Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/296a78-01e2-496d-ba59-2200b3cc57e6/1/70udbSYMHjHGw3151Y-b2VW3GYU.roa
File: 70udbSYMHjHGw3151Y-b2VW3GYU.roa (raw, json)
Hash identifier: oKzsb1MJgNoOzY1X44FayE5WgZ2LNa3oOpf8VQlU5v0=
Subject key identifier: EF:4B:9D:6D:26:0C:1E:31:C6:C3:7D:79:D5:8F:9B:D9:55:B7:19:85
Certificate issuer: /CN=07f0ba59b1c76cf20dc4382e5a2854d7142c26ba
Certificate serial: 0192618DB1B087DBE5243D1E2624AF931570
Authority key identifier: 07:F0:BA:59:B1:C7:6C:F2:0D:C4:38:2E:5A:28:54:D7:14:2C:26:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B_C6WbHHbPINxDguWihU1xQsJro.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/296a78-01e2-496d-ba59-2200b3cc57e6/1/70udbSYMHjHGw3151Y-b2VW3GYU.roa
Signing time: Sun 06 Oct 2024 11:18:48 +0000
ROA not before: Sun 06 Oct 2024 11:18:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16509
IP address blocks: 2a14:6:11::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:61:8d:b1:b0:87:db:e5:24:3d:1e:26:24:af:93:15:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07f0ba59b1c76cf20dc4382e5a2854d7142c26ba
Validity
Not Before: Oct 6 11:18:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ef4b9d6d260c1e31c6c37d79d58f9bd955b71985
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:d9:38:85:4e:61:49:ca:32:86:3c:be:9f:ef:
8f:fe:37:8b:bd:a5:84:0c:ce:a4:f6:11:22:c0:94:
f4:83:d8:22:66:75:52:17:8b:53:62:e3:cc:d8:98:
7e:4b:37:ca:ea:12:cc:99:14:bf:7c:c5:ef:22:40:
85:d6:50:a1:2e:2f:98:4c:8e:50:63:88:33:57:67:
9f:b0:9e:e4:0b:35:41:15:22:27:8e:99:8e:e5:fc:
b3:28:39:19:d2:4e:4a:19:24:e5:63:e1:aa:3d:02:
3a:43:5b:dd:7b:01:34:ba:8f:6d:41:6c:96:27:a8:
ca:15:f9:3b:99:75:69:35:28:1a:b7:c5:a7:55:ea:
50:56:f8:cf:a7:14:66:81:3f:e9:09:96:cc:33:fd:
0d:38:1a:f3:37:34:af:36:af:a4:47:eb:ed:7a:7b:
61:03:a5:bf:24:12:7c:68:68:64:cc:58:87:58:93:
b5:4b:73:98:e5:55:cc:d9:6e:2b:00:a6:17:0f:91:
fe:8b:87:44:12:b6:c7:10:a7:51:7d:e4:a0:9c:15:
27:d1:25:05:d9:df:d3:db:d9:a3:13:a8:7b:6e:48:
c5:00:61:bb:dd:08:a5:ad:7f:1a:50:50:75:9f:b0:
6f:f0:f0:5b:53:2a:d6:90:bc:2c:ba:00:58:90:90:
e3:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:4B:9D:6D:26:0C:1E:31:C6:C3:7D:79:D5:8F:9B:D9:55:B7:19:85
X509v3 Authority Key Identifier:
keyid:07:F0:BA:59:B1:C7:6C:F2:0D:C4:38:2E:5A:28:54:D7:14:2C:26:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B_C6WbHHbPINxDguWihU1xQsJro.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/296a78-01e2-496d-ba59-2200b3cc57e6/1/70udbSYMHjHGw3151Y-b2VW3GYU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/296a78-01e2-496d-ba59-2200b3cc57e6/1/B_C6WbHHbPINxDguWihU1xQsJro.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:6:11::/48
Signature Algorithm: sha256WithRSAEncryption
a5:dc:44:54:95:f1:37:63:2f:c3:7b:2b:92:a5:c7:f4:a2:e8:
66:48:d6:6a:0d:ce:e0:53:c5:bb:97:bd:9f:88:7f:18:50:e4:
54:88:0a:b9:c2:60:99:54:87:3b:39:70:06:70:4c:c8:2f:96:
91:f4:0f:02:36:b0:2b:4c:a3:89:a6:85:8f:c1:1e:d5:96:38:
68:44:56:80:1a:5d:3e:15:d2:9e:f2:a1:a8:07:7f:e2:d8:f4:
60:70:5d:3c:dc:f1:c1:28:ea:24:3f:d0:8f:52:ff:3a:3b:b3:
87:10:2c:85:71:a1:e8:fa:51:10:67:89:c6:e3:b1:c1:3d:78:
cc:b6:41:3b:19:25:0a:c5:be:ee:21:4d:ec:31:a7:8d:52:1b:
84:e7:d4:99:28:4b:8e:c8:68:d0:2d:cc:c2:c8:2a:ec:21:71:
38:41:1b:19:b0:0f:91:d7:99:42:69:6c:c6:9d:ea:89:d6:8b:
93:92:01:ea:b3:11:6c:ab:27:09:e5:e9:f0:cd:66:6f:2e:ad:
f6:28:d3:66:a3:2a:2b:c3:e3:86:1f:c2:cf:2e:18:f3:08:82:
bf:5c:fa:91:51:68:e5:da:7f:89:21:4b:eb:ba:05:97:44:cf:
7a:bc:fa:bf:29:51:56:75:ff:1f:90:c6:56:2c:cf:23:c7:9f:
5b:fe:fe:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:35:40 2025 by rpki-client