Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/2d1a35-ff8a-46b4-8c47-63c721cf1f56/1/MTcsB7pau_sj7fShnl0hskf_g1I.roa
File: MTcsB7pau_sj7fShnl0hskf_g1I.roa (raw, json)
Hash identifier: ZEyHwS4yMVYuUul4z8MpSjD2WFJ72elktQ3XV6XEcfg=
Subject key identifier: 31:37:2C:07:BA:5A:BB:FB:23:ED:F4:A1:9E:5D:21:B2:47:FF:83:52
Certificate issuer: /CN=fdd6ee010b990a33735756b4fe2f3d3c2671dd9d
Certificate serial: 019425219CCF7CC9B73011405DC721FAD63D
Authority key identifier: FD:D6:EE:01:0B:99:0A:33:73:57:56:B4:FE:2F:3D:3C:26:71:DD:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_dbuAQuZCjNzV1a0_i89PCZx3Z0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/2d1a35-ff8a-46b4-8c47-63c721cf1f56/1/MTcsB7pau_sj7fShnl0hskf_g1I.roa
Signing time: Thu 02 Jan 2025 03:49:07 +0000
ROA not before: Thu 02 Jan 2025 03:49:07 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 151187
IP address blocks: 2a13:a5c5::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:9c:cf:7c:c9:b7:30:11:40:5d:c7:21:fa:d6:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fdd6ee010b990a33735756b4fe2f3d3c2671dd9d
Validity
Not Before: Jan 2 03:49:07 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=31372c07ba5abbfb23edf4a19e5d21b247ff8352
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:77:0a:6e:a8:29:72:65:55:cf:72:db:0f:4d:
03:16:5e:2b:b1:74:eb:ab:46:d7:8d:cc:b6:e0:d4:
0d:62:43:12:36:f6:38:97:54:45:7f:c9:95:b3:6d:
9e:8e:9e:62:fa:d7:52:4e:20:6d:9e:d8:5f:fa:7f:
86:55:b4:44:97:62:98:01:84:e8:ca:83:83:de:f6:
3f:8c:50:c6:54:d3:63:06:0f:46:df:f6:a8:8e:31:
c4:06:02:79:bc:05:04:47:10:a1:82:cd:54:eb:5b:
0f:8d:d2:27:bd:f0:29:92:fb:f5:fd:84:a4:bf:a8:
4b:2e:40:b0:86:ef:56:91:b2:01:e6:38:11:9f:f8:
e5:9b:d0:9d:cd:04:1b:15:b0:f4:79:1a:45:45:a5:
48:d7:ae:20:97:58:52:f6:cc:5a:37:96:7b:d1:56:
72:00:48:78:4e:78:ee:14:cc:bd:12:fa:3e:8f:13:
f6:a3:95:54:41:8e:50:cd:f4:2d:8b:85:58:c8:77:
8b:85:7f:d9:82:5c:f4:61:0d:0b:bc:9d:98:45:ca:
97:66:8f:b8:e5:d5:5e:73:d1:04:0d:90:e6:7e:9e:
03:db:84:29:4f:70:3a:7a:3a:27:0d:b7:94:3d:6c:
d6:59:2e:6e:c8:ca:48:70:30:88:d7:9e:56:e5:b9:
c1:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:37:2C:07:BA:5A:BB:FB:23:ED:F4:A1:9E:5D:21:B2:47:FF:83:52
X509v3 Authority Key Identifier:
keyid:FD:D6:EE:01:0B:99:0A:33:73:57:56:B4:FE:2F:3D:3C:26:71:DD:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_dbuAQuZCjNzV1a0_i89PCZx3Z0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/2d1a35-ff8a-46b4-8c47-63c721cf1f56/1/MTcsB7pau_sj7fShnl0hskf_g1I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/2d1a35-ff8a-46b4-8c47-63c721cf1f56/1/_dbuAQuZCjNzV1a0_i89PCZx3Z0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:a5c5::/48
Signature Algorithm: sha256WithRSAEncryption
19:af:3b:c7:c2:bf:ac:a9:53:9f:ba:d6:30:bd:e0:50:12:66:
46:ed:9b:fe:b4:02:a7:ca:e4:19:59:fb:d4:48:43:b6:f5:a5:
70:68:75:01:03:cb:7e:54:48:bf:9d:be:8b:ab:77:90:2a:e1:
72:69:d5:82:d1:21:bf:1c:14:34:ae:93:97:26:3c:25:4e:df:
fa:8d:a5:29:17:05:c7:d8:6e:15:74:80:a5:d7:7e:f4:73:29:
5c:af:cc:f1:fd:af:20:f0:2e:f2:3b:0f:bc:37:09:cb:8d:e3:
c0:26:2f:7e:66:2d:85:93:ba:66:05:12:93:97:8e:e2:0f:ae:
74:66:2b:7b:15:ba:69:a6:7e:a4:2c:22:ae:13:8d:18:ff:53:
08:46:68:62:03:82:14:ee:77:02:85:ee:11:e7:fe:29:a8:db:
2d:1b:a7:2d:f6:e4:a2:8e:d9:32:96:22:01:f8:1a:45:db:6c:
46:8e:08:91:c0:a5:41:6b:08:61:17:6d:15:48:7c:30:13:49:
6a:54:bb:43:40:20:bf:ff:89:38:82:72:fd:d4:7c:13:c0:3f:
b2:b7:da:51:94:df:f1:29:94:dd:45:a1:17:98:93:16:f9:6d:
2b:28:f5:2b:a3:b5:d0:85:83:9d:ee:b2:66:fc:06:cd:7b:bf:
98:b3:b4:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 20:49:27 2025 by rpki-client