Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/0d5f53-9653-47fb-a977-48f5e8767d02/1/xhEX51qp0YGYG_1Xjcz1FIDptho.roa
File: xhEX51qp0YGYG_1Xjcz1FIDptho.roa (raw, json)
Hash identifier: S68nwmQ0GGVwMdWpSzCa8wmg/ndTObvviSDOIpAfn2U=
Subject key identifier: C6:11:17:E7:5A:A9:D1:81:98:1B:FD:57:8D:CC:F5:14:80:E9:B6:1A
Certificate issuer: /CN=d1df4803e54b084a99cb7bb044bf791327594b73
Certificate serial: 01942522011A72177580E6D80C6DCCE2D4C5
Authority key identifier: D1:DF:48:03:E5:4B:08:4A:99:CB:7B:B0:44:BF:79:13:27:59:4B:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0d9IA-VLCEqZy3uwRL95EydZS3M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/0d5f53-9653-47fb-a977-48f5e8767d02/1/xhEX51qp0YGYG_1Xjcz1FIDptho.roa
Signing time: Thu 02 Jan 2025 03:49:32 +0000
ROA not before: Thu 02 Jan 2025 03:49:32 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206499
IP address blocks: 2a0f:5c47:3e8::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:22:01:1a:72:17:75:80:e6:d8:0c:6d:cc:e2:d4:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1df4803e54b084a99cb7bb044bf791327594b73
Validity
Not Before: Jan 2 03:49:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c61117e75aa9d181981bfd578dccf51480e9b61a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:d5:95:ef:42:15:ac:33:7e:c0:13:88:49:ce:
cd:bb:60:96:32:2d:00:06:36:aa:1b:02:02:6b:79:
58:e8:b7:0f:92:28:e4:07:b8:e8:bd:2e:5c:53:25:
76:6b:93:ea:3c:4c:6e:70:b9:46:8c:31:c0:37:70:
7f:df:60:33:78:6a:86:25:92:ac:e9:3e:a2:3d:eb:
52:a8:d2:81:63:26:8e:94:78:bc:29:52:e7:c3:11:
a1:97:be:e4:64:21:2d:9f:e3:e8:9b:45:8e:d3:2f:
ac:80:92:f2:97:70:7a:c0:40:f2:cb:1a:95:6a:00:
4a:2b:70:c6:19:7c:e6:5d:64:8b:25:0a:85:d7:1a:
0d:67:d6:67:e8:50:7a:28:bd:d6:78:ac:ad:2c:5a:
19:ce:95:85:fd:89:74:f6:e7:32:c7:4c:4e:5f:0f:
29:fe:09:58:b1:8c:4a:06:f8:db:1b:fe:fb:11:ab:
52:8b:d9:53:a0:7e:d3:48:3f:4c:ef:c8:20:6b:1d:
ba:e7:5e:2b:92:1b:3c:8f:40:36:33:c6:db:53:bc:
d9:31:b9:1c:fa:2a:71:1b:6b:bb:77:55:fe:01:10:
f1:27:1b:60:c4:2a:a1:5a:d5:d5:42:6a:1a:5b:f8:
3b:08:8c:74:51:db:a9:97:b3:d8:52:fb:03:c6:13:
5f:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:11:17:E7:5A:A9:D1:81:98:1B:FD:57:8D:CC:F5:14:80:E9:B6:1A
X509v3 Authority Key Identifier:
keyid:D1:DF:48:03:E5:4B:08:4A:99:CB:7B:B0:44:BF:79:13:27:59:4B:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d9IA-VLCEqZy3uwRL95EydZS3M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/0d5f53-9653-47fb-a977-48f5e8767d02/1/xhEX51qp0YGYG_1Xjcz1FIDptho.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/0d5f53-9653-47fb-a977-48f5e8767d02/1/0d9IA-VLCEqZy3uwRL95EydZS3M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:5c47:3e8::/48
Signature Algorithm: sha256WithRSAEncryption
5e:90:b1:8d:50:c3:4a:fb:e3:5d:d5:89:d0:3c:a1:7c:a7:0d:
12:1b:ce:c8:ed:4d:f2:8c:5a:45:31:db:3d:9f:b7:10:9d:70:
6c:0f:55:37:7e:52:e0:8f:b9:81:24:4f:90:1e:d6:fc:a6:02:
02:f8:e5:d5:5a:98:35:da:2c:44:89:84:2a:2b:cc:d4:88:2c:
d2:96:ee:c8:9d:dc:c4:01:ee:16:2f:7c:ae:56:bc:44:9d:85:
10:45:2d:d0:27:cd:43:ee:11:5d:32:b5:1e:40:7e:ce:9c:d1:
15:ed:92:a8:b0:f6:ae:f0:d1:5e:74:6a:f7:3f:85:3d:de:75:
e6:82:02:1a:b9:92:5e:2b:ed:64:ce:8b:c8:20:2c:8e:87:7f:
88:34:93:d2:73:ab:1f:c8:35:67:38:1e:1c:99:b7:bb:33:19:
5b:63:e1:a4:b0:4b:ac:70:ae:69:47:0d:2b:e4:05:b8:43:63:
96:d0:95:e8:32:02:67:94:17:02:9a:98:ab:fc:c1:de:ae:17:
0a:20:46:f2:59:fc:3b:aa:f0:d0:26:51:9b:09:18:03:67:86:
fb:33:97:2e:40:d8:19:9e:a3:e0:3a:be:c2:d5:ae:b2:f4:c6:
94:6b:85:3f:b9:b6:49:5a:a9:b6:63:3b:7a:f2:f0:93:78:14:
2e:3f:33:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:40:48 2025 by rpki-client