Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/AOPoLgeFVITtG4PTeppOndeUFno.roa
File: AOPoLgeFVITtG4PTeppOndeUFno.roa (raw, json)
Hash identifier: PwB3WZ8rT8leKxaQvb9fApSxrxy3pNGbM/j/Yuurbf8=
Subject key identifier: 00:E3:E8:2E:07:85:54:84:ED:1B:83:D3:7A:9A:4E:9D:D7:94:16:7A
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 0195A585E2D2C25E42089805786AABB3761D
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/AOPoLgeFVITtG4PTeppOndeUFno.roa
Signing time: Mon 17 Mar 2025 19:12:49 +0000
ROA not before: Mon 17 Mar 2025 19:12:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 0
IP address blocks: 2a00:48a0::/29 maxlen: 48
2a09:7700::/29 maxlen: 48
2a0a:d040::/29 maxlen: 48
2a0a:dd80::/29 maxlen: 48
2a0b:a0c0::/29 maxlen: 48
2a0c:8140::/29 maxlen: 48
2a0c:fa80::/29 maxlen: 48
2a0d:5e40::/29 maxlen: 48
2a0d:e000::/29 maxlen: 48
2a10:51c0::/29 maxlen: 48
2a10:7880::/29 maxlen: 48
2a11:d800::/29 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:a5:85:e2:d2:c2:5e:42:08:98:05:78:6a:ab:b3:76:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Mar 17 19:12:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=00e3e82e07855484ed1b83d37a9a4e9dd794167a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:b1:30:cf:87:7d:cf:53:5d:ad:cb:ab:97:b6:
2b:b9:d0:c9:8d:d0:00:6e:77:71:9d:b6:ed:6f:b5:
2e:a4:4f:bd:db:e1:24:b8:ed:a7:8c:50:58:7b:8b:
df:11:b2:4c:47:b2:e5:73:92:93:e7:68:d0:a3:05:
a6:59:55:8c:b3:58:2b:59:99:d2:e4:56:8b:bc:5b:
35:7a:b4:18:61:dd:f7:14:65:6f:67:d3:34:37:ab:
1a:1e:67:29:80:87:b9:8f:f3:8c:ae:47:3d:4b:46:
83:2c:6b:a5:f0:09:9b:c2:12:67:31:2f:f7:ac:68:
62:d5:fd:66:77:a5:91:18:11:60:f2:cf:d6:0e:c1:
4b:72:94:fa:7b:78:73:27:d0:50:21:ed:39:14:b8:
da:fc:9c:3e:7a:17:47:37:fa:a4:d1:7f:a5:50:56:
70:80:1c:f2:de:88:b5:07:5a:cf:92:f2:69:c3:a5:
c8:ce:b6:bc:10:23:46:bc:a2:a4:f9:52:39:e0:0e:
9e:b4:0b:2e:ac:62:77:49:fc:a7:36:c6:3f:a3:ae:
76:e8:93:9e:e8:7f:97:3a:54:26:e4:a8:d9:92:bf:
69:4d:04:ba:c1:b3:06:4f:47:e5:68:51:85:51:ac:
aa:9e:27:a1:d8:7a:c2:72:c7:08:03:6d:f6:b2:ee:
c9:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:E3:E8:2E:07:85:54:84:ED:1B:83:D3:7A:9A:4E:9D:D7:94:16:7A
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/AOPoLgeFVITtG4PTeppOndeUFno.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:48a0::/29
2a09:7700::/29
2a0a:d040::/29
2a0a:dd80::/29
2a0b:a0c0::/29
2a0c:8140::/29
2a0c:fa80::/29
2a0d:5e40::/29
2a0d:e000::/29
2a10:51c0::/29
2a10:7880::/29
2a11:d800::/29
Signature Algorithm: sha256WithRSAEncryption
b3:4c:17:24:56:dd:6c:36:48:e1:0c:a2:25:71:e2:98:dc:55:
66:b2:e5:48:fd:0d:7b:3e:df:66:fe:a4:f8:db:db:35:72:86:
a7:c1:48:55:e8:54:19:ae:68:60:d9:10:8a:4a:14:72:2b:75:
06:9a:8a:da:56:08:c2:7d:85:4d:d5:bc:91:c4:37:bf:31:1c:
fd:ff:cf:96:3f:c4:ab:17:d6:27:06:7c:6d:30:51:1a:5c:d8:
cb:83:15:65:62:bf:61:37:1b:19:a4:c6:e9:b9:a2:5b:3e:83:
26:d7:bd:cf:a3:64:dc:bd:f6:53:09:49:15:25:f1:c6:6d:9e:
a5:c7:84:17:f4:e4:a1:82:fb:66:e9:98:33:8a:b7:56:39:be:
34:6a:53:82:a8:3c:03:89:ca:5e:02:c9:e2:6a:35:95:aa:f2:
48:8e:50:2e:d5:d8:3a:96:3a:06:2c:fe:d3:ba:fe:db:6c:c8:
02:72:d5:6c:fa:31:c6:ec:ed:1c:14:94:fc:73:34:a8:c9:4c:
1f:b9:cd:2a:81:b6:29:de:18:34:bd:ad:f4:9d:0f:c4:da:86:
3c:b1:34:f7:3e:e8:3a:9d:a5:62:72:13:4a:c0:6e:9d:59:1d:
d7:68:e0:1e:ab:a8:04:2a:03:4f:de:9e:98:62:73:07:1b:92:
d2:37:f1:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:51:16 2025 by rpki-client