Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/fe4b06-fc2e-4bcb-877e-af1ef1d7afb8/1/K7_w83CbqB50p5lcpbyDnATtK4Y.roa
File: K7_w83CbqB50p5lcpbyDnATtK4Y.roa (raw, json)
Hash identifier: /8SCcb2O2tmxF/iex69u1hAPcq9K2D7sGmmIbln+NaE=
Subject key identifier: 2B:BF:F0:F3:70:9B:A8:1E:74:A7:99:5C:A5:BC:83:9C:04:ED:2B:86
Certificate issuer: /CN=b35002ba088d5bd09c1553dced5b0bf3907ff736
Certificate serial: 01942444B419EC637B10221C1A32D181EEBD
Authority key identifier: B3:50:02:BA:08:8D:5B:D0:9C:15:53:DC:ED:5B:0B:F3:90:7F:F7:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s1ACugiNW9CcFVPc7VsL85B_9zY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/fe4b06-fc2e-4bcb-877e-af1ef1d7afb8/1/K7_w83CbqB50p5lcpbyDnATtK4Y.roa
Signing time: Wed 01 Jan 2025 23:47:49 +0000
ROA not before: Wed 01 Jan 2025 23:47:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 210852
IP address blocks: 2a11:df40::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:44:b4:19:ec:63:7b:10:22:1c:1a:32:d1:81:ee:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b35002ba088d5bd09c1553dced5b0bf3907ff736
Validity
Not Before: Jan 1 23:47:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2bbff0f3709ba81e74a7995ca5bc839c04ed2b86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:e7:ba:e4:fe:29:df:ee:b4:f2:45:36:ae:b7:
2d:15:77:b3:40:db:9e:2e:bd:76:3f:93:bf:26:a5:
e5:e0:64:01:f3:5c:e0:07:75:a2:77:5d:91:d9:d1:
45:0d:23:88:b3:3a:b7:5e:4d:37:b9:5c:f2:7a:7c:
48:d4:42:12:9b:5f:ae:c0:c0:b0:bb:27:ae:52:b8:
f3:8a:f9:c8:d7:44:79:9b:88:ea:88:cd:83:b9:36:
96:44:ea:65:8f:e4:ed:4b:6b:a6:c5:09:c5:c3:8d:
e2:bb:d8:6d:1d:39:96:e0:38:e3:f8:fe:d8:e8:63:
27:1f:6d:09:3e:8b:b6:61:aa:cc:17:f9:10:42:7d:
d8:b3:ca:34:02:68:93:ab:ee:7b:6c:0b:d2:c6:dc:
91:4c:8c:57:43:76:d7:92:61:7a:35:02:96:c7:e8:
37:e3:6f:f8:01:4d:b0:91:58:b6:fc:53:ab:71:38:
c2:54:b3:03:a0:0f:65:f9:8c:6a:e0:ad:9f:89:4f:
26:08:96:2f:f8:bd:ad:cf:da:e6:0b:c9:f7:88:16:
fa:9b:ae:3b:4b:86:ee:41:70:6a:58:7b:94:12:9d:
8b:f4:f6:a4:8e:ed:43:bd:f5:03:f3:bf:12:c3:0a:
aa:41:af:98:d5:e7:de:45:7f:78:f7:fb:c2:27:20:
4c:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:BF:F0:F3:70:9B:A8:1E:74:A7:99:5C:A5:BC:83:9C:04:ED:2B:86
X509v3 Authority Key Identifier:
keyid:B3:50:02:BA:08:8D:5B:D0:9C:15:53:DC:ED:5B:0B:F3:90:7F:F7:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s1ACugiNW9CcFVPc7VsL85B_9zY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/fe4b06-fc2e-4bcb-877e-af1ef1d7afb8/1/K7_w83CbqB50p5lcpbyDnATtK4Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/fe4b06-fc2e-4bcb-877e-af1ef1d7afb8/1/s1ACugiNW9CcFVPc7VsL85B_9zY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:df40::/32
Signature Algorithm: sha256WithRSAEncryption
91:5e:1a:36:b0:80:a3:59:4a:7c:e8:2f:61:0f:ba:2a:a6:32:
6f:88:2c:cd:3a:bf:d3:0b:53:af:0d:d1:ee:29:35:67:ed:7f:
aa:f1:31:32:e4:94:d0:b7:ce:8a:c5:03:f2:8f:78:07:da:59:
02:21:e6:8d:ed:a7:72:16:07:a9:ab:d6:f5:67:32:c1:32:a2:
0f:ff:84:6e:94:66:d7:ef:f9:b2:3e:f3:77:0c:49:39:fb:87:
35:e7:f6:0f:1b:ac:02:7a:4c:60:25:38:ac:4a:53:69:58:ec:
c5:c7:b9:d9:23:0b:df:23:02:b9:2b:3d:b1:36:fc:19:be:f5:
a7:49:12:11:21:9a:5d:61:13:2d:63:a3:fd:45:b0:76:cb:2c:
45:84:6a:d7:f5:0a:74:73:6e:62:77:3d:ae:a0:a7:1e:27:04:
df:27:5a:d2:90:3f:11:be:31:c2:51:86:0c:35:ec:c3:38:2b:
45:3b:65:0b:93:f2:34:2c:47:dd:81:b2:d8:99:a9:ea:8d:e5:
83:6d:d0:69:a5:56:01:a7:cc:a6:f0:b9:93:07:59:d7:b5:f9:
34:77:1f:7f:a8:a9:37:08:11:ca:64:2f:63:39:6b:96:e3:18:
15:64:ba:c1:90:ec:c2:b9:50:8b:11:b6:6a:14:7b:d9:06:a4:
6e:fe:d1:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:48:41 2025 by rpki-client