Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/2f45cf-1eb2-4339-ad33-c0566af62e98/1/4Qtfpt7FKz-cAHO9_E74JcL0fjo.roa
File: 4Qtfpt7FKz-cAHO9_E74JcL0fjo.roa (raw, json)
Hash identifier: 8+dqU610HMvIAaywVx3oUkGOmUQkeottZKJi6B5qLNE=
Subject key identifier: E1:0B:5F:A6:DE:C5:2B:3F:9C:00:73:BD:FC:4E:F8:25:C2:F4:7E:3A
Certificate issuer: /CN=70f8b2dbb03cecc4f214564709149614c48d7085
Certificate serial: 018CC94E5F3EE30C6670CFD54A7C4C934E52
Authority key identifier: 70:F8:B2:DB:B0:3C:EC:C4:F2:14:56:47:09:14:96:14:C4:8D:70:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cPiy27A87MTyFFZHCRSWFMSNcIU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/2f45cf-1eb2-4339-ad33-c0566af62e98/1/4Qtfpt7FKz-cAHO9_E74JcL0fjo.roa
Signing time: Tue 02 Jan 2024 08:33:25 +0000
ROA not before: Tue 02 Jan 2024 08:33:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 22773
IP address blocks: 2a12:d880::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4e:5f:3e:e3:0c:66:70:cf:d5:4a:7c:4c:93:4e:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70f8b2dbb03cecc4f214564709149614c48d7085
Validity
Not Before: Jan 2 08:33:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e10b5fa6dec52b3f9c0073bdfc4ef825c2f47e3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:6b:38:f4:86:71:4b:9c:eb:22:40:95:73:3f:
e2:d7:8a:f2:84:19:08:67:92:a6:9f:b9:ef:2f:a3:
e9:63:cc:45:1e:1f:e7:11:45:ef:e3:94:49:3f:5d:
16:c9:4e:d6:70:8f:78:b8:9a:19:3c:fd:39:47:c5:
f0:9a:3e:1b:4d:80:d3:7b:e8:d6:71:ce:fb:87:27:
70:9a:90:cb:e7:56:69:ed:14:47:00:93:ea:99:4c:
45:4d:8f:95:17:cc:78:c5:88:ce:58:5b:cf:f0:b0:
0e:7a:a6:62:97:11:c0:d5:4c:cc:15:f2:fe:81:8e:
8d:54:74:b5:46:6a:b5:aa:4a:0c:cd:ce:d0:95:9e:
98:da:0c:c6:98:e7:32:28:cb:ec:f0:38:48:23:c4:
09:14:20:5e:14:21:cc:da:59:d6:dc:1d:2a:08:dc:
ab:31:8b:c1:8e:96:98:fe:13:ad:67:6d:22:7e:78:
f5:c7:83:25:e0:a6:93:1d:2f:47:55:d6:b1:f1:6a:
5a:ff:4a:1b:73:65:81:e1:fa:4f:7e:e4:cf:d3:c7:
18:b9:46:76:6a:32:10:b0:ed:5b:65:83:7e:6d:e0:
df:da:c0:49:6b:72:76:d8:ec:32:fc:0c:51:e6:57:
d2:f1:8d:75:3f:e1:5b:c8:eb:77:4e:b5:01:09:6f:
ed:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:0B:5F:A6:DE:C5:2B:3F:9C:00:73:BD:FC:4E:F8:25:C2:F4:7E:3A
X509v3 Authority Key Identifier:
keyid:70:F8:B2:DB:B0:3C:EC:C4:F2:14:56:47:09:14:96:14:C4:8D:70:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cPiy27A87MTyFFZHCRSWFMSNcIU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/2f45cf-1eb2-4339-ad33-c0566af62e98/1/4Qtfpt7FKz-cAHO9_E74JcL0fjo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/2f45cf-1eb2-4339-ad33-c0566af62e98/1/cPiy27A87MTyFFZHCRSWFMSNcIU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:d880::/29
Signature Algorithm: sha256WithRSAEncryption
84:a8:5a:ea:a6:1c:5a:0b:fc:bc:5e:47:3c:ef:6e:8c:69:f0:
96:4f:2c:a7:9c:3d:6c:fc:cf:bc:05:a4:60:cb:f5:9a:8b:c5:
0d:e1:74:01:99:0e:6a:0a:ca:32:87:00:c1:1c:8f:16:f5:04:
70:46:42:77:c8:83:9e:3a:b3:86:fc:14:00:dd:5d:9d:41:6b:
79:cd:aa:c0:46:e4:94:15:52:fe:9d:2c:64:23:04:5f:e3:97:
e7:15:c9:44:2a:07:05:d6:43:13:aa:f7:1a:f4:39:15:78:c3:
61:aa:c7:49:a6:69:81:4e:2e:e8:9b:16:14:54:bf:2e:91:37:
39:5a:6d:be:92:0d:14:97:98:be:5b:3f:b8:d2:5c:6c:20:eb:
33:0c:04:f9:3c:bb:48:cf:15:a2:82:ba:cd:53:68:02:12:79:
0a:8f:b7:e0:c5:09:f6:b6:de:6a:f2:a4:c4:01:ae:f4:f7:f6:
e9:c9:27:50:b7:f8:ec:dd:41:51:46:c7:f0:9d:ff:0b:97:86:
8f:54:c4:ce:79:9d:78:42:69:f3:79:a4:25:32:fe:a4:53:ce:
fd:dd:1d:04:6b:81:88:f1:1b:57:68:90:66:66:7b:c5:5c:9e:
d9:63:8c:4c:d1:ae:66:53:d5:73:cd:27:f4:db:2d:2f:ca:dd:
e9:95:e0:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 13:54:23 2025 by rpki-client