Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/ab2389-8d36-43fe-af42-9a3841967181/1/Tpjw3Nc3KI-z5sFPTugglehoVro.roa
File: Tpjw3Nc3KI-z5sFPTugglehoVro.roa (raw, json)
Hash identifier: hQVvNBqIbdUFIzp+3WsVNIaxhLKQfbJlxs6hdH4n1Uk=
Subject key identifier: 4E:98:F0:DC:D7:37:28:8F:B3:E6:C1:4F:4E:E8:20:95:E8:68:56:BA
Certificate issuer: /CN=473163527e83542dce693b16d0aedcd126d3319a
Certificate serial: 019427B5CEBDF640C72647010A6488DB52AE
Authority key identifier: 47:31:63:52:7E:83:54:2D:CE:69:3B:16:D0:AE:DC:D1:26:D3:31:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RzFjUn6DVC3OaTsW0K7c0SbTMZo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/ab2389-8d36-43fe-af42-9a3841967181/1/Tpjw3Nc3KI-z5sFPTugglehoVro.roa
Signing time: Thu 02 Jan 2025 15:50:13 +0000
ROA not before: Thu 02 Jan 2025 15:50:13 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 31479
IP address blocks: 2a04:d700::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:ce:bd:f6:40:c7:26:47:01:0a:64:88:db:52:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=473163527e83542dce693b16d0aedcd126d3319a
Validity
Not Before: Jan 2 15:50:13 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4e98f0dcd737288fb3e6c14f4ee82095e86856ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:5b:7d:f8:86:0e:1e:ce:d8:04:f6:64:c5:fb:
10:00:f5:a0:66:61:94:0d:a2:b8:f4:4e:44:12:32:
59:af:88:3c:ee:32:37:54:8d:8f:f3:53:0f:97:81:
bc:1f:d0:40:9d:2d:5b:59:76:74:50:fe:fb:eb:9c:
21:a4:ef:2c:96:f2:09:2e:33:25:36:f9:8a:8c:87:
37:a4:b5:8d:02:0c:ea:75:12:61:b7:8d:1e:a7:3a:
82:95:59:a8:de:6a:76:bf:0e:fc:d8:fc:82:08:63:
59:b8:9e:c3:8e:85:0f:aa:cc:d3:87:ee:b0:8c:eb:
77:39:db:27:8f:51:62:cf:c9:1b:1a:64:71:11:2a:
7e:d9:dc:ef:71:ba:f2:66:94:60:e0:05:67:2a:bc:
0c:1b:48:24:d6:23:89:0d:4f:84:7f:65:d7:bf:fc:
02:75:85:a7:13:46:32:09:93:06:26:fa:e8:cf:ab:
08:ca:fd:8e:12:b2:ff:4d:f0:18:26:5d:63:aa:3b:
00:c9:2d:e7:a2:67:b4:c9:d5:43:01:d0:62:cb:76:
27:f2:35:f6:8c:fa:5a:18:e3:85:4a:06:b8:7c:6c:
a2:02:4d:42:b1:90:a0:e1:98:f5:d6:a3:6e:61:4e:
26:b8:f0:f8:8d:b7:68:44:cd:8f:e7:f1:75:76:23:
c5:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:98:F0:DC:D7:37:28:8F:B3:E6:C1:4F:4E:E8:20:95:E8:68:56:BA
X509v3 Authority Key Identifier:
keyid:47:31:63:52:7E:83:54:2D:CE:69:3B:16:D0:AE:DC:D1:26:D3:31:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RzFjUn6DVC3OaTsW0K7c0SbTMZo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/ab2389-8d36-43fe-af42-9a3841967181/1/Tpjw3Nc3KI-z5sFPTugglehoVro.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/ab2389-8d36-43fe-af42-9a3841967181/1/RzFjUn6DVC3OaTsW0K7c0SbTMZo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:d700::/29
Signature Algorithm: sha256WithRSAEncryption
56:69:b8:a1:05:59:81:c0:05:ad:c4:f6:33:0b:c6:c3:5b:a3:
10:22:14:9e:49:89:f2:4f:42:1a:aa:21:3f:da:61:35:1d:11:
45:44:eb:98:99:4b:8a:bb:00:97:b6:38:d6:73:bd:43:93:11:
a6:9f:c1:1e:9a:f3:d4:de:96:ce:d4:f0:01:ef:49:48:c0:5b:
41:ba:7e:58:d1:cf:56:5c:28:94:e4:41:56:24:f7:bb:ae:10:
46:f2:11:31:69:03:c9:08:1e:f6:e0:4e:f3:54:a6:bb:02:22:
50:be:5e:74:40:5b:40:22:ea:09:2d:61:93:31:1b:e7:43:ff:
d3:40:23:e9:a0:ec:67:d3:31:3d:a4:19:21:f1:63:4e:67:24:
da:33:f4:59:eb:24:59:b9:dd:aa:d4:3b:0f:ed:da:4e:7f:e0:
2d:d8:16:31:77:6e:af:50:dc:c2:a8:de:73:d3:76:06:65:c7:
48:bc:d7:4d:c8:18:ec:0a:21:75:13:5a:41:9a:e9:24:a7:0b:
63:b5:ff:7f:38:49:d2:2a:2c:af:b1:e2:9f:60:e8:56:c0:e9:
69:69:07:58:1e:f8:32:a8:db:3a:05:45:5b:43:ba:93:4c:94:
7b:40:11:da:b3:09:11:ac:5e:ea:dd:20:6a:48:c9:68:94:16:
20:78:3b:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 05:25:08 2025 by rpki-client