Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/d03109-e2dc-4bc9-ba2e-d649e227097f/1/NEqRbUiPdq1_tvRTlsfQ5kXVZ0g.roa
File: NEqRbUiPdq1_tvRTlsfQ5kXVZ0g.roa (raw, json)
Hash identifier: +REnbDtr3XGNcs7Fo1PyEDbv55Tfn/gd+cO7HvaM0sE=
Subject key identifier: 34:4A:91:6D:48:8F:76:AD:7F:B6:F4:53:96:C7:D0:E6:45:D5:67:48
Certificate issuer: /CN=52502a29ac06b65e932e1bd97d7fcf29c371cb3d
Certificate serial: 018C820E06673CEA7593B50730B34D0BFD19
Authority key identifier: 52:50:2A:29:AC:06:B6:5E:93:2E:1B:D9:7D:7F:CF:29:C3:71:CB:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UlAqKawGtl6TLhvZfX_PKcNxyz0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/d03109-e2dc-4bc9-ba2e-d649e227097f/1/NEqRbUiPdq1_tvRTlsfQ5kXVZ0g.roa
Signing time: Tue 19 Dec 2023 12:30:06 +0000
ROA not before: Tue 19 Dec 2023 12:30:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57027
IP address blocks: 2a09:2b80:4::/48 maxlen: 48
2a09:2b80:2::/48 maxlen: 48
2a09:2b80:3::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:82:0e:06:67:3c:ea:75:93:b5:07:30:b3:4d:0b:fd:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52502a29ac06b65e932e1bd97d7fcf29c371cb3d
Validity
Not Before: Dec 19 12:30:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=344a916d488f76ad7fb6f45396c7d0e645d56748
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:6b:a6:47:09:c6:49:34:ef:3b:4f:bf:fc:1d:
d4:51:5e:a4:78:3c:ca:6d:e9:29:40:80:04:88:13:
24:34:02:a5:6b:aa:31:d1:9b:e0:1e:56:d7:d5:0b:
14:b9:8a:77:3c:dd:37:d6:ef:80:dd:a9:f2:f8:7e:
90:ce:1e:36:5f:d8:80:93:32:ff:bf:9c:93:1d:f4:
f5:91:5f:6f:54:ad:09:b2:52:4f:cc:b7:f5:bc:98:
08:c8:51:bd:2f:c6:d7:f2:38:76:a9:e0:a9:f9:3b:
8d:94:f2:bc:51:f9:43:5c:cd:7b:2f:4f:09:72:ab:
a0:a8:7c:df:72:f8:05:a2:1c:bd:f6:d8:38:77:96:
2e:6e:64:1a:b1:4e:1c:71:31:a2:0c:68:85:e7:bd:
9d:e0:9a:fd:76:3e:b4:6a:50:ed:04:96:c7:45:3c:
90:67:59:c0:8a:4f:5a:50:29:a9:5b:81:a2:3e:51:
3d:c8:d6:a6:e5:88:01:cf:fe:7d:3b:09:a4:1b:32:
ba:f5:a8:00:c0:cb:02:bc:a7:51:70:bd:29:a2:b4:
fe:6b:3e:48:90:3e:a7:bc:03:da:22:7a:9d:42:1f:
b9:d3:61:08:fd:36:03:a2:e8:5b:b2:1c:72:7d:8a:
88:60:81:8e:bc:1d:01:ac:06:3a:6b:aa:90:f9:de:
84:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:4A:91:6D:48:8F:76:AD:7F:B6:F4:53:96:C7:D0:E6:45:D5:67:48
X509v3 Authority Key Identifier:
keyid:52:50:2A:29:AC:06:B6:5E:93:2E:1B:D9:7D:7F:CF:29:C3:71:CB:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UlAqKawGtl6TLhvZfX_PKcNxyz0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/d03109-e2dc-4bc9-ba2e-d649e227097f/1/NEqRbUiPdq1_tvRTlsfQ5kXVZ0g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/d03109-e2dc-4bc9-ba2e-d649e227097f/1/UlAqKawGtl6TLhvZfX_PKcNxyz0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:2b80:2::-2a09:2b80:4:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
04:74:77:49:4e:51:82:fc:1d:10:79:3f:63:b1:b1:0e:13:8e:
88:4f:a1:c2:07:fd:85:01:9c:7c:f3:a3:15:cd:ee:8c:4a:72:
e6:4f:96:2c:f0:2d:99:33:08:12:f8:75:8f:75:15:ce:9e:dd:
46:a3:34:fa:b4:37:8e:1e:c5:65:45:85:cd:20:9a:86:b5:75:
77:d4:63:4e:e2:a3:2d:3c:32:e9:2e:25:83:d9:b7:43:8c:a9:
25:10:45:59:cc:67:c7:76:f1:e1:2d:43:0b:b4:ed:a9:f9:09:
a6:b4:ad:0b:bb:28:47:6d:c7:f3:b8:79:ae:07:6e:f2:7a:a1:
40:ff:79:9c:b9:c7:ca:f6:0d:cb:3d:fe:82:7b:2d:1e:13:01:
19:88:f8:f9:d8:f1:ee:58:0f:95:4b:72:ec:03:84:b7:b5:9d:
a6:75:be:04:34:ac:64:c6:f3:3c:2e:41:22:5b:e0:ff:0c:b8:
41:15:ea:5f:01:33:99:17:4b:ed:e0:75:46:d0:06:94:e5:48:
f1:1b:b0:da:28:62:71:84:03:5d:f7:51:11:b2:8f:37:33:91:
d0:43:f5:bc:38:83:24:6a:df:ed:88:86:5e:71:93:1a:e9:86:
6e:2f:2f:88:f6:91:84:73:2f:99:a8:20:72:2f:67:ab:23:9c:
93:d4:d1:e6
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:37:21 2025 by rpki-client