Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/JlVChhx5w07YmWd1S055Y6qWUPI.roa
File: JlVChhx5w07YmWd1S055Y6qWUPI.roa (raw, json)
Hash identifier: AAEqAdelZUxTW9gz6RGKSDhVYPfX12C8xhzyaBP5OQ8=
Subject key identifier: 26:55:42:86:1C:79:C3:4E:D8:99:67:75:4B:4E:79:63:AA:96:50:F2
Certificate issuer: /CN=ccd76159bfd9e337523ee930f3df111d6bae7306
Certificate serial: 0195391662847A8B2033BE3079D758489BCC
Authority key identifier: CC:D7:61:59:BF:D9:E3:37:52:3E:E9:30:F3:DF:11:1D:6B:AE:73:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zNdhWb_Z4zdSPukw898RHWuucwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/JlVChhx5w07YmWd1S055Y6qWUPI.roa
Signing time: Mon 24 Feb 2025 17:52:03 +0000
ROA not before: Mon 24 Feb 2025 17:52:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 42375
IP address blocks: 2a05:1e41::/32 maxlen: 32
2a09:2987::/32 maxlen: 32
2a09:a801::/32 maxlen: 32
2a09:af80::/32 maxlen: 32
2a09:bc02::/32 maxlen: 32
2a09:c700::/32 maxlen: 32
2a09:cf00::/32 maxlen: 32
2a09:d700::/32 maxlen: 32
2a09:dd00::/32 maxlen: 32
2a09:e700::/32 maxlen: 32
2a0b:9001::/32 maxlen: 32
2a0d:fcc0::/32 maxlen: 32
2a0e:3f40::/32 maxlen: 32
2a0e:5880::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:39:16:62:84:7a:8b:20:33:be:30:79:d7:58:48:9b:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccd76159bfd9e337523ee930f3df111d6bae7306
Validity
Not Before: Feb 24 17:52:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=265542861c79c34ed89967754b4e7963aa9650f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:24:d7:00:2e:16:28:4d:3c:44:f6:80:4f:22:
17:66:eb:a4:ca:c2:fe:a9:33:76:0d:1a:d9:bd:e6:
32:09:73:20:8f:8d:7a:55:b9:f9:0a:b4:59:57:40:
86:52:43:47:7f:8d:69:61:25:79:f4:15:3f:99:1b:
9e:b3:64:44:01:9b:09:c8:06:7f:00:76:de:85:f7:
27:0e:e7:9f:6b:0f:5f:f1:ee:2f:ae:27:06:e9:02:
59:72:f4:ef:b0:16:ba:3a:3d:fb:70:10:1c:12:a2:
48:70:9e:46:1b:32:cb:c2:70:b3:ee:94:78:81:2d:
e9:34:0e:6b:44:99:c0:7b:4c:e7:3c:be:0d:a9:13:
5e:a0:92:39:44:fa:17:82:fd:e8:f7:0c:f6:02:bc:
4a:8e:9d:81:5f:c9:07:44:9b:e3:ea:24:98:20:16:
b9:9e:ec:e0:56:c4:e9:8c:e8:ea:bb:f8:f5:15:1d:
2b:5b:e6:d1:f9:de:f3:50:24:8d:2d:f2:b0:5e:4c:
33:40:38:8a:8d:83:d8:c8:79:74:7a:78:9b:fc:e1:
a6:9c:c2:58:a5:f1:d7:3d:11:74:cc:eb:2a:f6:1a:
15:83:f4:72:20:6a:cb:4a:18:6e:38:07:fc:80:5a:
50:ca:38:8e:84:bd:90:50:9d:ab:3a:9c:d1:66:f5:
5a:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:55:42:86:1C:79:C3:4E:D8:99:67:75:4B:4E:79:63:AA:96:50:F2
X509v3 Authority Key Identifier:
keyid:CC:D7:61:59:BF:D9:E3:37:52:3E:E9:30:F3:DF:11:1D:6B:AE:73:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zNdhWb_Z4zdSPukw898RHWuucwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/JlVChhx5w07YmWd1S055Y6qWUPI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/zNdhWb_Z4zdSPukw898RHWuucwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:1e41::/32
2a09:2987::/32
2a09:a801::/32
2a09:af80::/32
2a09:bc02::/32
2a09:c700::/32
2a09:cf00::/32
2a09:d700::/32
2a09:dd00::/32
2a09:e700::/32
2a0b:9001::/32
2a0d:fcc0::/32
2a0e:3f40::/32
2a0e:5880::/32
Signature Algorithm: sha256WithRSAEncryption
ad:82:8f:53:81:c2:f7:c0:54:83:f4:c0:fb:c9:c3:9a:c0:48:
ac:53:be:e6:08:57:8d:16:1e:99:ef:0a:55:73:f5:bc:b3:43:
92:70:9a:df:4e:77:f7:31:0f:13:dc:6d:c7:73:99:01:46:74:
3d:c7:90:65:1b:b7:f2:d8:91:06:91:45:56:55:ea:0d:d0:89:
77:af:d7:bf:03:e0:f8:62:53:11:cf:0a:65:ee:23:d8:2a:ae:
98:dd:78:23:68:6a:ff:14:e8:49:34:74:4a:2d:8f:0d:e7:02:
71:44:10:e9:af:a2:14:1b:59:73:68:30:45:9d:3f:72:61:c3:
26:36:77:b0:3f:5b:12:19:b5:47:01:84:8e:71:08:31:b9:7a:
d4:49:bd:bc:9e:f6:ea:8a:fa:8b:f0:8e:70:ec:80:f5:d3:73:
e7:53:3d:ca:3d:59:c4:e2:bb:87:f6:06:ff:b4:56:6f:1c:54:
45:fe:1e:56:cc:09:70:40:88:2e:b1:5e:ac:9f:89:ac:bb:94:
04:8a:17:04:b2:e6:d2:62:2c:92:58:79:d2:a0:e5:4c:24:c3:
74:35:a4:f4:9f:f6:7f:c4:dc:1b:8e:80:84:77:13:b3:33:6f:
3e:7a:28:cd:1c:7e:be:5f:a2:1e:17:65:38:34:55:8b:94:cc:
17:55:8a:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 00:14:46 2025 by rpki-client