Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/7c9fcc-8fce-44b7-b6bf-11776031415f/1/zNj2Ye1kQPI4RYTcA7WpI1MUKYc.roa
File: zNj2Ye1kQPI4RYTcA7WpI1MUKYc.roa (raw, json)
Hash identifier: 1WT4wVK2ydZ+nENsl4q/Lzm4ltckYsw9b5INTrNxkWY=
Subject key identifier: CC:D8:F6:61:ED:64:40:F2:38:45:84:DC:03:B5:A9:23:53:14:29:87
Certificate issuer: /CN=5754d19527fd85d0d444acadd44a01655fdc7400
Certificate serial: 0195B5AC681BEC94214AA486751E26FA3113
Authority key identifier: 57:54:D1:95:27:FD:85:D0:D4:44:AC:AD:D4:4A:01:65:5F:DC:74:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V1TRlSf9hdDURKyt1EoBZV_cdAA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/7c9fcc-8fce-44b7-b6bf-11776031415f/1/zNj2Ye1kQPI4RYTcA7WpI1MUKYc.roa
Signing time: Thu 20 Mar 2025 22:28:49 +0000
ROA not before: Thu 20 Mar 2025 22:28:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 13445
IP address blocks: 2a00:a640:10::/44 maxlen: 44
2a00:a640:20::/44 maxlen: 44
2a00:a640:100::/40 maxlen: 40
2a00:a640:200::/40 maxlen: 40
2a00:a640:300::/40 maxlen: 40
2a00:a640:400::/40 maxlen: 40
2a00:a640:1010::/44 maxlen: 44
2a00:a640:1020::/44 maxlen: 44
2a00:a640:10a0::/44 maxlen: 48
2a00:a640:1100::/44 maxlen: 44
2a00:a640:1200::/44 maxlen: 44
2a00:a640:1300::/44 maxlen: 44
2a00:a640:1400::/44 maxlen: 44
2a00:a640:2010::/44 maxlen: 44
2a00:a640:2020::/44 maxlen: 44
2a00:a640:20a0::/44 maxlen: 48
2a00:a640:2100::/44 maxlen: 44
2a00:a640:2200::/44 maxlen: 44
2a00:a640:2300::/44 maxlen: 44
2a00:a640:2400::/44 maxlen: 44
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:b5:ac:68:1b:ec:94:21:4a:a4:86:75:1e:26:fa:31:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5754d19527fd85d0d444acadd44a01655fdc7400
Validity
Not Before: Mar 20 22:28:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ccd8f661ed6440f2384584dc03b5a92353142987
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:1f:1f:e2:c2:3e:7a:9f:bc:6d:f8:1f:1c:45:
fa:06:a4:41:a8:af:5f:51:05:c2:76:02:7b:79:18:
86:6f:a9:33:87:dc:97:64:bf:fa:12:80:6b:9e:58:
9e:2b:d7:62:a8:c5:f7:36:27:24:6c:bb:0a:4c:3b:
fe:17:89:6a:18:cd:7d:a0:5d:f4:47:61:ff:55:20:
8a:af:96:8f:fa:0f:90:9c:83:18:63:25:26:2a:dc:
f5:96:0e:36:c3:ef:19:aa:e9:28:2e:46:5e:c3:ec:
95:f8:53:0c:6a:d5:5f:91:26:2c:b4:83:69:36:e6:
37:19:47:01:1f:b9:cb:81:d9:a3:b8:10:9c:51:c0:
70:8f:4f:55:94:42:c2:80:06:b5:40:94:8e:4c:22:
95:96:60:17:ac:05:7f:34:80:0f:7a:d7:85:6f:5b:
e2:d4:6d:8c:b2:f8:d3:3d:b8:92:d4:3f:74:5e:c8:
06:fe:b4:70:a6:33:1b:a3:f6:18:17:06:9d:e1:fa:
10:77:32:b7:f0:ae:71:fc:9d:1b:80:a1:2a:1c:9e:
dd:a0:00:fa:02:d0:55:41:70:bb:0c:09:ac:d7:af:
26:9d:6b:07:47:24:35:9d:4c:e2:ce:61:a8:77:e3:
dc:5e:dd:e0:08:b5:1a:41:03:8f:6e:fd:5a:67:34:
8a:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:D8:F6:61:ED:64:40:F2:38:45:84:DC:03:B5:A9:23:53:14:29:87
X509v3 Authority Key Identifier:
keyid:57:54:D1:95:27:FD:85:D0:D4:44:AC:AD:D4:4A:01:65:5F:DC:74:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V1TRlSf9hdDURKyt1EoBZV_cdAA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/7c9fcc-8fce-44b7-b6bf-11776031415f/1/zNj2Ye1kQPI4RYTcA7WpI1MUKYc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/7c9fcc-8fce-44b7-b6bf-11776031415f/1/V1TRlSf9hdDURKyt1EoBZV_cdAA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:a640:10::-2a00:a640:2f:ffff:ffff:ffff:ffff:ffff
2a00:a640:100::-2a00:a640:4ff:ffff:ffff:ffff:ffff:ffff
2a00:a640:1010::-2a00:a640:102f:ffff:ffff:ffff:ffff:ffff
2a00:a640:10a0::/44
2a00:a640:1100::/44
2a00:a640:1200::/44
2a00:a640:1300::/44
2a00:a640:1400::/44
2a00:a640:2010::-2a00:a640:202f:ffff:ffff:ffff:ffff:ffff
2a00:a640:20a0::/44
2a00:a640:2100::/44
2a00:a640:2200::/44
2a00:a640:2300::/44
2a00:a640:2400::/44
Signature Algorithm: sha256WithRSAEncryption
3c:8a:4d:c5:ab:cb:92:e0:e3:1a:1e:df:ed:44:19:a0:33:60:
c1:b0:2f:86:52:71:85:12:1e:08:63:a6:0a:a9:51:1b:80:9f:
2d:0e:56:05:f9:bd:3e:4f:51:17:11:2b:e9:1a:9f:32:80:bc:
2c:7f:9d:e6:a1:85:1d:58:28:9c:c6:e6:19:4c:53:c4:4a:4e:
77:9a:c5:9d:05:9e:c9:1b:48:bf:af:6d:a3:87:12:35:11:ff:
e6:ad:b2:13:bf:4d:be:35:51:c1:b4:ba:9f:f1:04:ae:2c:29:
48:ae:48:0e:fc:7a:50:45:34:12:9c:e8:73:22:6d:2c:8c:3c:
f9:f0:ec:88:cf:29:af:94:b2:a9:39:64:74:67:6c:e0:88:00:
90:11:51:c1:b8:27:ab:f2:9e:90:e0:60:4b:cd:3a:d6:a0:77:
91:0e:25:64:e2:1d:17:01:98:90:d0:f5:3b:b7:99:74:74:c9:
d9:18:0f:f1:47:c5:c4:5d:94:27:99:b6:bf:44:43:30:0e:8d:
0d:b2:7d:7d:bd:67:f9:9a:46:1f:90:f9:70:49:7c:6e:61:0c:
88:bf:21:c1:ad:4e:a2:41:a2:87:ff:81:4e:64:e3:a8:03:f3:
ba:51:36:74:67:83:13:c2:e4:b5:00:60:bc:0a:89:54:55:9c:
d6:0f:9a:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 10:38:13 2025 by rpki-client