Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/d612e3-94eb-4866-b43c-e40b301401a9/1/teYc1cFeqUuzMd-dJeyJRJ9jp-k.roa
File: teYc1cFeqUuzMd-dJeyJRJ9jp-k.roa (raw, json)
Hash identifier: SD6wWRBAQPvJFZ63a4Ws+sFA/hBOJ/3xD8PJ20JClwo=
Subject key identifier: B5:E6:1C:D5:C1:5E:A9:4B:B3:31:DF:9D:25:EC:89:44:9F:63:A7:E9
Certificate issuer: /CN=e7fe22f551e95b0f15033c503552e49bca617c6a
Certificate serial: 0194258FBA7E7C516E05903528D463522917
Authority key identifier: E7:FE:22:F5:51:E9:5B:0F:15:03:3C:50:35:52:E4:9B:CA:61:7C:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5_4i9VHpWw8VAzxQNVLkm8phfGo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/d612e3-94eb-4866-b43c-e40b301401a9/1/teYc1cFeqUuzMd-dJeyJRJ9jp-k.roa
Signing time: Thu 02 Jan 2025 05:49:23 +0000
ROA not before: Thu 02 Jan 2025 05:49:23 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 12570
IP address blocks: 2a0b:bb41::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:ba:7e:7c:51:6e:05:90:35:28:d4:63:52:29:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7fe22f551e95b0f15033c503552e49bca617c6a
Validity
Not Before: Jan 2 05:49:23 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b5e61cd5c15ea94bb331df9d25ec89449f63a7e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:c8:b9:df:a3:77:10:0b:34:34:62:29:5c:64:
68:ef:b4:36:e8:4b:c0:93:02:ba:10:c7:e5:b1:46:
ad:81:63:fa:cd:da:92:fd:ce:18:e4:fe:b3:2b:f8:
5d:b0:1c:a1:95:f9:19:f5:5b:5e:19:26:06:d5:42:
c2:4a:fe:65:1f:f7:5b:61:23:4d:d0:91:2b:84:8b:
62:75:31:d8:56:29:fa:45:52:2d:67:10:d6:21:d4:
1c:fa:b8:0b:19:4f:5c:67:10:45:32:d3:8f:fb:1f:
7d:05:c5:8c:54:cd:3c:ee:68:12:f5:c2:e9:7b:1c:
9e:bd:f4:c3:9f:62:56:27:d8:ab:3b:5d:c6:94:2a:
8e:03:e3:c2:68:0e:8a:cf:29:e8:15:0f:39:8d:02:
7e:5c:5a:d0:de:80:62:d6:27:d6:4a:dc:a7:82:14:
29:06:ce:26:85:3c:a0:d4:b5:a6:8d:0b:ca:2f:83:
1d:24:8d:27:23:64:3f:75:c7:ba:2f:8a:17:7e:8f:
ed:c5:1e:9f:72:42:f8:33:cf:1b:18:dc:18:49:ab:
dc:b2:e0:85:87:b1:5c:05:4d:1d:41:d7:7b:43:24:
30:69:1a:cc:5f:78:b3:1e:72:7c:7e:2c:85:2c:03:
41:d2:79:82:3d:fd:c9:8b:7f:f1:ab:d1:41:7b:06:
d1:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:E6:1C:D5:C1:5E:A9:4B:B3:31:DF:9D:25:EC:89:44:9F:63:A7:E9
X509v3 Authority Key Identifier:
keyid:E7:FE:22:F5:51:E9:5B:0F:15:03:3C:50:35:52:E4:9B:CA:61:7C:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5_4i9VHpWw8VAzxQNVLkm8phfGo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/d612e3-94eb-4866-b43c-e40b301401a9/1/teYc1cFeqUuzMd-dJeyJRJ9jp-k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/d612e3-94eb-4866-b43c-e40b301401a9/1/5_4i9VHpWw8VAzxQNVLkm8phfGo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:bb41::/32
Signature Algorithm: sha256WithRSAEncryption
95:81:16:5c:bc:32:9f:15:50:3f:17:06:4b:b0:a0:20:c0:0a:
cd:64:37:dc:40:70:97:b4:36:8c:18:5d:1a:e1:90:3f:18:fd:
59:cd:f6:fe:4c:b7:7c:e5:5d:cf:5d:02:25:c3:6c:64:c3:14:
d7:77:78:e4:f7:3b:93:52:80:c7:12:0c:27:8a:1c:50:dc:ad:
bd:a9:7e:19:dd:fc:34:72:45:1a:a7:08:58:53:20:e5:ad:51:
e3:2f:9d:9b:c4:7d:da:28:2a:cb:3e:a8:3b:90:b1:40:cc:cd:
b1:95:bf:a9:8d:6b:3b:03:bd:b0:77:6c:93:e3:57:42:0f:ea:
7c:f7:57:ee:08:58:52:0d:f8:b4:09:42:2c:a8:33:9b:6c:c7:
29:b1:8f:9b:72:58:39:8b:e4:44:98:6b:64:fc:1d:ea:60:4c:
7e:84:f2:92:c5:9b:f4:b4:91:57:5f:0d:89:0a:b6:0d:27:4d:
2a:9d:a5:19:c7:ef:cf:56:5f:37:25:a0:a7:ed:5b:47:1b:bc:
09:70:b6:b8:7d:42:86:9e:41:55:3b:fb:b9:77:97:c6:63:aa:
0e:2c:b7:2d:6c:6c:22:21:a9:86:eb:72:17:24:82:6b:22:83:
f2:b3:a8:02:a1:d7:9a:35:78:11:82:36:47:30:4a:a9:13:6a:
7c:34:0c:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 06:07:10 2025 by rpki-client