Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/1a18de-efbd-41b5-b336-79fbd385a550/1/1-xjgsfI902jNFD0m8-DZHtSyyIE.roa
File: 1-xjgsfI902jNFD0m8-DZHtSyyIE.roa (raw, json)
Hash identifier: CsZOcJgPTxy7xIAOVt8lWaYqRyYDTFNbLjFpLqFoAHY=
Subject key identifier: FB:18:E0:B1:F2:3D:D3:68:CD:14:3D:26:F3:E0:D9:1E:D4:B2:C8:81
Certificate issuer: /CN=7580d16569bb24a328e27b47f7d751659725defb
Certificate serial: 01942521C340B78DA788F8C6EC253BBAE554
Authority key identifier: 75:80:D1:65:69:BB:24:A3:28:E2:7B:47:F7:D7:51:65:97:25:DE:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dYDRZWm7JKMo4ntH99dRZZcl3vs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/1a18de-efbd-41b5-b336-79fbd385a550/1/1-xjgsfI902jNFD0m8-DZHtSyyIE.roa
Signing time: Thu 02 Jan 2025 03:49:17 +0000
ROA not before: Thu 02 Jan 2025 03:49:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20712
IP address blocks: 2a03:3a40:2000::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:c3:40:b7:8d:a7:88:f8:c6:ec:25:3b:ba:e5:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7580d16569bb24a328e27b47f7d751659725defb
Validity
Not Before: Jan 2 03:49:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=fb18e0b1f23dd368cd143d26f3e0d91ed4b2c881
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:b6:8a:b2:94:fb:47:53:db:ad:01:f3:78:90:
b5:aa:e0:df:b3:98:f9:47:7b:dc:92:88:2b:7e:ea:
67:c7:10:c2:a3:51:60:27:02:be:70:08:86:42:80:
8a:78:0a:45:4f:28:7a:b7:4a:db:77:5e:2f:4f:01:
e4:77:ce:2b:1d:ab:fb:83:2c:9f:aa:48:8e:09:fc:
33:e7:50:22:0b:75:c0:a7:8d:11:5e:7e:99:75:73:
c5:ee:c5:d2:1b:54:f0:de:66:22:1d:5c:fc:ed:c2:
8c:0b:76:e1:6a:25:5a:e3:bf:ec:33:39:2c:c1:0a:
7c:2b:a6:d0:16:97:d4:5a:1e:51:67:c3:26:0f:ad:
63:8a:05:3a:1f:a1:f0:50:ab:d9:40:d4:f3:f6:96:
66:f8:da:22:d5:78:54:21:ae:e6:a0:8c:cb:2d:b9:
e8:68:b4:04:6f:bf:4d:71:e7:97:26:86:ae:be:2b:
97:8b:46:2f:43:d9:42:7a:ee:d4:4e:3e:35:96:eb:
c2:cb:57:7c:c8:74:08:6e:9a:59:77:2d:61:c1:27:
6c:e5:5f:38:a7:1d:59:7b:e4:f4:8b:15:a1:0f:00:
d4:5d:55:60:f0:04:36:7c:cc:66:48:02:d8:14:05:
6b:c3:53:d2:ce:bf:78:5c:e4:df:9d:ec:d3:e5:1b:
33:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:18:E0:B1:F2:3D:D3:68:CD:14:3D:26:F3:E0:D9:1E:D4:B2:C8:81
X509v3 Authority Key Identifier:
keyid:75:80:D1:65:69:BB:24:A3:28:E2:7B:47:F7:D7:51:65:97:25:DE:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dYDRZWm7JKMo4ntH99dRZZcl3vs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/1a18de-efbd-41b5-b336-79fbd385a550/1/1-xjgsfI902jNFD0m8-DZHtSyyIE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/1a18de-efbd-41b5-b336-79fbd385a550/1/dYDRZWm7JKMo4ntH99dRZZcl3vs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:3a40:2000::/48
Signature Algorithm: sha256WithRSAEncryption
26:3c:76:0d:99:b9:19:c8:f1:95:3c:50:6f:87:40:81:7c:b2:
ee:9c:69:a2:cd:51:41:81:86:f6:3b:f3:0a:fa:ce:65:f4:51:
74:e0:eb:50:06:d9:39:b0:02:96:c0:73:a9:17:f8:ca:b4:59:
bd:19:ce:e0:64:51:03:bb:77:72:f3:23:fc:44:e7:21:83:e6:
72:f9:c2:2b:21:19:1e:4a:a4:dd:50:8c:a0:00:d9:58:89:88:
d8:e5:4d:2b:a8:6f:c0:78:0b:9c:59:cd:c3:16:06:8b:06:7e:
dc:31:7c:79:35:1b:e5:92:7a:98:cb:59:42:27:ee:c9:f3:fb:
9e:ac:7e:ec:1e:fe:78:12:91:4f:77:8c:46:90:d7:db:8f:63:
39:be:e1:3c:a5:43:f3:9c:2d:b4:64:d8:86:06:b9:88:19:b8:
9c:6c:a7:16:97:ac:3b:79:4c:81:fa:62:1e:59:26:51:a4:2e:
bc:8b:e9:97:39:d7:60:00:be:58:dc:57:7d:5b:01:9a:b8:64:
71:c7:c0:b1:76:8a:14:dc:2f:40:b4:6d:51:54:ee:3c:cf:ea:
fb:b9:7c:fd:cb:c3:44:f3:1c:c3:0b:10:73:85:38:9c:ff:b3:
30:9f:a3:72:e6:8c:c1:66:7d:27:a5:ad:4a:68:6e:c3:26:85:
1e:49:28:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:54:53 2025 by rpki-client