Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/HSQclrzEB6CFIyi8WeGdIiAtg10.roa
File: HSQclrzEB6CFIyi8WeGdIiAtg10.roa (raw, json)
Hash identifier: I7ym8fz+2VZGBgAGO86fh15UoWR8Uqb0qb/cE3HlAFY=
Subject key identifier: 1D:24:1C:96:BC:C4:07:A0:85:23:28:BC:59:E1:9D:22:20:2D:83:5D
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 01956B7C4299A2B263552407E414C4E2750F
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/HSQclrzEB6CFIyi8WeGdIiAtg10.roa
Signing time: Thu 06 Mar 2025 12:44:20 +0000
ROA not before: Thu 06 Mar 2025 12:44:20 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209745
IP address blocks: 2a0e:97c0:d10::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:6b:7c:42:99:a2:b2:63:55:24:07:e4:14:c4:e2:75:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Mar 6 12:44:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1d241c96bcc407a0852328bc59e19d22202d835d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:2f:43:8a:66:fc:d9:27:b8:ba:10:0f:33:ff:
1c:da:56:b2:ee:a5:69:7c:a5:d4:92:e4:47:af:5d:
2f:05:19:f8:8c:41:b6:10:05:c3:41:36:7d:5d:e8:
80:f4:4c:38:f0:5c:73:02:32:b0:f5:37:b3:c8:07:
07:f1:2d:bd:f6:bb:6d:24:4f:a0:42:3d:8e:1a:12:
53:fa:5a:95:55:3b:96:4a:36:08:23:d7:1f:06:ba:
66:cc:1e:72:8f:9e:14:97:7b:17:a1:71:46:b1:c3:
9b:ef:15:76:a1:17:bc:b5:5c:ef:db:a9:cc:4e:9d:
c6:6f:1c:bf:94:82:11:73:cd:3b:12:92:5b:50:fc:
0e:be:ab:3a:cf:88:97:84:85:ed:6c:9b:75:e9:eb:
74:f6:7e:38:f0:f1:28:73:8a:1a:3d:6e:49:c1:e7:
b3:f8:78:ed:6e:de:62:58:26:82:d1:e1:78:09:c4:
ac:de:42:df:db:7a:96:60:4f:69:c8:f6:45:55:39:
26:f3:b2:ac:45:20:ef:10:da:e2:99:e8:58:91:20:
5a:6f:ed:6a:cd:8e:ae:c8:92:7a:03:cc:df:b1:ae:
b1:d0:fa:8d:29:2e:0e:31:52:4e:dd:85:04:29:51:
86:41:92:f7:d0:58:17:d7:e0:9d:bb:5e:a7:44:27:
01:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:24:1C:96:BC:C4:07:A0:85:23:28:BC:59:E1:9D:22:20:2D:83:5D
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/HSQclrzEB6CFIyi8WeGdIiAtg10.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:d10::/44
Signature Algorithm: sha256WithRSAEncryption
0f:86:c0:81:1a:90:34:06:6e:02:25:9e:5e:c3:fa:3d:3a:bd:
18:44:0f:2b:a5:d1:5b:42:92:ab:ec:8d:15:26:a3:8e:84:45:
62:93:b3:cb:7b:52:29:b1:50:b2:b0:1b:ab:d3:1e:7d:e2:1a:
d7:5d:ce:df:85:c6:bf:ec:76:c9:7a:fd:0c:df:ee:d2:12:c5:
f4:d6:da:43:a7:46:e6:c6:c9:47:30:5a:d5:ca:81:0e:e1:0b:
3b:6d:73:02:54:a6:bc:4b:b5:af:9e:f5:0a:66:19:f1:a8:c9:
25:46:bb:90:a8:11:02:18:12:86:b7:41:ac:eb:64:30:c2:98:
55:4a:8f:78:14:91:a0:f7:7d:9c:f4:4a:6d:50:af:44:01:c8:
bd:aa:a3:9b:80:d5:38:5f:91:81:01:7e:0c:06:f1:bc:83:82:
a2:d4:0e:dc:32:48:7d:ba:c5:f3:2e:e2:8a:e9:00:7a:9e:a3:
0b:f8:d3:56:bd:f9:81:bc:8c:70:5d:e6:ab:51:c5:32:ef:4d:
6c:5e:86:f3:79:1b:de:7f:c4:61:ec:27:42:03:e8:69:ab:e4:
1c:b2:f5:5b:00:11:3d:0c:59:93:08:7a:e2:46:bd:70:8e:54:
23:35:c9:c1:0a:bc:29:ee:bc:68:e9:f6:7a:5b:b8:35:65:89:
ca:6b:e4:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 19:23:48 2025 by rpki-client