Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/4b82fe-ff73-4b58-a21a-00fd05d3cd1d/1/IwKSwRXA9Ph0qRohZhJ0WEYVgOM.roa
File: IwKSwRXA9Ph0qRohZhJ0WEYVgOM.roa (raw, json)
Hash identifier: RFNUKmFIpsyvimoGalaE9V72k6NP7c6/ODYYIyEjkmE=
Subject key identifier: 23:02:92:C1:15:C0:F4:F8:74:A9:1A:21:66:12:74:58:46:15:80:E3
Certificate issuer: /CN=577cd3b2391f4726c1aa89d5ed3d040823252355
Certificate serial: 01958418E8B4DE290D8C41355994A8CAEA24
Authority key identifier: 57:7C:D3:B2:39:1F:47:26:C1:AA:89:D5:ED:3D:04:08:23:25:23:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V3zTsjkfRybBqonV7T0ECCMlI1U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/4b82fe-ff73-4b58-a21a-00fd05d3cd1d/1/IwKSwRXA9Ph0qRohZhJ0WEYVgOM.roa
Signing time: Tue 11 Mar 2025 07:26:19 +0000
ROA not before: Tue 11 Mar 2025 07:26:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211881
IP address blocks: 2a14:a980::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:84:18:e8:b4:de:29:0d:8c:41:35:59:94:a8:ca:ea:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=577cd3b2391f4726c1aa89d5ed3d040823252355
Validity
Not Before: Mar 11 07:26:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=230292c115c0f4f874a91a2166127458461580e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:40:06:d4:83:f0:1d:3f:9f:80:e6:b1:5c:99:
86:1e:33:bc:86:63:0a:27:98:89:f5:3c:0e:4c:72:
1a:8d:c7:59:14:d9:3c:7c:30:00:1c:d7:86:ce:5a:
56:d4:a2:25:52:c7:cf:ec:72:91:6f:81:5b:b6:ef:
d7:a9:bc:ef:c8:24:8e:5d:e8:05:62:e7:9e:ea:26:
63:e6:d4:9d:df:f3:ef:7e:fc:32:5b:ad:0d:a9:35:
40:48:bc:d2:e1:ec:5e:e1:ec:83:a5:cc:e0:c3:92:
ac:41:e3:15:75:ff:9d:a4:d2:c3:6a:dd:7e:47:e7:
49:d9:83:4f:fc:f8:4b:2d:d8:85:54:1e:95:8e:0b:
f9:69:75:0e:54:c6:09:01:69:a6:b6:75:85:b5:65:
7b:bd:d1:bc:02:c5:39:b0:6a:01:26:89:67:21:87:
86:01:ed:6b:e8:4e:d5:94:7f:5f:21:f7:9a:7a:7b:
7a:af:9f:63:a2:db:90:cf:9d:7f:15:1e:af:ae:f2:
83:45:a8:60:86:b7:40:a1:c0:02:19:9c:02:9e:71:
1a:aa:96:3c:6a:de:00:15:74:d9:f9:3b:18:bc:39:
9a:58:5a:4b:b6:91:1b:dd:f9:2f:f2:8f:41:95:08:
ad:1d:52:ae:6d:2b:63:74:02:8f:76:82:a4:37:c8:
aa:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:02:92:C1:15:C0:F4:F8:74:A9:1A:21:66:12:74:58:46:15:80:E3
X509v3 Authority Key Identifier:
keyid:57:7C:D3:B2:39:1F:47:26:C1:AA:89:D5:ED:3D:04:08:23:25:23:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V3zTsjkfRybBqonV7T0ECCMlI1U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/4b82fe-ff73-4b58-a21a-00fd05d3cd1d/1/IwKSwRXA9Ph0qRohZhJ0WEYVgOM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/4b82fe-ff73-4b58-a21a-00fd05d3cd1d/1/V3zTsjkfRybBqonV7T0ECCMlI1U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:a980::/48
Signature Algorithm: sha256WithRSAEncryption
cb:ec:29:85:1c:86:19:34:f6:1b:35:d0:c9:65:fe:98:e8:fb:
9a:16:dd:4c:47:6e:f8:4d:b9:64:15:2a:71:62:42:a6:cb:e5:
7f:a5:7e:a9:09:2d:fe:2f:03:e2:32:32:00:b1:30:fd:39:37:
b4:12:56:7c:fb:e8:05:4e:b5:1e:63:61:ed:1e:3b:1c:93:fb:
cd:38:fb:44:5b:24:16:2a:8b:e0:35:9f:97:25:95:1a:23:8b:
c6:8f:d5:90:b2:1b:5d:9f:7c:3d:3a:a6:ff:cc:b6:4b:ca:2f:
1b:40:96:b7:b3:15:4f:56:75:12:7d:f4:6f:bd:96:9d:6a:c3:
ca:6a:5a:06:09:7b:72:cd:45:3c:ca:29:1a:14:02:81:47:39:
98:92:e6:ff:31:9c:ba:a4:24:15:0d:83:f9:d9:b6:db:be:be:
6f:d2:39:87:de:5d:ca:15:bd:f7:5d:d5:5e:ea:e5:43:7a:57:
fc:fa:23:30:db:e8:bc:8a:0f:14:a7:db:2a:e6:79:15:48:e1:
74:e4:79:76:bc:2e:3e:bf:5e:98:9a:bc:76:84:1c:5c:82:ff:
bc:ed:c5:bc:77:5a:ad:1a:40:8e:4a:09:63:4b:2b:c1:c3:70:
67:71:4d:9c:60:73:bc:88:70:a2:2f:79:07:5d:bc:a3:7c:92:
03:97:b4:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:33:27 2025 by rpki-client