Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/BjAZQbwgbt7JC6rtRfuBqb3uAtM.roa
File: BjAZQbwgbt7JC6rtRfuBqb3uAtM.roa (raw, json)
Hash identifier: HTqZzs7t/OQrCuiTEBGYMO4ooNIeUJvhWSdj9ZJBiBs=
Subject key identifier: 06:30:19:41:BC:20:6E:DE:C9:0B:AA:ED:45:FB:81:A9:BD:EE:02:D3
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0194830F0372CE6883B56AF25FB9E974048B
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/BjAZQbwgbt7JC6rtRfuBqb3uAtM.roa
Signing time: Mon 20 Jan 2025 09:33:06 +0000
ROA not before: Mon 20 Jan 2025 09:33:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 200021
IP address blocks: 2a10:7d00::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:83:0f:03:72:ce:68:83:b5:6a:f2:5f:b9:e9:74:04:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jan 20 09:33:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=06301941bc206edec90baaed45fb81a9bdee02d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:da:a9:59:a8:05:d1:6c:91:02:df:17:93:0f:
78:69:f3:de:79:4c:f6:4d:7f:21:de:95:42:9a:ac:
9e:f5:1a:5a:dc:76:18:24:e1:23:55:f8:da:85:7b:
cf:d7:c4:29:e4:17:e5:f1:ef:1b:19:f0:db:24:40:
9e:50:00:38:06:0d:02:f9:86:67:e0:b2:fd:bf:50:
73:b6:bc:2d:83:02:b2:ca:95:28:19:9d:f4:59:76:
1c:12:7d:1d:44:73:09:3c:69:c3:f6:fd:08:f5:d0:
36:e7:5d:29:d1:2f:96:96:3e:ad:5c:07:96:dc:bc:
57:88:11:7d:c7:56:90:10:5a:30:97:64:b5:91:33:
18:f1:b1:e9:47:ad:dd:ef:6c:a0:f9:90:dd:fc:ff:
57:79:90:6e:1e:1e:e0:cd:93:9e:77:0e:76:63:ba:
4b:6f:b6:e8:c8:cc:e7:91:dc:ba:f3:02:ef:af:d6:
54:89:30:40:8c:7c:ef:43:46:36:6e:0e:f8:34:0e:
7c:f0:c0:af:87:c6:fc:db:57:e3:a9:dd:f8:fc:02:
25:3a:db:58:93:58:fa:12:c6:d4:39:3c:d1:88:3d:
ef:08:4c:1f:83:23:e1:b7:47:e5:0d:c8:6c:10:30:
ec:7d:61:35:fd:64:0c:0a:97:b1:e3:b9:33:ac:9a:
c8:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:30:19:41:BC:20:6E:DE:C9:0B:AA:ED:45:FB:81:A9:BD:EE:02:D3
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/BjAZQbwgbt7JC6rtRfuBqb3uAtM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:7d00::/29
Signature Algorithm: sha256WithRSAEncryption
8b:9f:e9:33:17:84:90:74:8f:cd:b6:14:81:a0:6a:2a:77:0c:
32:81:0f:2f:1a:ed:5e:fe:58:1b:f7:8c:9b:0e:f1:4d:e8:57:
89:0b:9f:ce:d3:65:21:4c:73:02:b9:1c:21:32:7d:35:42:29:
81:5b:b8:06:b7:28:ab:b3:fb:21:7a:09:9f:7d:a1:fb:9c:cc:
61:fb:c5:bb:b5:16:d0:72:02:39:ab:d0:25:ff:a1:f6:b4:6a:
22:d2:af:16:b6:20:71:0a:14:9e:bf:e5:82:07:65:87:b1:7c:
c6:bd:92:6c:ed:95:bf:dd:ba:7f:83:84:8b:a0:65:f9:bb:b2:
b8:c4:b0:d3:8b:6c:26:64:3a:26:06:5d:76:54:f8:4b:82:eb:
45:6e:84:9c:32:e5:38:df:a1:41:29:de:5b:71:19:be:96:80:
b9:fb:b2:7c:c3:b0:e8:01:c5:5d:bb:c9:e9:f5:db:f8:9e:c3:
83:89:e1:b3:cb:8b:17:7e:5f:63:14:7c:0e:46:91:f7:c6:db:
5c:94:ac:f1:e8:39:12:6e:3c:71:2d:7c:d5:69:12:29:72:bd:
77:19:dd:8e:f3:7d:67:dd:de:1f:c7:ca:fc:f8:de:5a:df:73:
a6:a1:fa:f2:85:86:03:e2:b6:e8:4e:44:bd:29:9b:f2:6c:22:
35:8b:51:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:06:42 2025 by rpki-client