Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/1809da-1c6f-44db-aa28-ba4fc234683e/1/YX6TdSLrfQISm2CR9jSMfrWeHto.roa
File: YX6TdSLrfQISm2CR9jSMfrWeHto.roa (raw, json)
Hash identifier: thQkWvF4nLGlemNm7VcbLLVFDEUCum3r3Jy72QYLpXE=
Subject key identifier: 61:7E:93:75:22:EB:7D:02:12:9B:60:91:F6:34:8C:7E:B5:9E:1E:DA
Certificate issuer: /CN=76670236cd0e038684a33194bde7d4b95adc66f7
Certificate serial: 0194252208FFF6BB4CDF8EDFC774D0EE33F7
Authority key identifier: 76:67:02:36:CD:0E:03:86:84:A3:31:94:BD:E7:D4:B9:5A:DC:66:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dmcCNs0OA4aEozGUvefUuVrcZvc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/1809da-1c6f-44db-aa28-ba4fc234683e/1/YX6TdSLrfQISm2CR9jSMfrWeHto.roa
Signing time: Thu 02 Jan 2025 03:49:35 +0000
ROA not before: Thu 02 Jan 2025 03:49:35 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44477
IP address blocks: 2a05:541:127::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:22:08:ff:f6:bb:4c:df:8e:df:c7:74:d0:ee:33:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76670236cd0e038684a33194bde7d4b95adc66f7
Validity
Not Before: Jan 2 03:49:35 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=617e937522eb7d02129b6091f6348c7eb59e1eda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:ab:c3:60:c6:1c:59:6e:44:1e:d9:28:ef:c4:
30:f6:33:3e:8c:d2:eb:67:25:bd:5b:d8:bd:33:b9:
0d:b5:b9:97:b3:62:c0:8d:61:cf:2d:1e:b1:37:64:
95:00:94:83:25:70:db:a8:32:2c:d0:26:d5:6b:54:
1e:43:07:93:95:bd:98:c4:fd:b6:92:c6:b0:07:c4:
e1:c4:eb:7a:40:18:f3:5b:ef:c6:ac:30:f3:5b:3e:
07:0e:64:7c:b1:91:a1:c2:3d:e4:c1:38:07:1b:06:
2a:dc:0a:cb:b9:90:4d:7d:f7:c4:8f:85:6e:e1:43:
71:a9:b8:d9:6b:04:56:d2:19:9d:31:53:a6:86:9a:
98:ca:a1:f1:59:f0:7a:dc:ff:4a:81:3d:0c:60:2c:
dc:2c:ce:49:1b:d3:97:b9:21:f7:7b:fa:04:25:ca:
6d:99:1d:a8:ab:f2:f9:a9:9b:46:8f:99:2a:6e:fa:
4d:81:d6:8b:52:26:c2:c2:ba:ca:2c:cd:40:96:4f:
d6:58:9e:66:93:f5:ee:76:41:34:6b:ee:c7:5b:29:
05:ad:d6:0c:c4:d5:bb:8b:7f:4c:a3:24:b5:23:d2:
29:82:78:a3:b1:4a:5e:97:eb:ae:d8:ed:b3:27:b8:
90:a4:da:d5:15:51:0a:53:b3:a0:61:76:b0:09:cb:
ec:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:7E:93:75:22:EB:7D:02:12:9B:60:91:F6:34:8C:7E:B5:9E:1E:DA
X509v3 Authority Key Identifier:
keyid:76:67:02:36:CD:0E:03:86:84:A3:31:94:BD:E7:D4:B9:5A:DC:66:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dmcCNs0OA4aEozGUvefUuVrcZvc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/1809da-1c6f-44db-aa28-ba4fc234683e/1/YX6TdSLrfQISm2CR9jSMfrWeHto.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/1809da-1c6f-44db-aa28-ba4fc234683e/1/dmcCNs0OA4aEozGUvefUuVrcZvc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:541:127::/48
Signature Algorithm: sha256WithRSAEncryption
20:fa:47:74:78:e3:f2:4c:78:45:1e:d8:71:e5:33:36:33:24:
4c:0f:e1:05:39:4b:06:74:12:9d:8a:5d:7d:aa:86:e9:b2:b9:
dd:95:3b:72:dc:7a:53:86:86:09:a4:fa:c2:fa:71:d1:75:d6:
12:cf:53:e7:b7:55:83:06:f0:29:6d:a0:32:32:be:21:0a:d1:
ed:55:73:1f:06:3f:d4:8b:9c:04:da:bf:49:8e:4f:5e:99:9d:
69:80:2c:b9:08:fb:42:c1:4a:97:6a:52:a2:98:dc:62:75:36:
8f:da:96:80:8b:ff:92:76:dd:92:b4:e7:62:17:0b:02:96:67:
0f:4e:bf:bc:f6:e3:e1:0d:40:89:34:97:98:d5:9c:46:4c:6e:
d3:86:9f:90:66:95:e0:33:cb:bf:7b:e1:cb:37:04:fe:e1:71:
32:7c:13:4d:73:79:85:7d:bd:f1:8d:af:7d:18:b0:2a:6f:4f:
95:59:71:3d:87:a2:50:80:80:81:e3:a0:a8:e7:eb:49:fa:60:
bc:9d:e2:25:fd:a6:41:5d:e4:3c:b4:16:f9:a1:45:6e:e6:ff:
b3:d1:b2:0c:56:19:bf:31:54:b0:07:f9:c9:32:a2:a2:ca:a9:
c1:59:6f:a3:2a:34:23:94:10:43:57:2e:d3:88:44:3b:06:35:
8d:7a:1b:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:38:29 2025 by rpki-client