Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/6dbc99-bfa9-4ef7-a798-a3032615660c/1/bLJ_1uTmZ_Woe95GKroEXOKfXRc.roa
File: bLJ_1uTmZ_Woe95GKroEXOKfXRc.roa (raw, json)
Hash identifier: D/qqGavjudHHAFM94s9+FB+kKIVF4We10px0uVymkXM=
Subject key identifier: 6C:B2:7F:D6:E4:E6:67:F5:A8:7B:DE:46:2A:BA:04:5C:E2:9F:5D:17
Certificate issuer: /CN=d98247d3f81472dbba06dbea9bd19c785d18babe
Certificate serial: 01941FFA41B7F11ACA59EF5DFCACA7513A5F
Authority key identifier: D9:82:47:D3:F8:14:72:DB:BA:06:DB:EA:9B:D1:9C:78:5D:18:BA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2YJH0_gUctu6Btvqm9GceF0Yur4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/6dbc99-bfa9-4ef7-a798-a3032615660c/1/bLJ_1uTmZ_Woe95GKroEXOKfXRc.roa
Signing time: Wed 01 Jan 2025 03:48:02 +0000
ROA not before: Wed 01 Jan 2025 03:48:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 40975
IP address blocks: 2a0a:2e00::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:41:b7:f1:1a:ca:59:ef:5d:fc:ac:a7:51:3a:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d98247d3f81472dbba06dbea9bd19c785d18babe
Validity
Not Before: Jan 1 03:48:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6cb27fd6e4e667f5a87bde462aba045ce29f5d17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:31:08:cd:7e:26:76:ba:85:ff:7b:2b:87:fa:
3c:31:34:a1:5a:29:26:8f:f0:e1:54:b8:14:d1:56:
21:e1:87:b3:8a:2a:e7:73:da:0b:86:ea:59:8c:26:
3f:2d:21:36:53:e6:4c:88:81:63:b6:1f:01:c5:c1:
bb:b1:67:10:07:06:4a:5b:99:f2:7b:01:b5:7f:a5:
40:fc:4d:54:54:02:97:49:08:72:97:8c:27:ee:38:
cf:f1:df:5d:07:fd:5a:3b:78:8d:d1:2a:da:4f:e3:
b0:99:0d:76:77:13:af:29:e7:3d:c9:55:04:5d:35:
aa:0a:e2:77:56:90:a7:a2:46:a4:75:45:63:21:e6:
46:dd:55:d4:c3:60:9c:2e:e3:1d:a5:6d:c9:68:54:
5a:b1:c8:5a:f2:06:d8:11:91:59:87:3e:15:2b:d2:
1d:c4:7b:f2:4f:0c:aa:41:7e:07:85:4c:d6:03:80:
f9:e9:2c:d1:e1:b6:f0:f3:88:f7:31:e0:bf:24:3d:
98:4b:2e:07:9a:5c:9e:91:bb:69:fa:6b:42:53:98:
03:83:cc:e6:31:f4:cb:ef:c3:ae:be:70:76:a0:ee:
58:8c:e3:8f:d2:14:51:f8:b3:09:95:ee:ec:5b:04:
2c:9e:11:64:18:70:73:e8:e1:a4:cc:a0:29:1a:e5:
25:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:B2:7F:D6:E4:E6:67:F5:A8:7B:DE:46:2A:BA:04:5C:E2:9F:5D:17
X509v3 Authority Key Identifier:
keyid:D9:82:47:D3:F8:14:72:DB:BA:06:DB:EA:9B:D1:9C:78:5D:18:BA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2YJH0_gUctu6Btvqm9GceF0Yur4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/6dbc99-bfa9-4ef7-a798-a3032615660c/1/bLJ_1uTmZ_Woe95GKroEXOKfXRc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/6dbc99-bfa9-4ef7-a798-a3032615660c/1/2YJH0_gUctu6Btvqm9GceF0Yur4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:2e00::/48
Signature Algorithm: sha256WithRSAEncryption
2a:01:28:10:8f:59:12:e8:a1:6c:05:9f:ae:39:fa:70:57:6e:
2f:7b:77:0f:54:83:e5:e3:dc:9a:57:04:f3:46:d8:39:a9:da:
26:1e:29:f0:de:6d:bb:1c:06:74:db:0a:ba:f5:37:fd:ef:c1:
3f:8c:22:2a:fc:2a:86:8d:ed:8c:df:6c:2e:18:a4:68:b8:5b:
09:eb:95:bc:f5:cc:71:95:64:7b:7b:34:14:a2:80:14:76:db:
01:b7:cd:89:4a:8a:0d:63:08:8e:29:a7:e7:1d:18:22:21:57:
0b:66:ce:35:d7:73:4b:d5:9f:f0:5f:db:ad:62:0d:22:3e:a1:
6f:56:34:58:39:fd:0f:f6:6f:8a:06:f9:89:1e:ee:a1:79:ba:
cc:9c:35:c6:9f:1c:a1:51:91:dc:5a:5d:d7:7e:f0:53:8f:86:
27:3f:bc:b1:fe:87:ba:74:2c:02:95:a4:14:7f:63:de:41:f9:
c9:9f:89:15:6e:c3:7e:51:8d:78:cd:69:23:5a:32:f9:a9:6c:
b5:f1:e2:78:29:06:28:09:da:83:5b:b0:b8:42:10:cf:19:1e:
f9:e2:a3:08:92:11:1d:ed:e5:a8:5d:f3:0b:7f:13:2c:6c:14:
cf:0f:c5:ae:4d:dc:df:ae:ff:e7:cd:78:dd:de:41:f7:43:4a:
b6:12:7a:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:46:52 2025 by rpki-client