Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/c8092e-9f8c-4718-b770-c29b44de53a8/1/pzje2YiC-GJ24BgYjgDJwu6GFJA.roa
File: pzje2YiC-GJ24BgYjgDJwu6GFJA.roa (raw, json)
Hash identifier: +ElvhWmgpjMMwPcbPKtZ5IIk5pFZ/FEEXlQVmtm0ivY=
Subject key identifier: A7:38:DE:D9:88:82:F8:62:76:E0:18:18:8E:00:C9:C2:EE:86:14:90
Certificate issuer: /CN=5d39d15bd2fcc84771ba6aa29aa54428b21cef60
Certificate serial: 01939E02C7EA422997FBB053F183831174CB
Authority key identifier: 5D:39:D1:5B:D2:FC:C8:47:71:BA:6A:A2:9A:A5:44:28:B2:1C:EF:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XTnRW9L8yEdxumqimqVEKLIc72A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/c8092e-9f8c-4718-b770-c29b44de53a8/1/pzje2YiC-GJ24BgYjgDJwu6GFJA.roa
Signing time: Fri 06 Dec 2024 22:06:42 +0000
ROA not before: Fri 06 Dec 2024 22:06:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 196845
IP address blocks: 2a02:2428::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:9e:02:c7:ea:42:29:97:fb:b0:53:f1:83:83:11:74:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d39d15bd2fcc84771ba6aa29aa54428b21cef60
Validity
Not Before: Dec 6 22:06:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a738ded98882f86276e018188e00c9c2ee861490
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:c4:10:a7:4a:47:b4:c7:be:a2:88:ff:93:07:
ff:de:35:17:16:c6:c6:46:c9:1a:ac:95:27:14:be:
d0:0c:b3:65:05:e5:5b:2f:97:b7:ee:98:69:92:d5:
14:54:52:ff:4d:86:e8:bd:c6:ca:6f:22:99:18:69:
cc:93:8a:0b:3a:d3:4b:95:72:eb:47:75:c4:5b:64:
83:3c:7e:87:a5:70:1a:87:8a:e9:a1:7f:8e:80:e1:
39:e4:ca:24:dc:74:a0:e0:4b:e8:22:a5:5d:63:9d:
61:7f:c8:d6:73:bc:12:da:f7:45:ab:af:ab:f9:b9:
7e:10:4e:cc:98:28:02:a3:6a:81:e9:92:4c:4a:6f:
87:9f:25:be:0d:25:0a:ca:95:26:32:07:42:23:3e:
c8:23:f1:72:cb:d9:48:37:a7:7a:dd:28:52:0b:d5:
05:ba:65:a8:52:5e:ce:50:6b:ff:02:fa:87:8a:58:
f1:af:cf:96:49:6b:b3:1e:76:23:6a:c9:a5:f4:ce:
e9:ea:b6:53:89:db:c2:7c:0d:2a:96:01:76:66:28:
82:36:e9:4f:c9:b0:54:9f:e3:f2:8a:4c:80:4a:c8:
f4:be:90:db:7a:df:79:14:85:7c:1d:65:0e:03:f9:
4d:1c:61:19:c1:a7:10:12:0d:81:49:e6:0c:10:cf:
17:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:38:DE:D9:88:82:F8:62:76:E0:18:18:8E:00:C9:C2:EE:86:14:90
X509v3 Authority Key Identifier:
keyid:5D:39:D1:5B:D2:FC:C8:47:71:BA:6A:A2:9A:A5:44:28:B2:1C:EF:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XTnRW9L8yEdxumqimqVEKLIc72A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/c8092e-9f8c-4718-b770-c29b44de53a8/1/pzje2YiC-GJ24BgYjgDJwu6GFJA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/c8092e-9f8c-4718-b770-c29b44de53a8/1/XTnRW9L8yEdxumqimqVEKLIc72A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:2428::/32
Signature Algorithm: sha256WithRSAEncryption
93:2d:d8:07:0b:fb:27:66:2b:5c:2d:c6:77:4d:88:48:28:29:
0f:c8:7b:96:f3:19:48:c2:df:3a:36:2b:73:69:9f:9b:01:cd:
a9:cf:97:b4:e0:6e:35:49:11:72:c3:f5:d8:a0:e8:b5:a6:29:
8a:c6:88:f2:e1:95:73:96:0c:69:9c:23:d3:47:db:b0:9b:51:
e8:a0:a3:c5:95:44:50:a1:b7:17:bb:ac:c9:95:43:87:b7:f6:
26:d7:cc:4b:d1:7f:d9:c8:de:15:bd:9f:d0:4a:45:04:ac:41:
a7:47:15:2f:7c:0f:57:c1:d5:0d:84:ed:12:69:b2:a7:f4:2e:
f0:1d:13:11:03:ce:5e:fd:94:73:9c:85:b4:40:09:65:c9:70:
41:40:9a:55:76:e9:a8:52:b1:bc:ae:61:74:bf:42:5c:09:74:
18:38:b1:14:2f:20:04:b2:07:a9:cd:2b:6d:e2:65:cc:a5:c9:
d6:d4:f3:10:e1:72:0a:03:28:3b:b8:39:58:7d:6c:6f:50:56:
5c:64:79:f4:97:ec:f6:e9:6d:d0:1c:9a:14:50:df:2b:ca:6c:
33:de:bd:75:63:ee:d9:a5:4b:4d:01:85:57:85:1c:31:96:d6:
61:c6:5b:99:6b:13:4f:e5:6d:a1:01:59:ac:68:53:15:72:8b:
9e:57:44:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 09:01:17 2025 by rpki-client