Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/9fd003-06f7-45d8-a5dd-076bf02dcdd9/1/2Z88cke15ULyLHE9dH-Jpb8d27k.roa
File: 2Z88cke15ULyLHE9dH-Jpb8d27k.roa (raw, json)
Hash identifier: 3TRyKtdWGWZMW+IYTU13VuHyUN+4ICeTrdECMg5zbVM=
Subject key identifier: D9:9F:3C:72:47:B5:E5:42:F2:2C:71:3D:74:7F:89:A5:BF:1D:DB:B9
Certificate issuer: /CN=fb29cf23fc9ce6e2b8c39323d270ce52e8938702
Certificate serial: 018EB45DDD50DD9A61AA8DA27B0F4ECA7C12
Authority key identifier: FB:29:CF:23:FC:9C:E6:E2:B8:C3:93:23:D2:70:CE:52:E8:93:87:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-ynPI_yc5uK4w5Mj0nDOUuiThwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/9fd003-06f7-45d8-a5dd-076bf02dcdd9/1/2Z88cke15ULyLHE9dH-Jpb8d27k.roa
Signing time: Sat 06 Apr 2024 17:03:53 +0000
ROA not before: Sat 06 Apr 2024 17:03:53 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200216
IP address blocks: 2a13:5040::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:b4:5d:dd:50:dd:9a:61:aa:8d:a2:7b:0f:4e:ca:7c:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb29cf23fc9ce6e2b8c39323d270ce52e8938702
Validity
Not Before: Apr 6 17:03:53 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d99f3c7247b5e542f22c713d747f89a5bf1ddbb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:f4:da:00:e4:63:63:6e:79:76:2e:d8:82:19:
47:b2:a2:92:c7:8f:98:b4:2b:e0:ec:c2:ba:f9:8b:
32:7a:c3:07:aa:7c:cf:28:73:c6:00:c3:57:8c:73:
4e:ce:88:98:23:72:e0:4b:11:1d:e8:bb:5c:af:db:
86:17:40:30:c4:8d:fb:c8:22:69:a1:ea:4b:83:b0:
01:b3:12:b0:be:cd:0b:59:ce:97:86:45:5f:5b:7f:
6e:25:f0:d6:a6:95:6a:ee:3e:51:ce:aa:6e:93:e7:
06:2d:53:c8:fe:17:ba:83:a2:83:7b:83:86:84:d0:
a6:5b:28:df:49:a8:79:2e:0e:dc:75:fa:b1:e6:44:
41:91:35:a6:0c:66:0a:17:8e:ac:b4:38:ab:b3:81:
b5:4d:32:10:ab:e4:ef:9f:ba:f4:7f:5b:76:0b:c7:
cd:05:84:11:87:61:32:94:c7:60:29:11:5a:c2:ff:
4d:b6:06:12:a0:35:d1:dd:83:d8:25:31:69:2a:ca:
8a:41:07:a2:32:a5:58:35:f3:64:86:52:92:df:33:
ee:44:f9:b9:67:fb:22:7d:71:d4:87:d2:04:a0:da:
a7:fc:7e:cb:f9:80:35:60:4c:08:05:ca:83:49:ec:
68:81:04:06:0b:23:83:61:84:11:4e:be:60:6c:7f:
a5:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:9F:3C:72:47:B5:E5:42:F2:2C:71:3D:74:7F:89:A5:BF:1D:DB:B9
X509v3 Authority Key Identifier:
keyid:FB:29:CF:23:FC:9C:E6:E2:B8:C3:93:23:D2:70:CE:52:E8:93:87:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-ynPI_yc5uK4w5Mj0nDOUuiThwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/9fd003-06f7-45d8-a5dd-076bf02dcdd9/1/2Z88cke15ULyLHE9dH-Jpb8d27k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/9fd003-06f7-45d8-a5dd-076bf02dcdd9/1/1-ynPI_yc5uK4w5Mj0nDOUuiThwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:5040::/29
Signature Algorithm: sha256WithRSAEncryption
87:51:d3:1b:43:f7:4d:10:76:e8:1b:3d:11:39:53:71:40:a3:
e7:af:d5:37:5e:e8:f3:d7:ee:a6:d3:b7:53:81:17:0f:94:25:
af:72:f8:e0:b3:3d:af:b8:6e:3f:b7:44:63:d0:c8:87:9f:c2:
7a:31:07:1e:5f:f0:e5:fd:f1:38:6e:2d:b1:4a:52:49:17:0e:
8a:4c:3a:b8:7b:5f:f7:f4:d1:91:62:e6:27:23:b5:ca:d7:dd:
cc:b7:77:14:2c:42:60:0c:56:88:11:5e:93:c0:9e:e1:71:56:
1c:5a:83:56:9a:1d:e8:85:80:a4:40:4e:0e:2f:39:dc:f4:29:
12:ca:14:7c:94:98:9d:eb:ac:dd:fc:aa:9d:9c:c4:aa:36:36:
67:f2:f6:f1:2f:ad:cb:fb:88:24:dc:8c:95:fa:3b:cd:19:06:
a4:47:9c:c2:2f:69:f3:a4:3b:5d:7d:ed:c6:7c:9e:ee:3f:11:
d4:b9:50:47:86:47:e9:17:5d:1c:d7:be:f9:1c:c3:cf:9c:80:
99:0e:2c:af:20:4f:c7:49:58:01:3a:7a:fd:4b:6d:da:f0:cd:
3e:92:c1:f9:ec:fb:a3:ce:6e:1a:c9:e3:b8:00:63:bf:44:2d:
02:0b:41:46:99:1e:e3:5a:e1:9b:82:d1:00:2b:fd:b5:e1:e6:
af:ff:fa:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:54:46 2025 by rpki-client