Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/thGwDSmOCB2egMkJayh7HTNBOoA.roa
File: thGwDSmOCB2egMkJayh7HTNBOoA.roa (raw, json)
Hash identifier: vrdMbk1dhZJxT4RMXRheIxv51EMC51s58JC+BTY/Vpg=
Subject key identifier: B6:11:B0:0D:29:8E:08:1D:9E:80:C9:09:6B:28:7B:1D:33:41:3A:80
Certificate issuer: /CN=d673d849b7d5047376d57e6f796f0018b70b4506
Certificate serial: 01942369854F967A665A0FC4AA6DEFFF4539
Authority key identifier: D6:73:D8:49:B7:D5:04:73:76:D5:7E:6F:79:6F:00:18:B7:0B:45:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1nPYSbfVBHN21X5veW8AGLcLRQY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/thGwDSmOCB2egMkJayh7HTNBOoA.roa
Signing time: Wed 01 Jan 2025 19:48:25 +0000
ROA not before: Wed 01 Jan 2025 19:48:25 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 28839
IP address blocks: 2a01:190:15ee::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:69:85:4f:96:7a:66:5a:0f:c4:aa:6d:ef:ff:45:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d673d849b7d5047376d57e6f796f0018b70b4506
Validity
Not Before: Jan 1 19:48:25 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b611b00d298e081d9e80c9096b287b1d33413a80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:cc:2c:5d:2d:36:23:3c:86:ad:57:b6:9f:e4:
d6:a2:62:2a:1b:50:32:38:e3:2a:91:71:52:84:e1:
97:83:0d:07:11:0b:50:08:3b:fa:0e:8e:5c:ef:55:
5b:aa:c4:2f:75:3a:23:26:9a:cd:97:42:8c:31:b8:
fc:28:f1:bb:a0:cb:6d:2b:f5:f4:41:60:eb:a8:38:
c7:55:75:5d:ec:58:40:97:d4:d8:db:a5:3c:40:1d:
96:c1:7b:43:e1:a0:ec:7b:0b:a4:7e:cc:15:e3:00:
bf:17:34:3d:e0:d2:ff:74:39:b3:b3:05:df:bc:48:
e5:f6:0d:92:e5:7c:5a:72:91:84:30:29:8e:01:8b:
91:5a:5f:22:46:61:71:18:a4:7e:05:01:64:c3:8d:
8e:d3:d9:51:30:2d:81:de:1d:fe:85:6d:bb:28:81:
76:77:8e:b2:2f:2d:2f:57:95:d6:fc:d5:66:51:70:
3b:0c:7b:42:b6:ae:a3:98:4c:e5:6c:21:a8:31:e8:
b6:4d:b9:ee:c6:a5:0e:40:c9:12:b7:cc:c5:d7:3d:
5c:bd:30:3a:47:0f:85:46:58:bd:11:41:2d:10:ce:
44:ee:cb:7d:17:c8:75:61:9a:3a:a5:64:ad:13:7c:
a4:97:bd:f7:23:d4:e9:bf:28:cc:9e:79:31:27:48:
cd:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:11:B0:0D:29:8E:08:1D:9E:80:C9:09:6B:28:7B:1D:33:41:3A:80
X509v3 Authority Key Identifier:
keyid:D6:73:D8:49:B7:D5:04:73:76:D5:7E:6F:79:6F:00:18:B7:0B:45:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1nPYSbfVBHN21X5veW8AGLcLRQY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/thGwDSmOCB2egMkJayh7HTNBOoA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/1nPYSbfVBHN21X5veW8AGLcLRQY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:190:15ee::/48
Signature Algorithm: sha256WithRSAEncryption
37:e1:e4:18:5e:7e:38:6d:25:f1:ca:40:cc:bc:7d:57:94:4b:
8a:18:74:b2:43:81:57:65:31:e9:0d:4a:57:6b:83:c5:e2:c7:
0e:f2:a4:5a:1e:a8:ef:5a:f9:51:32:e3:8c:d0:eb:81:f1:77:
11:66:ac:32:38:b0:88:00:66:dc:7b:10:35:d3:3e:32:38:2c:
bf:3e:e9:c8:d9:d3:00:e7:8f:71:00:20:b7:b0:26:b3:80:d8:
68:9d:8c:a3:e4:62:c8:59:c0:ff:66:09:c8:f8:cb:6c:08:e6:
c0:ea:36:c8:b1:3b:07:2c:8d:d3:47:e6:ae:34:02:6a:e5:3b:
fd:5e:61:1c:94:0d:e0:44:c7:34:6a:db:46:b6:b4:35:d1:9c:
f6:7e:1c:d5:ad:52:07:cc:c9:4e:e2:8d:ec:46:74:49:e6:7c:
ca:8b:37:30:74:48:3d:5b:48:02:68:3b:77:a2:c7:d1:96:d8:
65:54:95:18:49:41:6b:52:b3:7c:6b:96:9e:7c:f5:b4:43:5b:
59:75:c4:e1:d1:a0:86:79:7a:51:a9:6c:dc:ec:99:93:71:15:
f4:d5:b8:a1:16:05:41:52:48:4c:63:a3:cc:67:01:36:6c:ee:
88:70:d3:ac:f9:57:e2:0f:51:19:38:1b:be:dd:58:1b:ff:76:
8a:55:a8:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 08:47:32 2025 by rpki-client