Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/db1aca-2659-42a3-a631-9a1295f02f2e/1/0PiYBdxARRXjKJ5FesVWJAu_FMA.roa
File: 0PiYBdxARRXjKJ5FesVWJAu_FMA.roa (raw, json)
Hash identifier: w4vAM6MoKtVTj5z9YUnQQ55u8WtiSlBeHs3CzkimFHA=
Subject key identifier: D0:F8:98:05:DC:40:45:15:E3:28:9E:45:7A:C5:56:24:0B:BF:14:C0
Certificate issuer: /CN=73f986c7705bd808c1b02ebd754fbfa91807e9b6
Certificate serial: 0194266C37A3B139A3E944BA1B1E5B7600AB
Authority key identifier: 73:F9:86:C7:70:5B:D8:08:C1:B0:2E:BD:75:4F:BF:A9:18:07:E9:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c_mGx3Bb2AjBsC69dU-_qRgH6bY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/db1aca-2659-42a3-a631-9a1295f02f2e/1/0PiYBdxARRXjKJ5FesVWJAu_FMA.roa
Signing time: Thu 02 Jan 2025 09:50:13 +0000
ROA not before: Thu 02 Jan 2025 09:50:13 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211593
IP address blocks: 2a0b:b600:3c05::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6c:37:a3:b1:39:a3:e9:44:ba:1b:1e:5b:76:00:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73f986c7705bd808c1b02ebd754fbfa91807e9b6
Validity
Not Before: Jan 2 09:50:13 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d0f89805dc404515e3289e457ac556240bbf14c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:12:8f:62:c2:0b:d0:44:cd:4c:63:bf:0a:0a:
05:80:02:64:b7:7d:53:1a:13:ed:d7:47:f8:0a:4d:
f1:5e:12:a2:3c:e2:26:78:5d:c0:79:08:0f:0b:3a:
eb:e2:64:14:63:5f:3a:8f:4c:b8:b3:54:9f:31:5b:
c2:60:2c:79:c6:ad:78:ac:58:ca:68:b0:ec:2f:c2:
0a:2f:52:51:1b:a6:54:93:13:18:29:d1:2c:5e:30:
35:80:86:71:b3:b9:f8:14:18:11:9f:5f:db:cb:62:
ab:d4:41:56:f7:bf:0c:a5:b4:20:24:85:42:87:7b:
c0:11:2a:58:40:cd:7d:f2:0c:b1:03:1f:5a:c3:80:
02:4a:26:93:87:6f:99:66:ec:8f:19:86:95:fa:9e:
89:0f:1b:1a:ee:b3:45:7e:78:9c:75:dd:04:44:a3:
a7:c2:00:63:d6:7b:a5:6c:10:09:6c:6b:97:60:24:
62:de:57:74:20:9d:12:db:f7:07:2a:d7:d9:3c:8f:
42:a6:69:a9:c8:87:24:dd:90:47:42:0a:e8:95:16:
c3:77:8f:97:1c:c3:53:46:ef:d5:4e:7b:8b:ec:b8:
85:d5:e9:e7:9d:6a:69:c9:2c:25:00:4f:1a:67:0f:
04:ac:df:e0:8d:57:27:2d:e4:b0:c9:59:76:92:62:
11:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:F8:98:05:DC:40:45:15:E3:28:9E:45:7A:C5:56:24:0B:BF:14:C0
X509v3 Authority Key Identifier:
keyid:73:F9:86:C7:70:5B:D8:08:C1:B0:2E:BD:75:4F:BF:A9:18:07:E9:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c_mGx3Bb2AjBsC69dU-_qRgH6bY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/db1aca-2659-42a3-a631-9a1295f02f2e/1/0PiYBdxARRXjKJ5FesVWJAu_FMA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/db1aca-2659-42a3-a631-9a1295f02f2e/1/c_mGx3Bb2AjBsC69dU-_qRgH6bY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:b600:3c05::/48
Signature Algorithm: sha256WithRSAEncryption
3a:11:02:11:e1:84:a3:f0:de:52:9c:fa:b8:04:f9:07:e8:17:
c0:b2:6a:56:df:40:c4:86:d8:e1:01:be:c1:c9:38:2d:58:36:
fd:93:21:e8:7d:c6:64:39:c7:da:45:0b:ca:f1:7d:83:00:41:
cb:ed:bd:57:f9:14:06:9b:5a:e9:3c:c7:d7:28:bc:b9:2d:ca:
58:ac:0e:52:25:1c:09:e5:3c:89:a1:05:bf:a0:60:3f:31:52:
c2:ab:43:c6:7c:e6:d3:af:47:40:7d:ed:dd:d0:93:0c:26:b7:
13:e9:41:b3:7b:f4:cc:f1:f7:d2:2e:35:0d:0c:2d:aa:72:5a:
5a:09:2f:f8:d8:f9:bc:e8:09:55:a2:fe:77:36:69:50:6a:ed:
b8:b5:22:ff:7f:48:f5:c9:b2:70:9e:c7:53:b3:54:17:e4:f0:
4a:32:2b:31:ee:b0:54:55:d9:3d:05:5d:8a:bd:42:ae:da:24:
2d:f2:de:21:0d:be:6d:de:c5:ac:2a:36:81:a5:09:8a:32:19:
fb:66:73:97:0a:c1:93:ac:af:43:81:d9:23:7e:61:af:a0:44:
60:5c:9f:f5:b1:d1:9b:43:90:61:83:4d:07:3a:74:81:2a:4e:
7e:56:20:f1:33:a4:be:bf:6e:83:ce:61:c3:4e:03:d9:e2:72:
42:84:42:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:58:48 2025 by rpki-client