Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/M66I0UzjQBS9vnsa6hJXUcQSBYc.roa
File: M66I0UzjQBS9vnsa6hJXUcQSBYc.roa (raw, json)
Hash identifier: V+buEBexkfH/z8IfHQHVN3d+jviM7gfofPkFusouHl4=
Subject key identifier: 33:AE:88:D1:4C:E3:40:14:BD:BE:7B:1A:EA:12:57:51:C4:12:05:87
Certificate issuer: /CN=76a75826e991225a429ff8a1e7ffdc80466420df
Certificate serial: 019426D8ECFF0F20E1371F767AE86F221B18
Authority key identifier: 76:A7:58:26:E9:91:22:5A:42:9F:F8:A1:E7:FF:DC:80:46:64:20:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dqdYJumRIlpCn_ih5__cgEZkIN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/M66I0UzjQBS9vnsa6hJXUcQSBYc.roa
Signing time: Thu 02 Jan 2025 11:48:58 +0000
ROA not before: Thu 02 Jan 2025 11:48:58 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 199578
IP address blocks: 2a03:db80:3824::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d8:ec:ff:0f:20:e1:37:1f:76:7a:e8:6f:22:1b:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76a75826e991225a429ff8a1e7ffdc80466420df
Validity
Not Before: Jan 2 11:48:58 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=33ae88d14ce34014bdbe7b1aea125751c4120587
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:11:00:1b:c5:d6:56:1a:c2:d1:e6:c3:16:2a:
0a:6a:6b:82:0f:26:f1:11:7f:3e:26:51:62:60:51:
20:34:f9:f6:e9:eb:12:11:e3:a5:51:95:0c:9e:19:
e0:29:fb:0e:66:7f:67:2d:48:e4:fb:d9:24:d4:ca:
bf:a5:17:eb:2a:ca:fb:5f:aa:f0:c0:72:1c:ea:47:
6f:b3:c0:57:ee:b7:9a:e0:73:ff:e1:ad:73:5c:ec:
47:36:a6:c1:fc:8a:5f:72:f6:3e:5f:29:cc:a7:33:
d9:58:52:f6:4c:08:2d:b2:25:d1:40:10:c2:65:48:
99:95:77:a4:5d:06:70:92:9e:f0:33:bc:1d:12:8a:
69:71:fa:71:a7:2a:0e:ac:81:91:e3:6d:e9:ea:ec:
7f:d3:fd:31:65:2a:e7:73:eb:f8:68:c5:a7:c8:f6:
8b:22:78:d2:f3:af:c6:12:b5:e4:7d:74:eb:d6:6a:
85:f3:4f:20:0f:eb:c7:39:e8:f5:fc:5f:a6:38:86:
8e:72:8c:80:f1:9f:ca:8d:bc:6c:77:90:0d:d9:f6:
28:a3:34:21:a1:8c:c8:7c:86:9f:54:d3:a8:b6:66:
3d:90:65:fe:d9:f0:1a:ab:50:62:b8:34:15:14:21:
26:fd:90:00:45:05:a9:77:d8:00:57:1d:04:c8:33:
05:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:AE:88:D1:4C:E3:40:14:BD:BE:7B:1A:EA:12:57:51:C4:12:05:87
X509v3 Authority Key Identifier:
keyid:76:A7:58:26:E9:91:22:5A:42:9F:F8:A1:E7:FF:DC:80:46:64:20:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dqdYJumRIlpCn_ih5__cgEZkIN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/M66I0UzjQBS9vnsa6hJXUcQSBYc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/dqdYJumRIlpCn_ih5__cgEZkIN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:db80:3824::/48
Signature Algorithm: sha256WithRSAEncryption
ae:6c:bb:20:f8:38:40:a6:51:c9:b9:2c:ac:13:c9:3e:4d:6a:
f6:a2:92:67:75:21:1a:01:d3:83:e2:3f:2f:fd:83:46:97:f4:
b2:42:c1:dd:ac:c6:ef:7c:98:8c:31:5a:9d:22:a1:91:c5:d3:
9e:09:24:37:d4:b1:66:47:aa:12:04:65:46:6c:12:ae:fd:fb:
ab:af:d3:5f:87:04:71:73:24:93:f1:d6:95:24:ac:5b:12:6c:
c7:db:73:63:68:5a:42:72:e8:b1:d9:2e:3c:31:61:10:18:92:
33:c6:5b:95:e4:1f:f4:30:51:79:be:fc:e4:33:bc:fd:65:fd:
e3:e5:f2:ea:98:9e:0d:91:ff:4b:0c:20:eb:cd:7f:87:dc:6b:
8d:08:e0:b0:43:23:da:e1:ca:32:11:7f:67:79:dd:4b:31:53:
ec:b4:dc:e9:71:d2:54:70:18:4c:96:dc:84:5a:a2:f3:c7:4a:
4b:45:db:54:f8:ab:46:97:42:76:97:c7:b9:7a:a9:8a:44:3b:
5e:ce:18:78:41:05:cd:4f:5e:c9:39:40:7f:fb:6b:f5:3a:f4:
8f:47:2c:4b:00:26:e0:1f:16:0a:3b:41:84:14:8b:3a:6d:ab:
13:51:36:29:6c:8b:48:3d:27:03:71:7f:b5:46:69:7d:0d:5b:
11:de:85:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:34:27 2025 by rpki-client