Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/lndxKa9pdzUjDe7iIzhd20levFQ.roa
File: lndxKa9pdzUjDe7iIzhd20levFQ.roa (raw, json)
Hash identifier: DEIFaGu/a9/fGG5Rh9ZmI0KWUTQWOR4aeGri08Q1jfM=
Subject key identifier: 96:77:71:29:AF:69:77:35:23:0D:EE:E2:23:38:5D:DB:49:5E:BC:54
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0194252231E67C21F244A5346DB695611397
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/lndxKa9pdzUjDe7iIzhd20levFQ.roa
Signing time: Thu 02 Jan 2025 03:49:45 +0000
ROA not before: Thu 02 Jan 2025 03:49:45 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 208840
IP address blocks: 2a0e:97c0:bd0::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:22:31:e6:7c:21:f2:44:a5:34:6d:b6:95:61:13:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 2 03:49:45 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=96777129af697735230deee223385ddb495ebc54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:1c:49:2d:8e:6b:9d:b1:6d:41:13:00:52:37:
19:5e:33:e6:c0:35:40:23:8c:92:39:b6:1a:2e:87:
8e:88:21:bf:2a:96:64:98:4d:63:be:f7:2f:b2:44:
df:c4:f5:bd:93:b4:b7:c9:43:4a:e8:27:d3:49:57:
a6:ac:82:e9:31:f3:08:e9:01:79:8b:c4:92:03:50:
1c:3d:42:95:32:9e:22:49:c8:f8:29:5f:c6:cd:93:
48:37:60:bc:10:10:a7:6a:90:b6:b5:25:d1:84:b9:
10:33:44:36:b5:90:6b:49:8e:c6:76:a1:5e:0f:61:
37:aa:0e:6d:16:4e:32:aa:b2:4d:8f:3d:d2:3f:c4:
a6:96:63:f3:59:d9:98:44:3e:3a:37:ea:22:e0:9f:
19:aa:1f:f5:bf:0d:a7:a3:47:b1:cc:32:12:0b:cf:
fa:04:ae:1d:79:78:fb:ca:54:24:03:cf:0a:98:ef:
7e:0e:4b:40:15:e3:3d:ec:7f:d2:77:6c:5b:0d:59:
0c:59:3f:90:c3:ec:11:7c:1c:5a:b9:00:72:56:5c:
45:ca:ac:30:a5:ca:81:f3:3a:d2:15:98:a7:70:20:
6f:6f:a5:c5:dd:45:db:ab:e2:67:36:c0:18:86:27:
af:11:3f:19:6d:5e:33:8d:35:a5:c6:61:3b:85:00:
e8:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:77:71:29:AF:69:77:35:23:0D:EE:E2:23:38:5D:DB:49:5E:BC:54
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/lndxKa9pdzUjDe7iIzhd20levFQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:bd0::/44
Signature Algorithm: sha256WithRSAEncryption
3a:a8:84:74:f1:7b:bf:4f:0b:7f:ed:78:3a:ee:f8:fd:ec:c5:
9b:65:5a:6f:34:2e:df:a3:51:eb:df:22:86:c9:71:62:e1:f8:
09:85:56:19:47:f9:1b:05:be:82:95:81:ef:27:27:bd:c3:20:
d7:b9:4c:63:6c:88:3b:3a:cb:0e:f2:ac:9a:d0:54:b2:e6:03:
3d:1d:a4:da:59:c3:66:66:68:4d:84:0f:ab:d6:bf:12:d4:46:
c2:ff:e3:cf:16:1f:48:ba:6e:0b:d8:16:cf:ae:e9:32:fc:5a:
f2:48:f8:4a:ab:bd:5a:0f:9b:9a:1e:d6:dd:6e:12:1c:6e:70:
1e:ea:2b:3b:8c:7f:f3:e1:c7:1f:61:d7:6d:95:51:f9:9d:32:
83:6a:87:e1:83:63:c4:1b:50:5d:a7:bf:c9:1e:85:21:ff:7e:
31:06:8e:75:39:90:61:35:c4:82:12:2e:31:1c:de:8a:e3:46:
3d:0e:34:02:5f:9d:18:8d:63:84:91:ec:aa:66:43:2e:1a:6d:
7c:23:3a:b8:d3:c1:d9:22:2a:67:a4:51:b4:62:ea:6d:04:4b:
15:eb:df:b9:71:e6:d6:5b:6a:76:0a:c2:87:90:a5:a8:58:47:
22:5e:2f:77:b3:a0:bc:3b:2f:71:a1:d3:08:51:9d:a4:d9:c2:
3f:9f:09:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:53:41 2025 by rpki-client