Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/dd9ed1-02cd-4b35-a3b4-e9f79dfbd2e6/1/dbUPrxYZXbWIWRB9HdXUUpUSB54.roa
File: dbUPrxYZXbWIWRB9HdXUUpUSB54.roa (raw, json)
Hash identifier: 2BJSHssKNKixmQFarhb300V610xw8Ug2igH+j6bHlx8=
Subject key identifier: 75:B5:0F:AF:16:19:5D:B5:88:59:10:7D:1D:D5:D4:52:95:12:07:9E
Certificate issuer: /CN=3ebcb79ef58a1c98e151f60c51426f74eb1c3938
Certificate serial: 018E5579202033DF6A254F8FF83406DB0024
Authority key identifier: 3E:BC:B7:9E:F5:8A:1C:98:E1:51:F6:0C:51:42:6F:74:EB:1C:39:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pry3nvWKHJjhUfYMUUJvdOscOTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/dd9ed1-02cd-4b35-a3b4-e9f79dfbd2e6/1/dbUPrxYZXbWIWRB9HdXUUpUSB54.roa
Signing time: Tue 19 Mar 2024 06:49:45 +0000
ROA not before: Tue 19 Mar 2024 06:49:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51741
IP address blocks: 2a12:62c0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:55:79:20:20:33:df:6a:25:4f:8f:f8:34:06:db:00:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ebcb79ef58a1c98e151f60c51426f74eb1c3938
Validity
Not Before: Mar 19 06:49:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=75b50faf16195db58859107d1dd5d4529512079e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:c1:84:43:da:89:bb:cb:02:59:10:27:f7:db:
f7:24:8f:6f:b0:39:98:1a:49:ac:4f:02:87:3c:62:
c1:00:41:d0:b5:5a:37:a0:4a:0c:a6:19:cb:fe:63:
c1:72:fe:0e:df:ed:c2:df:0c:b5:bf:ac:b9:30:ed:
a5:23:1e:d7:b8:df:ef:41:b4:f9:ef:7d:0c:10:12:
48:36:ae:98:02:16:00:4e:6b:56:75:5f:24:1f:1a:
e4:9d:1b:63:4a:b0:6f:f0:56:6f:f5:ca:ab:45:ea:
13:00:1d:14:b3:65:53:cd:a0:ae:11:bc:2e:14:1c:
67:90:5d:36:51:61:a1:42:97:73:50:c8:14:53:77:
88:48:04:c1:97:3a:e8:a3:e8:c8:9d:b1:79:6f:f0:
4e:e9:73:47:99:74:af:87:c7:c7:a6:5d:1d:8f:63:
b0:25:5f:8d:3f:c8:d1:5d:2b:a7:35:aa:2a:82:26:
71:c5:b8:62:ed:e9:13:97:da:9f:0c:72:53:db:44:
0b:f8:a9:03:06:a1:a6:b5:14:ee:35:24:db:a9:e5:
17:86:bd:31:ae:ef:fc:80:39:17:a1:58:ca:ae:aa:
35:88:0e:1a:97:38:85:c2:5a:08:75:96:99:bf:db:
53:24:89:ca:32:8e:49:9b:b6:2e:28:7a:92:80:d6:
26:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:B5:0F:AF:16:19:5D:B5:88:59:10:7D:1D:D5:D4:52:95:12:07:9E
X509v3 Authority Key Identifier:
keyid:3E:BC:B7:9E:F5:8A:1C:98:E1:51:F6:0C:51:42:6F:74:EB:1C:39:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pry3nvWKHJjhUfYMUUJvdOscOTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/dd9ed1-02cd-4b35-a3b4-e9f79dfbd2e6/1/dbUPrxYZXbWIWRB9HdXUUpUSB54.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/dd9ed1-02cd-4b35-a3b4-e9f79dfbd2e6/1/Pry3nvWKHJjhUfYMUUJvdOscOTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:62c0::/32
Signature Algorithm: sha256WithRSAEncryption
76:dd:a5:04:0f:d0:4a:77:2c:c7:49:38:ae:dc:e4:c0:a1:e8:
51:a2:88:98:68:07:0b:55:67:2d:73:23:ec:d8:4b:cc:11:6f:
1e:c7:d2:ac:d5:28:11:ef:93:36:06:a3:16:93:e4:67:56:d7:
3a:ae:a5:f6:08:07:77:a7:2f:b4:ec:dd:76:96:22:31:c1:67:
b9:b7:70:16:82:6b:62:89:bf:8f:94:92:b9:90:71:d6:0a:e2:
01:cf:6f:88:7b:bc:e4:2f:de:6e:49:c9:c8:6c:03:22:63:87:
cb:f1:07:a8:3d:bb:b6:8a:e8:de:b0:1b:1b:d2:e2:2d:fa:77:
9d:6d:65:e5:4e:56:a7:ff:83:25:42:32:d9:8e:23:8e:c7:96:
d8:f6:82:0d:fa:59:6c:1a:48:b7:05:a7:c5:77:86:39:23:ad:
93:f2:77:10:27:7c:14:02:c5:a3:23:38:1a:8e:d4:07:08:70:
31:c1:a6:63:4e:08:d4:fd:f3:06:80:bd:73:1d:c3:8d:fa:44:
bf:46:fe:44:fb:39:ea:f0:a4:e1:ee:02:11:e9:eb:da:bc:55:
1f:4b:c5:88:93:93:fb:c1:7f:f5:e0:d5:71:88:9f:6b:15:70:
92:ee:5f:86:a8:f3:c2:5b:59:72:a7:7f:35:63:d1:09:bd:fe:
89:c2:2f:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:39:45 2025 by rpki-client