Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/14e492-8525-4eec-84bc-b0eb6715e0af/1/_aaePr1gPuxwX3K-rn7ikqUJzEA.roa
File: _aaePr1gPuxwX3K-rn7ikqUJzEA.roa (raw, json)
Hash identifier: Z8VGyqgSTuNPPT27lOIg4P0ar4keL30ubWNYxtuW/fo=
Subject key identifier: FD:A6:9E:3E:BD:60:3E:EC:70:5F:72:BE:AE:7E:E2:92:A5:09:CC:40
Certificate issuer: /CN=517a0c96842bafc9f630ba14b83ea79bd12a53b9
Certificate serial: 01941FFA0ACFEF31D2F9BFF539DDCCD377EB
Authority key identifier: 51:7A:0C:96:84:2B:AF:C9:F6:30:BA:14:B8:3E:A7:9B:D1:2A:53:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UXoMloQrr8n2MLoUuD6nm9EqU7k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/14e492-8525-4eec-84bc-b0eb6715e0af/1/_aaePr1gPuxwX3K-rn7ikqUJzEA.roa
Signing time: Wed 01 Jan 2025 03:47:47 +0000
ROA not before: Wed 01 Jan 2025 03:47:47 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215529
IP address blocks: 2a13:cc82:1::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:0a:cf:ef:31:d2:f9:bf:f5:39:dd:cc:d3:77:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=517a0c96842bafc9f630ba14b83ea79bd12a53b9
Validity
Not Before: Jan 1 03:47:47 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=fda69e3ebd603eec705f72beae7ee292a509cc40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:c7:8e:9f:01:51:41:3f:3d:e4:28:d6:db:5f:
21:92:b8:4f:e7:81:d1:52:0f:84:70:8e:28:75:ba:
06:6c:68:2a:d8:3e:83:c8:1e:87:ca:1e:e3:53:d9:
75:95:01:3c:f4:3d:75:48:b1:9e:3e:f5:fb:93:0f:
38:fa:a5:e7:76:18:78:7e:1d:8e:26:87:3c:5a:3a:
77:9b:6d:68:cc:d2:f2:2d:90:4f:6e:7c:a7:e1:cd:
e9:9c:dd:46:2d:43:33:55:0f:02:1b:36:b9:be:dd:
2e:f3:49:96:03:37:33:3a:ae:fd:5b:41:dc:5a:bf:
c9:b8:b7:a0:7f:cd:90:a1:48:22:09:dc:27:f1:43:
d2:86:ab:38:81:2d:26:f6:f3:7f:6c:22:89:47:3d:
e0:92:09:c3:d9:24:90:56:e1:cc:e1:f1:a4:5c:63:
79:d9:fc:9e:f1:c8:52:32:04:bc:25:30:54:5c:02:
cf:25:b4:07:55:73:8a:e9:2d:0a:48:1e:a9:a2:c4:
1f:56:6d:64:96:b9:ad:5c:f6:99:ea:65:19:8d:8e:
e6:e3:c4:25:02:4b:45:ef:3d:f9:2b:2f:84:f5:fa:
3b:be:79:4e:64:c6:72:3f:25:f9:cd:5c:9a:58:28:
1c:3a:47:49:45:05:a3:b4:67:ef:f3:7b:5c:b6:a2:
5e:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:A6:9E:3E:BD:60:3E:EC:70:5F:72:BE:AE:7E:E2:92:A5:09:CC:40
X509v3 Authority Key Identifier:
keyid:51:7A:0C:96:84:2B:AF:C9:F6:30:BA:14:B8:3E:A7:9B:D1:2A:53:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UXoMloQrr8n2MLoUuD6nm9EqU7k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/14e492-8525-4eec-84bc-b0eb6715e0af/1/_aaePr1gPuxwX3K-rn7ikqUJzEA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/14e492-8525-4eec-84bc-b0eb6715e0af/1/UXoMloQrr8n2MLoUuD6nm9EqU7k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:cc82:1::/48
Signature Algorithm: sha256WithRSAEncryption
c2:3e:25:4c:06:d1:96:34:e2:7c:65:2e:4a:6e:62:ba:16:d8:
4e:a5:e9:b3:3f:15:e8:fa:b6:21:e7:64:47:a3:32:61:4d:a7:
ed:2f:e1:e8:f6:60:06:6e:0d:4d:52:cb:bb:45:19:a0:95:99:
6a:5f:49:5d:cd:10:22:fb:13:5a:63:af:58:07:1e:41:a4:14:
97:85:99:db:f8:3d:e1:a9:08:b4:23:2a:5b:52:95:56:f3:da:
a6:97:3d:8a:51:a7:ec:bc:ff:14:4e:52:da:5f:a8:0d:35:45:
47:fc:9b:ab:cd:ee:10:69:fb:65:4b:84:ba:e7:4b:a4:8b:d1:
bb:36:b1:b1:8a:49:cd:12:21:01:cf:2c:66:28:0f:59:05:32:
34:f2:e7:ab:d8:91:7f:a3:7d:65:c8:bc:38:3e:66:6b:55:ac:
ce:9e:7a:23:dd:1f:83:bd:cc:91:27:67:0f:7d:fb:ac:3a:df:
02:f4:a2:64:29:9e:6b:02:63:8f:ac:30:8d:65:cf:a8:ea:4d:
e0:ec:f8:3d:99:d6:ff:a3:f2:3b:08:95:73:0a:8c:3e:40:18:
a4:0b:a5:8b:3d:fc:69:98:d3:ee:2e:bc:a3:d4:1f:f3:86:4d:
4d:36:d3:3c:ef:03:0d:b7:f7:57:90:78:d7:df:f9:b8:b2:a7:
a5:fb:f5:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 12:51:59 2025 by rpki-client