Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/uwLOF78GXZrwq-GTiUvCblSk4mI.roa
File: uwLOF78GXZrwq-GTiUvCblSk4mI.roa (raw, json)
Hash identifier: 69Y57NKL3uLRD6dw3nejaYMbl4jYU6MDWIZCdZWPWPI=
Subject key identifier: BB:02:CE:17:BF:06:5D:9A:F0:AB:E1:93:89:4B:C2:6E:54:A4:E2:62
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 018CC8016EF58B0F201C090872FC481A1E79
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/uwLOF78GXZrwq-GTiUvCblSk4mI.roa
Signing time: Tue 02 Jan 2024 02:29:46 +0000
ROA not before: Tue 02 Jan 2024 02:29:46 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210233
IP address blocks: 2a0c:b641:870::/44 maxlen: 48
2a0c:b641:30::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:6e:f5:8b:0f:20:1c:09:08:72:fc:48:1a:1e:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 02:29:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bb02ce17bf065d9af0abe193894bc26e54a4e262
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:28:37:55:78:b2:e9:d5:5c:3f:52:43:63:d2:
fe:b8:38:56:5d:02:ef:23:5a:35:1f:00:8f:4b:bc:
a7:17:4a:2e:ad:ea:3f:69:90:f4:12:a3:31:31:6e:
52:fe:36:37:d9:a1:7e:4e:f8:e5:2b:6a:3a:89:7d:
36:eb:43:fc:bd:c3:9d:3e:46:f8:b1:36:99:3b:35:
6a:d1:55:94:93:fe:bb:e1:f6:eb:3e:e6:45:0c:5b:
45:2e:e3:5a:86:9b:94:70:6b:dd:46:4a:72:46:63:
6b:62:b2:86:a1:34:85:41:de:25:0e:a6:e4:f6:81:
09:98:f0:b3:48:a6:3f:26:fa:ad:89:5b:79:64:e0:
d0:cb:f1:eb:96:64:ed:da:37:08:c0:1a:5a:e8:93:
06:ff:31:f4:c8:38:9a:55:6b:7c:44:21:b6:d2:c9:
ba:5d:34:20:c4:5e:fd:ab:39:6f:73:aa:5e:34:ca:
1a:a5:5d:5b:cb:84:41:97:ec:03:53:c3:02:d6:42:
83:71:18:73:ea:a2:38:b6:d3:c0:28:a7:54:51:01:
d6:98:68:06:80:d9:3c:76:d1:87:d9:37:79:e1:33:
30:8d:56:4f:82:02:06:0f:83:44:a9:e5:cd:6e:17:
51:24:3b:5a:fe:9d:eb:f4:f5:0c:1a:66:2b:e6:85:
27:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:02:CE:17:BF:06:5D:9A:F0:AB:E1:93:89:4B:C2:6E:54:A4:E2:62
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/uwLOF78GXZrwq-GTiUvCblSk4mI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:30::/44
2a0c:b641:870::/44
Signature Algorithm: sha256WithRSAEncryption
8d:e4:9b:43:b3:7c:85:78:86:fc:0b:d7:4e:d7:60:c8:be:f1:
9e:8c:63:cf:75:46:aa:dd:0b:88:c8:a0:1f:10:dc:23:f2:7a:
0d:bd:c6:0c:14:af:5e:76:ef:26:63:7e:ec:45:c7:d3:d7:9b:
08:af:25:76:e8:4e:f7:c7:5d:03:3f:b2:5b:8b:f1:30:eb:08:
d1:3b:fc:b8:bf:1f:05:bd:ac:9b:01:af:10:da:02:20:40:2f:
6e:5d:b7:12:cf:6c:14:e1:0f:b7:4d:4a:b2:5a:a6:6d:51:d2:
2b:92:c9:1c:68:d3:8f:eb:ec:2c:b6:3c:c2:21:85:3c:29:28:
ab:74:67:71:76:5b:38:4f:ec:71:e3:7c:df:03:fb:bb:87:19:
2d:e8:18:c2:af:a3:91:09:a0:5d:6d:10:c2:70:27:25:4b:0b:
cf:1f:8b:18:31:6a:81:ac:9a:b3:aa:f1:be:a5:45:7b:6a:5f:
79:1a:59:2a:bd:6e:e2:a2:3d:41:ae:72:6d:98:ef:b8:79:3b:
7a:32:ee:e6:f4:99:5a:8d:a2:4d:67:ab:fb:ed:e4:48:b7:a5:
ed:03:d6:48:80:03:8b:63:71:54:ca:c5:01:93:5f:2d:4f:6b:
ff:22:fd:42:7b:a7:79:f0:c9:16:81:67:61:e1:10:11:24:97:
09:d0:07:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:43:36 2025 by rpki-client