Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/f55757-5965-4270-beab-a0d6dbfac6eb/1/mvLDmuyuUuZFiCTIw_g9i8uNgFg.roa
File: mvLDmuyuUuZFiCTIw_g9i8uNgFg.roa (raw, json)
Hash identifier: GZj+Xi5SIMQUMGweRfOhuKIks60lK9TTGOmmhsaxut8=
Subject key identifier: 9A:F2:C3:9A:EC:AE:52:E6:45:88:24:C8:C3:F8:3D:8B:CB:8D:80:58
Certificate issuer: /CN=3f3bf511774b6e1d706bb2727b3d3125775a912f
Certificate serial: 01942669FDBBF91D23BE7EF8384B3B290925
Authority key identifier: 3F:3B:F5:11:77:4B:6E:1D:70:6B:B2:72:7B:3D:31:25:77:5A:91:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pzv1EXdLbh1wa7Jyez0xJXdakS8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/f55757-5965-4270-beab-a0d6dbfac6eb/1/mvLDmuyuUuZFiCTIw_g9i8uNgFg.roa
Signing time: Thu 02 Jan 2025 09:47:47 +0000
ROA not before: Thu 02 Jan 2025 09:47:47 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 14618
IP address blocks: 2a0a:144::/35 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:69:fd:bb:f9:1d:23:be:7e:f8:38:4b:3b:29:09:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f3bf511774b6e1d706bb2727b3d3125775a912f
Validity
Not Before: Jan 2 09:47:47 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9af2c39aecae52e6458824c8c3f83d8bcb8d8058
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:fb:e5:e4:a2:6a:07:c5:7c:0d:41:50:4c:6b:
b6:30:ea:93:a3:81:a9:24:99:b9:3d:9f:e8:df:fb:
40:7a:99:5b:4f:3f:6a:61:16:7c:4c:86:09:23:2f:
b4:4f:e1:51:9d:f3:53:61:16:a2:44:48:40:a8:c1:
1a:fc:4a:f0:75:00:58:b8:f4:09:07:2f:c5:22:56:
ca:bc:c0:ca:0e:87:b4:57:43:fd:ff:c9:cb:ec:a1:
09:19:71:cb:e7:0c:61:ff:c0:a7:94:14:ca:6b:f7:
48:db:59:90:79:4f:76:0e:f8:59:70:48:32:e3:20:
9b:9a:1a:5e:a3:b9:1d:f8:84:5f:1e:82:25:98:01:
69:3a:87:72:1c:95:d4:38:60:15:8d:ba:d0:7a:4e:
8f:87:e8:e7:cc:ea:96:57:f7:a5:47:81:fd:cf:9a:
ee:40:2d:56:62:87:a1:ed:a7:ea:42:3c:7b:a7:45:
0a:f1:8f:91:27:c2:0b:3b:50:03:2a:57:7a:e9:f6:
30:24:46:fa:89:75:b3:1d:f6:42:9a:84:76:db:17:
99:b6:bc:71:07:6a:3c:51:33:ba:f3:4d:70:41:8f:
21:5c:10:6e:20:43:4a:a8:7c:94:72:b6:10:18:52:
65:7b:89:39:81:8e:0f:0b:7f:87:a0:2a:79:46:44:
cd:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:F2:C3:9A:EC:AE:52:E6:45:88:24:C8:C3:F8:3D:8B:CB:8D:80:58
X509v3 Authority Key Identifier:
keyid:3F:3B:F5:11:77:4B:6E:1D:70:6B:B2:72:7B:3D:31:25:77:5A:91:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pzv1EXdLbh1wa7Jyez0xJXdakS8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/f55757-5965-4270-beab-a0d6dbfac6eb/1/mvLDmuyuUuZFiCTIw_g9i8uNgFg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/f55757-5965-4270-beab-a0d6dbfac6eb/1/Pzv1EXdLbh1wa7Jyez0xJXdakS8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:144::/35
Signature Algorithm: sha256WithRSAEncryption
84:c3:0e:22:72:e9:62:9b:cb:c3:27:45:0e:d4:a1:94:7c:81:
4d:36:40:38:ca:ac:1a:54:d0:b4:43:a7:bc:60:ed:ea:86:de:
71:6d:e5:4c:e2:5b:db:c6:02:2a:57:29:75:a3:24:05:b1:d0:
38:2e:47:fc:1c:de:cd:df:99:48:ca:6b:39:9c:e6:ed:b1:18:
b0:6c:ab:b8:45:19:b6:c5:a0:5a:0c:f8:68:18:71:48:f2:5e:
f9:2a:16:ef:cf:24:2c:ec:43:1c:f2:4b:52:29:b7:0d:b3:66:
55:dd:2a:ba:84:ba:e8:ac:9e:3a:96:7e:3e:ec:ef:6b:af:24:
ce:af:de:75:07:fd:aa:f1:4f:b2:1d:8d:0b:4d:59:75:9e:ed:
69:c6:98:13:9d:cd:05:7d:5d:e4:44:f9:68:4f:31:c3:14:54:
1f:cd:be:1d:c2:ff:0e:a5:31:23:97:02:c9:74:c4:5d:ce:53:
5a:fa:f0:69:07:d2:cb:0c:24:43:96:f2:70:71:a6:3c:1f:9b:
b7:25:c6:9e:25:c7:ab:44:c7:95:bf:e8:e8:44:c9:b5:bd:11:
bd:72:a1:4f:1e:b0:76:3d:46:5a:4f:12:32:ad:a6:bf:ad:83:
9a:68:fd:d3:8e:8a:47:99:cb:01:d6:cc:50:08:72:6c:57:06:
93:00:e8:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 23:47:52 2025 by rpki-client