Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/WtiDHweHoVP7vFg1UkaAbUHfroo.roa
File: WtiDHweHoVP7vFg1UkaAbUHfroo.roa (raw, json)
Hash identifier: AwuaTeCvVoZET/TE+x8YjJb03YnBfXufOtYgg+kcG9E=
Subject key identifier: 5A:D8:83:1F:07:87:A1:53:FB:BC:58:35:52:46:80:6D:41:DF:AE:8A
Certificate issuer: /CN=b05d28d16626bc5dcabf2e915435782b96e14071
Certificate serial: 019425FDBB91583CBBBF7125837341CD249E
Authority key identifier: B0:5D:28:D1:66:26:BC:5D:CA:BF:2E:91:54:35:78:2B:96:E1:40:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/WtiDHweHoVP7vFg1UkaAbUHfroo.roa
Signing time: Thu 02 Jan 2025 07:49:33 +0000
ROA not before: Thu 02 Jan 2025 07:49:33 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 33915
IP address blocks: 2a07:3500:1170::/48 maxlen: 48
2a07:3500:1240::/46 maxlen: 46
2a07:3500:12d0::/48 maxlen: 48
2a07:3500:12f8::/48 maxlen: 48
2a07:3500:15a0::/48 maxlen: 48
2a07:3500:15c0::/48 maxlen: 48
2a07:3500:17f8::/48 maxlen: 48
2a07:3500:1890::/48 maxlen: 48
2a07:3500:1b90::/48 maxlen: 48
2a07:3501:1340::/48 maxlen: 48
2a07:3502:1050::/48 maxlen: 48
2a07:3502:1060::/48 maxlen: 48
2a07:3502:10a1::/48 maxlen: 48
2a07:3502:10c0::/48 maxlen: 48
2a07:3502:11a0::/46 maxlen: 46
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:bb:91:58:3c:bb:bf:71:25:83:73:41:cd:24:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b05d28d16626bc5dcabf2e915435782b96e14071
Validity
Not Before: Jan 2 07:49:33 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5ad8831f0787a153fbbc58355246806d41dfae8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:1b:51:3c:48:16:df:bd:f9:86:4e:53:0b:34:
28:ff:96:78:fa:fb:bf:62:a9:a9:95:d6:ae:e9:9b:
4a:8a:86:94:9c:e7:25:92:66:de:8b:65:ab:d1:9d:
d6:83:8d:37:76:d9:5e:62:c5:91:17:0a:b5:27:16:
b2:6b:2b:79:5c:7c:86:e0:e4:77:67:99:36:b9:6f:
e3:c1:ea:b5:e3:a4:96:15:9c:14:8d:bb:59:e9:12:
5e:85:cb:d4:d2:a0:a1:66:05:a2:68:a9:89:13:6c:
49:cc:68:d4:22:c9:dd:73:19:cf:b5:f2:8b:80:55:
57:71:47:75:53:9c:98:9f:e7:65:64:ba:bc:2c:2d:
65:88:e9:de:dc:24:9f:ab:24:3b:95:f0:3e:10:c5:
43:4c:9b:2c:46:ea:8d:6b:cc:55:54:29:79:fb:bd:
29:e3:43:f3:54:d8:55:f9:70:d7:ba:a0:0c:7e:82:
8a:f5:0a:e4:0c:25:c1:e8:2d:1c:3c:36:ca:6a:42:
60:5a:f8:7d:76:62:af:f4:e2:15:48:84:96:1f:6a:
19:53:3c:00:fc:09:b5:6e:7c:19:0f:42:34:81:81:
92:02:52:3a:68:0e:08:09:d4:6a:8d:b5:b3:dc:5e:
92:42:06:af:80:a8:c6:16:d7:4d:a3:07:3d:e0:ff:
16:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:D8:83:1F:07:87:A1:53:FB:BC:58:35:52:46:80:6D:41:DF:AE:8A
X509v3 Authority Key Identifier:
keyid:B0:5D:28:D1:66:26:BC:5D:CA:BF:2E:91:54:35:78:2B:96:E1:40:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/WtiDHweHoVP7vFg1UkaAbUHfroo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:3500:1170::/48
2a07:3500:1240::/46
2a07:3500:12d0::/48
2a07:3500:12f8::/48
2a07:3500:15a0::/48
2a07:3500:15c0::/48
2a07:3500:17f8::/48
2a07:3500:1890::/48
2a07:3500:1b90::/48
2a07:3501:1340::/48
2a07:3502:1050::/48
2a07:3502:1060::/48
2a07:3502:10a1::/48
2a07:3502:10c0::/48
2a07:3502:11a0::/46
Signature Algorithm: sha256WithRSAEncryption
2d:26:30:0b:63:55:f1:53:0d:2a:ff:f0:ea:0b:16:d0:60:dd:
c0:d7:85:6e:5a:ec:d0:dc:42:1e:97:31:88:dc:2d:ee:66:24:
7a:b3:bd:1c:e2:ad:f2:e3:45:31:30:9a:45:de:1b:45:a9:b5:
f4:a0:9c:64:f7:d0:ff:ad:53:40:35:bc:ad:cc:b3:db:b7:ad:
f0:83:eb:07:d1:06:2e:75:8c:04:2c:c5:b4:d8:f3:09:79:82:
81:f8:a6:42:fb:72:6f:50:0a:9c:29:9c:78:51:ac:c0:fd:8d:
9c:b2:a2:46:94:8a:af:2d:ac:79:71:df:d9:ab:26:95:2e:f0:
9b:f6:c1:22:be:9e:b0:e7:80:c6:02:a3:fa:0c:00:c4:2e:6c:
8e:db:3f:49:24:27:41:d9:f7:14:53:dc:49:5e:14:b8:e7:61:
3c:44:d4:dc:db:fe:6d:18:86:72:b5:8a:e0:9d:b6:e6:b0:a2:
dd:38:ae:3b:2b:2f:3a:6b:4d:52:79:ed:03:9b:11:e3:4d:b9:
da:41:62:c1:7d:5c:1b:9b:ac:a9:16:f5:aa:e5:0f:ea:8a:98:
71:33:87:0e:c6:94:69:86:6c:d6:20:45:96:ee:9b:52:ac:55:
d9:93:ee:5b:1a:87:7f:b7:0a:ff:18:5d:80:3c:0f:02:c8:22:
76:9b:ee:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:40:31 2025 by rpki-client