Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/d6c257-f501-4796-aa61-c31bde510085/1/7STy9rKwdVVWBV0PihzyOaaZCGE.roa
File: 7STy9rKwdVVWBV0PihzyOaaZCGE.roa (raw, json)
Hash identifier: rQ7JBMoV5qjUAaqBUkhYTkeegNLJEltgl8G2+dehWX0=
Subject key identifier: ED:24:F2:F6:B2:B0:75:55:56:05:5D:0F:8A:1C:F2:39:A6:99:08:61
Certificate issuer: /CN=98c1d03b49504d34465dc40a3d0f9086cacfdb8e
Certificate serial: 01942826E5447FF3908AF45103926C59F82C
Authority key identifier: 98:C1:D0:3B:49:50:4D:34:46:5D:C4:0A:3D:0F:90:86:CA:CF:DB:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mMHQO0lQTTRGXcQKPQ-QhsrP244.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/d6c257-f501-4796-aa61-c31bde510085/1/7STy9rKwdVVWBV0PihzyOaaZCGE.roa
Signing time: Thu 02 Jan 2025 17:53:45 +0000
ROA not before: Thu 02 Jan 2025 17:53:45 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 200508
IP address blocks: 2a0a:cd80:1001::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:26:e5:44:7f:f3:90:8a:f4:51:03:92:6c:59:f8:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98c1d03b49504d34465dc40a3d0f9086cacfdb8e
Validity
Not Before: Jan 2 17:53:45 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ed24f2f6b2b0755556055d0f8a1cf239a6990861
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:a6:81:1d:a7:10:11:52:96:8e:98:5c:2d:89:
00:78:17:1e:14:51:51:33:28:5a:04:8f:9b:c6:ed:
eb:dd:8f:50:34:92:65:6a:43:92:1c:f9:ad:a5:6c:
03:26:6f:0f:45:31:87:8d:5f:a0:02:6a:dc:8a:c0:
18:36:a4:b4:45:80:4d:01:7b:4c:ca:fa:30:f2:4a:
d4:17:06:3d:78:36:0b:8d:3f:c5:56:89:3f:66:0c:
ec:26:f1:c5:2d:07:e9:d2:3e:9f:a4:de:31:19:86:
df:d2:16:a9:36:90:65:36:56:0c:6a:02:99:8d:7d:
b3:d0:21:f3:01:39:53:f8:3f:4e:7e:3b:4b:60:17:
b2:cc:ed:7f:b0:e6:71:1a:24:e0:ad:49:a4:69:c5:
73:61:1a:d7:b2:8b:d5:2c:19:09:fe:c5:ba:0d:c9:
bc:df:83:1c:b7:30:1c:58:87:5f:63:16:0a:c2:10:
a5:db:41:ab:8e:17:33:d5:79:ae:9a:88:7e:7a:d1:
e0:f4:03:fb:57:87:64:8c:1e:32:b9:89:90:2b:0c:
3a:b4:6d:25:1e:72:20:c4:6c:51:97:e9:2e:e8:c0:
f9:db:80:fc:1f:81:de:18:3d:6b:60:4b:4f:eb:f4:
dc:94:ca:b8:7b:67:ff:94:93:2c:08:4a:2a:87:50:
c2:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:24:F2:F6:B2:B0:75:55:56:05:5D:0F:8A:1C:F2:39:A6:99:08:61
X509v3 Authority Key Identifier:
keyid:98:C1:D0:3B:49:50:4D:34:46:5D:C4:0A:3D:0F:90:86:CA:CF:DB:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mMHQO0lQTTRGXcQKPQ-QhsrP244.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/d6c257-f501-4796-aa61-c31bde510085/1/7STy9rKwdVVWBV0PihzyOaaZCGE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/d6c257-f501-4796-aa61-c31bde510085/1/mMHQO0lQTTRGXcQKPQ-QhsrP244.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:cd80:1001::/48
Signature Algorithm: sha256WithRSAEncryption
0d:b6:22:d2:fd:ea:c2:ab:0a:6e:4e:94:a5:7b:f8:1d:56:75:
fb:a4:fa:ad:5b:77:51:c8:17:40:f3:8f:ed:39:a1:09:78:ab:
e9:e8:35:ce:55:7e:b6:aa:a4:ee:f3:ea:91:40:96:6d:d0:90:
f3:6b:6f:75:29:4d:b0:cb:90:c5:98:d0:65:d2:ea:d2:a9:e6:
5c:12:5d:f8:7f:13:01:ff:3d:56:20:e8:b4:74:87:2c:e6:85:
4f:28:1d:c3:da:7f:1b:fc:b4:f3:54:6a:11:5b:99:8f:20:79:
fd:c0:ef:46:51:eb:53:f7:cf:c6:99:a3:bf:df:67:f3:f4:ac:
69:8d:c1:af:d7:00:fe:a1:99:81:07:e3:1e:9f:35:b6:37:25:
3b:0c:e1:61:ad:92:f6:38:01:a9:53:65:f1:ae:fb:47:15:a9:
a3:c3:d9:f8:df:15:03:21:e2:0b:79:68:a4:d7:cb:81:61:56:
f4:24:dc:7f:65:99:05:33:49:31:b8:66:bb:8e:d9:bf:98:37:
69:aa:ec:58:f4:bb:33:8f:9b:05:26:05:38:21:98:17:4b:a3:
96:69:64:88:7f:ca:fc:18:e7:25:8b:1d:ce:57:44:10:ff:b9:
bd:27:c7:8a:1e:1c:12:98:2f:e7:a1:1f:11:05:19:13:84:b1:
03:83:54:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:29:28 2025 by rpki-client