:f4:00:57:ca:25:88:6a:
c9:34:6f:be:cc:bb:87:8b:d5:80:a0:a7:4d:4e:85:da:9c:ef:
4c:14:98:31:d8:f1:04:47:bb:3b:26:e7:7c:0f:be:10:d6:af:
7b:ed:84:d2:f6:c9:b3:11:8f:8a:b6:ba:d3:3d:99:71:a3:41:
1d:37:8d:b1:42:9f:e5:e4:f6:f2:67:d2:b3:d7:91:c1:68:26:
43:7e:9c:4c:86:bd:49:80:f8:d7:2b:28:56:52:ab:35:86:a5:
e3:08:f4:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:43:45 2025 by rpki-client