Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/E4KrSVaQy3iYS_50ejZpQ-glOlU.roa
File: E4KrSVaQy3iYS_50ejZpQ-glOlU.roa (raw, json)
Hash identifier: S6oqGewJjL66csnbFq/vHS/FJRCA0+VexfYauEgvefs=
Subject key identifier: 13:82:AB:49:56:90:CB:78:98:4B:FE:74:7A:36:69:43:E8:25:3A:55
Certificate issuer: /CN=b05d28d16626bc5dcabf2e915435782b96e14071
Certificate serial: 019425FDC113FBEB85FEACFEED5D51E618E6
Authority key identifier: B0:5D:28:D1:66:26:BC:5D:CA:BF:2E:91:54:35:78:2B:96:E1:40:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/E4KrSVaQy3iYS_50ejZpQ-glOlU.roa
Signing time: Thu 02 Jan 2025 07:49:34 +0000
ROA not before: Thu 02 Jan 2025 07:49:34 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 198687
IP address blocks: 2a07:3501:1090::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:c1:13:fb:eb:85:fe:ac:fe:ed:5d:51:e6:18:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b05d28d16626bc5dcabf2e915435782b96e14071
Validity
Not Before: Jan 2 07:49:34 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1382ab495690cb78984bfe747a366943e8253a55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:d1:09:85:58:8c:29:d8:d1:e3:1d:58:5b:f7:
47:30:56:3a:49:8d:64:b5:8a:3a:bd:f6:17:01:4c:
76:4c:73:98:9c:d7:29:76:2d:f7:b8:0d:10:64:f6:
db:65:75:83:0d:0b:6f:97:93:8c:c1:b4:e8:cf:1d:
af:ca:06:71:81:e5:c7:97:a1:12:74:81:21:07:76:
4b:f4:ad:0e:0f:06:b2:85:02:87:cc:2d:c6:5d:68:
4f:0e:f7:61:3c:67:a3:fd:44:1c:d9:d9:74:b4:24:
09:06:59:e7:c3:0c:40:5e:47:8e:a8:46:07:48:f8:
39:07:8f:2d:21:84:c2:ab:67:24:c8:bf:24:5c:dc:
7d:62:38:27:9a:52:e8:be:b7:c1:6d:09:4d:e2:e9:
95:81:4b:47:9a:ca:e9:08:2a:0f:0e:09:c4:32:70:
f7:b2:07:10:65:ad:77:ec:d1:18:4b:fb:7b:38:c6:
f0:c6:41:9a:b2:ad:a3:15:e5:a4:c8:af:5e:73:d4:
b8:63:87:1f:04:ab:20:0e:8f:39:20:e5:51:09:64:
76:4d:ff:a1:e8:7d:30:de:29:04:fe:10:e7:44:63:
9b:d1:64:cf:2e:d4:f0:e6:91:93:d7:d2:09:25:46:
99:78:9c:9b:18:89:a1:4a:25:9e:dc:f5:3f:ef:27:
24:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:82:AB:49:56:90:CB:78:98:4B:FE:74:7A:36:69:43:E8:25:3A:55
X509v3 Authority Key Identifier:
keyid:B0:5D:28:D1:66:26:BC:5D:CA:BF:2E:91:54:35:78:2B:96:E1:40:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/E4KrSVaQy3iYS_50ejZpQ-glOlU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:3501:1090::/48
Signature Algorithm: sha256WithRSAEncryption
25:be:1f:01:75:e9:dc:bf:4c:e2:02:b0:3f:3b:05:79:d0:34:
4d:cf:61:b6:e9:ae:7a:b3:a7:f3:fe:53:02:96:b0:20:17:53:
d7:89:73:c6:4d:9e:01:df:77:e5:fb:c1:d2:f1:8f:db:17:08:
1d:c4:c8:b6:24:65:3b:4b:ce:b0:73:36:bd:fa:9d:86:f1:40:
07:af:f0:47:d6:69:28:13:55:15:e0:eb:82:d1:50:3d:43:47:
30:1e:e4:c6:45:6d:e5:97:0d:34:2a:82:ba:bd:b8:c0:2a:62:
bf:af:2d:c3:36:5e:03:43:8f:b3:37:af:32:b8:61:78:0b:90:
8e:60:01:9f:f0:9e:55:7d:95:a7:bd:f6:57:3f:5d:4d:28:07:
0f:d8:0f:90:9b:7d:9a:05:18:82:eb:5c:0c:de:c7:5d:7d:b2:
a0:18:43:7a:3c:c8:f9:66:a5:c8:d2:4a:a2:16:cb:3f:bf:0a:
21:f1:4b:4d:41:f7:6d:46:a1:a5:ee:b9:f6:3a:bb:94:bb:b3:
8d:9b:46:88:56:9a:fb:66:9a:1d:75:69:30:5c:77:a3:60:e2:
ee:4e:09:f5:32:3d:5c:73:21:4c:80:aa:69:23:a8:57:89:7f:
50:2d:39:21:30:c4:36:08:cc:f2:3a:1b:f2:2a:26:38:57:d8:
3e:36:60:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:30:02 2025 by rpki-client