Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/cf79a3-f3cc-4d5a-9672-e8f7fd3a4078/1/Uj6BezAzB94GByjzrVUNlk0ht78.roa
File: Uj6BezAzB94GByjzrVUNlk0ht78.roa (raw, json)
Hash identifier: dN/7lNPFzPzip+lXMHPQrtHop8fW612WIaM/9STYSBo=
Subject key identifier: 52:3E:81:7B:30:33:07:DE:06:07:28:F3:AD:55:0D:96:4D:21:B7:BF
Certificate issuer: /CN=d1ca1a706abcfbe1b85865238d8435ee33e75820
Certificate serial: 019425FCD15FFA1ACA2C446DC8E053173850
Authority key identifier: D1:CA:1A:70:6A:BC:FB:E1:B8:58:65:23:8D:84:35:EE:33:E7:58:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0coacGq8--G4WGUjjYQ17jPnWCA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/cf79a3-f3cc-4d5a-9672-e8f7fd3a4078/1/Uj6BezAzB94GByjzrVUNlk0ht78.roa
Signing time: Thu 02 Jan 2025 07:48:33 +0000
ROA not before: Thu 02 Jan 2025 07:48:33 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 42926
IP address blocks: 2a0f:e80::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fc:d1:5f:fa:1a:ca:2c:44:6d:c8:e0:53:17:38:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1ca1a706abcfbe1b85865238d8435ee33e75820
Validity
Not Before: Jan 2 07:48:33 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=523e817b303307de060728f3ad550d964d21b7bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:4c:07:93:9b:3c:09:5f:f3:ed:85:7a:8e:e8:
f5:d4:d7:ed:53:aa:2d:63:a1:09:f0:ff:90:17:1f:
11:ef:2a:96:4c:38:fd:e4:52:c8:6d:4d:28:50:15:
8b:ff:0c:8f:ac:52:1f:b6:27:00:d4:b2:9c:5d:fb:
e3:ca:49:04:d3:19:80:85:58:bf:81:d9:fd:75:08:
64:0b:15:86:16:4f:db:e9:be:2e:af:7e:ea:e5:59:
2d:f7:95:c3:53:97:f8:45:94:85:ba:b9:ca:20:83:
5e:94:eb:ab:c7:3a:d8:79:27:6a:d1:b4:fa:b7:91:
fc:9a:e8:26:67:2b:bb:00:f8:c5:ce:e7:8e:72:72:
d1:76:07:f0:5e:88:6c:4f:39:66:80:2a:4a:22:2d:
81:83:f8:b5:cb:de:da:1d:8e:2b:d3:e6:b3:98:77:
b8:78:cc:5b:0f:73:b6:27:1f:90:59:04:9e:40:f2:
7f:c8:83:d6:59:ba:bb:87:88:8c:19:d7:09:ad:b6:
5a:da:cf:ff:1e:f9:1f:2d:1a:a1:e3:2e:d6:30:92:
71:39:33:ed:bd:5f:70:df:69:17:db:ce:18:c6:05:
37:61:54:19:22:16:6f:55:c0:db:12:95:0f:36:8c:
18:70:21:56:e8:33:0a:70:7d:ad:d7:b4:a6:02:cd:
c5:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:3E:81:7B:30:33:07:DE:06:07:28:F3:AD:55:0D:96:4D:21:B7:BF
X509v3 Authority Key Identifier:
keyid:D1:CA:1A:70:6A:BC:FB:E1:B8:58:65:23:8D:84:35:EE:33:E7:58:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0coacGq8--G4WGUjjYQ17jPnWCA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/cf79a3-f3cc-4d5a-9672-e8f7fd3a4078/1/Uj6BezAzB94GByjzrVUNlk0ht78.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/cf79a3-f3cc-4d5a-9672-e8f7fd3a4078/1/0coacGq8--G4WGUjjYQ17jPnWCA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:e80::/29
Signature Algorithm: sha256WithRSAEncryption
57:25:cc:e5:0f:c9:48:28:51:94:12:4e:11:3b:35:fd:f0:0e:
46:f8:5e:95:f5:32:5b:79:6f:a7:6f:58:f4:27:39:bf:b2:cb:
1a:91:27:97:2f:60:cd:ee:89:e7:d5:39:1c:ec:62:94:49:d9:
61:18:d4:00:95:3e:08:11:3a:8a:39:01:2a:84:9f:6c:f2:88:
ff:41:85:b6:10:93:7f:41:97:02:62:7e:ec:74:bc:ae:d6:20:
c0:58:df:d7:a5:7e:02:fb:c2:3d:c9:2c:f4:1a:da:44:b0:cc:
0d:13:62:63:90:72:b3:34:92:62:ee:fd:62:71:96:d6:f5:2d:
fb:18:1f:ab:09:2e:5b:1a:53:43:f3:4f:17:38:71:67:71:0b:
c8:86:0b:e1:fc:94:60:fe:ac:39:a5:db:f5:e6:03:55:5f:42:
9c:14:31:7c:ad:e1:9a:87:69:31:50:dd:46:91:96:36:17:2a:
ec:38:ac:0e:3a:b6:a7:5b:85:92:8d:7f:dc:6a:e4:58:6e:25:
17:0c:36:84:44:e1:da:11:5d:cf:fb:ea:e9:1b:d7:97:b3:79:
bc:70:84:42:94:db:6b:81:8f:42:c5:62:49:18:86:c8:58:45:
ee:c1:80:86:f8:37:83:ca:99:e6:e4:02:8c:cb:70:9e:3f:6b:
e6:4d:ec:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:31:54 2025 by rpki-client