Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/e4ccb1-ca25-4099-8273-3993aa324e1f/1/y2chyLi0MiNw5kPgCGuG_lAJm6E.roa
File: y2chyLi0MiNw5kPgCGuG_lAJm6E.roa (raw, json)
Hash identifier: aBY4sS6r8TuI74TUuwhLmDR0B3e0KyzhgW6eBiCSGXY=
Subject key identifier: CB:67:21:C8:B8:B4:32:23:70:E6:43:E0:08:6B:86:FE:50:09:9B:A1
Certificate issuer: /CN=6ce97cf4d8d0bc17b3af1d62c4d71488661bd212
Certificate serial: 019425FDC65AA9FF27D2F5A9612B6E871DA7
Authority key identifier: 6C:E9:7C:F4:D8:D0:BC:17:B3:AF:1D:62:C4:D7:14:88:66:1B:D2:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bOl89NjQvBezrx1ixNcUiGYb0hI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/e4ccb1-ca25-4099-8273-3993aa324e1f/1/y2chyLi0MiNw5kPgCGuG_lAJm6E.roa
Signing time: Thu 02 Jan 2025 07:49:35 +0000
ROA not before: Thu 02 Jan 2025 07:49:35 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 56835
IP address blocks: 2a0a:2c0:1::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:c6:5a:a9:ff:27:d2:f5:a9:61:2b:6e:87:1d:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ce97cf4d8d0bc17b3af1d62c4d71488661bd212
Validity
Not Before: Jan 2 07:49:35 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cb6721c8b8b4322370e643e0086b86fe50099ba1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:f5:b2:1e:c8:9c:03:af:3f:23:cc:04:93:38:
d6:75:81:b6:6d:5b:06:fb:2d:37:e1:9a:84:fc:2c:
01:14:fd:bc:34:26:45:71:31:63:aa:84:8d:1f:d9:
a5:85:74:bd:2a:83:c2:a3:81:8d:08:53:4b:9e:c3:
5f:40:bc:cf:58:4b:b3:a0:5b:0b:16:79:45:d8:74:
f1:87:56:48:60:28:5b:b5:bb:47:86:a8:91:cf:a9:
de:5d:99:a4:2a:ee:f2:aa:d9:23:f0:0b:ca:b3:13:
2e:7a:f9:80:d4:94:86:df:ec:ff:11:17:fd:d5:74:
eb:a5:48:0e:3d:bd:19:1b:cf:ae:0b:8b:0d:3d:a0:
2d:a6:e2:81:c0:7c:5f:10:f4:c7:b1:98:34:67:4e:
a7:d9:e9:3c:67:03:73:b1:89:51:fb:2d:ac:4a:c6:
48:ab:ae:b6:66:01:4a:44:ea:e8:e4:ab:43:dc:dc:
6b:fb:ec:fd:c3:bb:e2:4b:73:d8:4f:45:c5:61:78:
a6:a8:4d:52:2f:2f:67:00:bb:dc:9a:98:84:1d:0b:
64:07:32:77:7e:65:43:f6:28:e3:da:52:6d:3e:d5:
07:50:39:48:ff:ca:c4:47:c6:65:85:80:09:2b:c3:
31:9b:2d:59:d3:8e:ef:70:d0:ea:a3:dd:15:d3:7d:
7d:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:67:21:C8:B8:B4:32:23:70:E6:43:E0:08:6B:86:FE:50:09:9B:A1
X509v3 Authority Key Identifier:
keyid:6C:E9:7C:F4:D8:D0:BC:17:B3:AF:1D:62:C4:D7:14:88:66:1B:D2:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bOl89NjQvBezrx1ixNcUiGYb0hI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/e4ccb1-ca25-4099-8273-3993aa324e1f/1/y2chyLi0MiNw5kPgCGuG_lAJm6E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/e4ccb1-ca25-4099-8273-3993aa324e1f/1/bOl89NjQvBezrx1ixNcUiGYb0hI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:2c0:1::/48
Signature Algorithm: sha256WithRSAEncryption
35:46:43:96:27:3e:62:95:3d:ea:bc:ef:d7:39:dc:7d:e6:2c:
4a:d7:9f:47:60:d0:64:f1:5d:d7:cf:e9:03:53:74:60:54:2e:
bc:4d:4e:e3:14:e9:7f:ee:d9:5e:ce:3f:d3:23:52:77:d7:27:
bb:4b:75:23:f2:da:46:fb:77:fd:58:75:c0:23:06:60:18:e8:
b3:8e:c2:13:c9:da:a4:86:72:89:13:41:8c:40:88:e1:8c:d4:
fa:81:68:a5:d7:c7:be:b0:45:cc:de:e2:9a:95:d2:d2:3d:8b:
77:fe:34:a8:e0:49:75:25:4a:1b:5f:c8:03:81:0f:e7:92:a5:
00:f8:3e:65:4f:77:00:15:67:8f:b2:76:2c:9d:9c:bf:b0:31:
fe:14:d2:c9:42:fb:6c:c7:c3:6a:81:cb:4b:62:3f:c6:f6:d1:
ab:ab:f4:8f:4d:5e:9b:74:c0:c7:6a:20:84:53:21:1a:ce:00:
54:31:d1:60:bf:22:6c:eb:08:bb:a3:95:48:23:03:3e:ec:22:
f3:bc:27:4f:ea:12:80:49:0b:e3:c0:1c:1c:23:56:fa:c7:bb:
f8:d2:9d:ef:3e:f4:33:66:c8:78:66:b2:ef:fb:a3:d7:48:cc:
7e:76:9c:f1:5a:76:9c:48:e5:b7:90:e0:5f:0f:b2:7f:aa:a7:
d3:00:2b:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 10:14:31 2025 by rpki-client