Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/rtNgU16vRfGlfgaBLeA-LVfZYfk.roa
File: rtNgU16vRfGlfgaBLeA-LVfZYfk.roa (raw, json)
Hash identifier: 7272BB0beEnCZnBZky8uGVsVo4pWm3st4EyVIbuSPv4=
Subject key identifier: AE:D3:60:53:5E:AF:45:F1:A5:7E:06:81:2D:E0:3E:2D:57:D9:61:F9
Certificate issuer: /CN=7bab6c11d41162db0306858f83e5e65121132a6b
Certificate serial: 019420D63D5B45EAF88D7B3FEEB1D879F011
Authority key identifier: 7B:AB:6C:11:D4:11:62:DB:03:06:85:8F:83:E5:E6:51:21:13:2A:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e6tsEdQRYtsDBoWPg-XmUSETKms.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/rtNgU16vRfGlfgaBLeA-LVfZYfk.roa
Signing time: Wed 01 Jan 2025 07:48:18 +0000
ROA not before: Wed 01 Jan 2025 07:48:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 207649
IP address blocks: 2a07:22c1:c002::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d6:3d:5b:45:ea:f8:8d:7b:3f:ee:b1:d8:79:f0:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7bab6c11d41162db0306858f83e5e65121132a6b
Validity
Not Before: Jan 1 07:48:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=aed360535eaf45f1a57e06812de03e2d57d961f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:09:4e:25:4b:5e:12:53:a6:66:b9:ca:8d:35:
dc:ec:1c:de:e5:44:f7:e2:d4:ff:64:d9:7d:17:c4:
0e:00:76:96:03:f8:68:bd:ab:2b:0f:da:03:8f:cb:
96:cd:2c:51:39:a9:31:4f:7f:da:7a:64:59:2b:04:
de:a4:73:d8:2d:59:45:e3:83:a9:03:b3:16:8e:3f:
18:af:ed:c7:c6:bf:a6:a9:21:b5:b4:ac:ef:a7:78:
ed:4d:ff:6b:54:da:f0:1c:72:5c:d4:78:86:b9:c2:
bd:6e:c2:8e:c8:29:6e:2b:47:b5:d2:ae:60:66:0e:
a5:61:53:54:eb:a0:cb:fb:c3:4d:27:35:84:b4:3b:
86:82:a2:5b:c0:dc:1a:d4:1e:08:98:54:9b:95:54:
c7:f5:99:32:e2:5d:f9:a6:fa:4a:0e:74:30:5f:a5:
75:31:e2:a0:68:4d:ac:c4:81:db:c3:ad:c7:59:85:
eb:02:dc:cb:94:25:e3:2c:87:4d:17:73:b7:7a:28:
2a:b8:90:e9:65:ab:9b:8c:b5:05:f1:37:1a:58:98:
51:1f:0c:e6:90:41:0c:79:e4:40:e5:fe:d3:f7:77:
a2:4f:30:5b:5e:9a:2e:1d:45:6b:57:97:2d:f0:35:
b8:ef:27:d4:75:c9:6c:31:7c:82:5a:12:18:c0:bf:
86:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:D3:60:53:5E:AF:45:F1:A5:7E:06:81:2D:E0:3E:2D:57:D9:61:F9
X509v3 Authority Key Identifier:
keyid:7B:AB:6C:11:D4:11:62:DB:03:06:85:8F:83:E5:E6:51:21:13:2A:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6tsEdQRYtsDBoWPg-XmUSETKms.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/rtNgU16vRfGlfgaBLeA-LVfZYfk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/e6tsEdQRYtsDBoWPg-XmUSETKms.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:22c1:c002::/48
Signature Algorithm: sha256WithRSAEncryption
a3:e2:29:5d:ab:89:2b:62:28:4e:14:61:54:43:24:a9:ac:81:
ec:af:dc:55:17:38:1e:00:df:58:3a:79:47:df:78:cc:ae:1f:
45:89:68:31:aa:ea:c4:bd:eb:17:07:83:c4:48:e9:e3:c9:1d:
76:49:1d:0c:63:78:3a:b9:04:55:d5:ef:1e:79:83:4d:28:f8:
22:ba:8b:50:9a:cc:4e:1e:19:94:93:96:41:75:b9:70:c4:19:
10:16:1e:13:68:4d:e5:94:d9:49:0a:8c:0e:4b:e7:ab:ca:ee:
a0:ff:dc:6f:be:98:d7:2c:f4:e4:63:56:81:7c:17:77:ea:cb:
71:24:c6:de:fd:03:31:b1:c3:bd:bb:28:8b:46:24:b2:2f:2c:
e1:e5:43:eb:af:17:31:a1:9b:4c:2d:c0:36:de:ab:56:be:60:
34:20:31:c1:3f:0a:6a:7a:f5:29:98:d5:8c:cc:11:0a:39:96:
7f:74:e9:0b:d9:e2:ac:55:6b:8f:fa:be:2c:96:38:63:1c:12:
d2:dd:17:1f:c7:ea:02:3e:d5:be:40:cc:fa:7c:1d:53:1d:eb:
27:f6:04:d3:e4:1a:1a:2b:46:bf:44:b1:cf:d1:54:e5:ff:b7:
cc:cb:00:73:62:51:1b:86:d3:4e:36:95:32:56:e4:a3:7c:fd:
36:bf:1a:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 03:37:52 2025 by rpki-client