Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/4d6ae6-5ff5-4ebc-a39c-d10d592279c4/1/QDGA21LmVzzWtSRex_sCeXEDV5A.roa
File: QDGA21LmVzzWtSRex_sCeXEDV5A.roa (raw, json)
Hash identifier: m7W8ZFAbJJ4dXcLCBduMK2RD2Sxp3AhEaNHbKnvx8io=
Subject key identifier: 40:31:80:DB:52:E6:57:3C:D6:B5:24:5E:C7:FB:02:79:71:03:57:90
Certificate issuer: /CN=50c4c24be8d5efbf0642fd18e3b6b7c8d22cc60f
Certificate serial: 019420D596F1B73198143BBE3F0439A07840
Authority key identifier: 50:C4:C2:4B:E8:D5:EF:BF:06:42:FD:18:E3:B6:B7:C8:D2:2C:C6:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UMTCS-jV778GQv0Y47a3yNIsxg8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/4d6ae6-5ff5-4ebc-a39c-d10d592279c4/1/QDGA21LmVzzWtSRex_sCeXEDV5A.roa
Signing time: Wed 01 Jan 2025 07:47:36 +0000
ROA not before: Wed 01 Jan 2025 07:47:36 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215596
IP address blocks: 2a0e:4d40::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d5:96:f1:b7:31:98:14:3b:be:3f:04:39:a0:78:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50c4c24be8d5efbf0642fd18e3b6b7c8d22cc60f
Validity
Not Before: Jan 1 07:47:36 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=403180db52e6573cd6b5245ec7fb027971035790
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:50:61:14:25:8b:44:54:6f:df:b5:44:e4:6e:
84:01:09:85:f9:68:70:ea:a7:89:86:52:f6:29:b7:
e6:e0:c2:3d:2f:e9:6a:bc:38:15:3f:80:d2:cf:b2:
8b:33:a9:e8:f4:6c:03:c2:b5:12:e5:54:82:fd:06:
e5:fa:91:2b:2b:80:af:ec:95:b2:46:57:61:1d:90:
10:31:b8:f5:11:16:9a:25:39:e0:5c:12:1e:4e:32:
31:b4:e6:9d:5d:d9:28:f4:d1:f3:0f:6b:78:45:0e:
cf:b0:64:d7:83:98:cc:39:09:36:88:c8:d8:d2:ab:
4c:4f:09:01:dc:33:6a:08:95:c2:7e:3b:0c:0f:0c:
a5:9f:b2:51:db:9a:bd:bb:11:dd:0c:89:e7:82:df:
fe:cd:4e:a8:43:6f:43:2c:ac:81:b2:d9:5f:60:82:
58:5f:ca:4f:66:7f:51:bb:72:e8:5f:5e:98:0e:90:
e4:68:92:65:bd:57:1c:ec:54:12:12:fd:2e:bf:8c:
76:1a:d1:b3:b4:75:4a:85:6f:f3:27:64:c1:a7:13:
26:86:03:62:5e:2e:b8:59:05:4b:91:6c:2e:75:48:
0d:19:dd:d9:b0:29:15:2a:bc:bb:b1:e8:09:05:ba:
49:d4:60:b3:85:6a:1e:90:4e:22:24:de:7e:7b:65:
eb:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:31:80:DB:52:E6:57:3C:D6:B5:24:5E:C7:FB:02:79:71:03:57:90
X509v3 Authority Key Identifier:
keyid:50:C4:C2:4B:E8:D5:EF:BF:06:42:FD:18:E3:B6:B7:C8:D2:2C:C6:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UMTCS-jV778GQv0Y47a3yNIsxg8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/4d6ae6-5ff5-4ebc-a39c-d10d592279c4/1/QDGA21LmVzzWtSRex_sCeXEDV5A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/4d6ae6-5ff5-4ebc-a39c-d10d592279c4/1/UMTCS-jV778GQv0Y47a3yNIsxg8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:4d40::/29
Signature Algorithm: sha256WithRSAEncryption
c8:64:5e:74:9b:96:6f:3b:49:03:cf:08:92:3f:96:4c:36:66:
4e:7e:15:d6:5c:cb:e6:59:28:cf:d5:1d:90:ba:80:45:c2:9e:
ad:8a:f1:60:98:75:7f:2a:2c:fa:61:e8:6f:c5:85:97:2c:aa:
ed:86:07:e7:10:88:64:b4:35:c5:82:43:38:ec:24:eb:07:ac:
b0:79:ae:04:b9:2d:79:99:42:01:7b:9a:56:70:3a:9f:cb:84:
70:09:a8:12:b3:36:d2:db:8b:aa:43:72:a2:8c:a8:7f:33:63:
fa:d3:6e:a9:1f:cc:6d:7c:c9:f2:8d:68:be:25:59:2d:19:a2:
61:f1:4c:67:93:1f:d8:d5:3a:ac:20:a1:54:f5:cc:31:c3:13:
5e:e5:29:52:c9:97:a8:ec:70:80:8c:5a:29:dc:da:38:15:df:
e5:06:aa:d8:00:19:0c:19:87:70:3d:ea:27:72:9b:bc:e0:3b:
0f:80:54:48:f3:d4:77:4d:63:a5:0e:65:df:4d:37:bc:76:4b:
2d:4f:2b:95:7e:67:0a:fc:50:ea:3e:f4:9d:2d:eb:04:20:2e:
18:8f:50:f3:68:37:41:11:91:09:ac:80:9f:2f:e2:de:eb:1a:
22:dc:19:ab:4f:24:57:f1:96:af:bf:87:3b:7a:cc:13:b2:c1:
d8:70:68:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 13:03:10 2025 by rpki-client