Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/os6ytVsfxjEi5qCbUPPYf72wvQQ.roa
File: os6ytVsfxjEi5qCbUPPYf72wvQQ.roa (raw, json)
Hash identifier: C9keHtXXD5SFP7Yj9/ksCEfCyyoweim7NkbyNT1c3+E=
Subject key identifier: A2:CE:B2:B5:5B:1F:C6:31:22:E6:A0:9B:50:F3:D8:7F:BD:B0:BD:04
Certificate issuer: /CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Certificate serial: 019425FDEF3FB3FD3BBAC9098283819F6C99
Authority key identifier: B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/os6ytVsfxjEi5qCbUPPYf72wvQQ.roa
Signing time: Thu 02 Jan 2025 07:49:46 +0000
ROA not before: Thu 02 Jan 2025 07:49:46 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214836
IP address blocks: 2a0a:79c7:fe00::/44 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:ef:3f:b3:fd:3b:ba:c9:09:82:83:81:9f:6c:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Validity
Not Before: Jan 2 07:49:46 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a2ceb2b55b1fc63122e6a09b50f3d87fbdb0bd04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:e1:a9:ef:56:d6:b7:d3:7e:87:db:82:cf:89:
aa:1e:45:cd:de:45:2a:29:db:e3:04:60:c9:92:8a:
c2:69:69:7a:62:80:80:13:a0:4f:0b:11:1b:a1:2b:
5e:43:ec:44:95:87:50:09:9a:86:1d:cf:b9:2b:aa:
5c:6a:75:82:60:e0:e9:81:eb:92:2c:5b:e1:de:21:
67:35:fb:ef:f8:7e:5b:6b:c5:34:e5:a9:ad:92:c6:
bd:31:43:ae:d6:39:ff:da:7a:06:82:a8:f4:9c:4f:
da:24:99:14:7c:4c:77:f9:85:10:d2:e4:65:62:52:
9d:a3:c0:f7:62:d0:a2:9d:94:05:49:12:cb:ac:0f:
e0:23:d0:10:65:96:d7:85:1b:0d:11:53:b4:e7:e5:
63:b7:aa:55:05:c0:87:56:27:92:87:ed:f4:a1:10:
e1:19:91:85:68:7c:c6:f8:2d:a6:bc:a5:34:e7:26:
eb:e1:ed:3f:60:f2:b2:c6:eb:36:76:15:fb:a5:c5:
df:cf:c4:ea:f4:80:be:70:68:a9:9b:e5:3c:76:47:
65:95:cc:f7:41:92:29:fa:70:68:cb:02:5f:fe:4e:
f1:c7:80:fe:62:5e:e5:af:ab:d4:72:de:e5:c3:71:
55:d7:77:e4:3c:13:65:8d:55:77:b9:2e:5d:bd:5a:
30:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:CE:B2:B5:5B:1F:C6:31:22:E6:A0:9B:50:F3:D8:7F:BD:B0:BD:04
X509v3 Authority Key Identifier:
keyid:B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/os6ytVsfxjEi5qCbUPPYf72wvQQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:79c7:fe00::/44
Signature Algorithm: sha256WithRSAEncryption
bc:8b:fa:6f:ef:20:02:23:38:c1:65:39:22:8b:05:30:21:6d:
3f:58:6f:f7:75:1b:da:6e:b2:c5:75:55:e8:e9:6e:80:a0:75:
cb:ab:f2:35:08:5e:79:7f:3b:da:76:c5:e4:6c:e0:0f:0f:0e:
f6:33:04:2c:18:ec:43:ac:0d:0e:74:e9:5c:08:a6:f5:36:2d:
0e:3d:29:b5:1e:bd:b0:c8:ed:96:82:93:73:72:34:cc:c9:45:
ae:82:6b:5f:7a:cf:9e:e2:14:f2:cf:5d:1b:f4:c5:23:63:6b:
80:ab:cd:23:c3:33:3e:37:bd:15:eb:20:1a:fe:04:84:70:78:
37:01:f4:60:df:bf:ba:23:5c:7e:45:df:dc:37:2f:36:40:2d:
bb:5d:a8:16:2a:a1:8c:7a:29:f7:9e:01:ef:cb:32:61:ba:4c:
e1:3f:41:f7:ec:29:1a:bf:06:ed:df:83:4d:bf:1c:54:a8:5d:
52:6c:86:66:69:dc:e5:55:41:3f:61:56:57:81:51:e6:18:0a:
ec:4a:86:e3:48:c2:f3:45:24:65:81:15:a6:b9:b1:18:4f:0e:
28:ec:61:61:c5:ea:dd:c1:16:ee:81:d3:3d:cd:b1:91:71:e3:
a5:4b:7c:3b:5c:78:a3:a3:49:10:26:6f:eb:71:ff:a8:2f:0e:
c8:f3:e9:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 09:43:26 2025 by rpki-client