Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/a00090-6663-46a1-a5fb-661e8fe3c1e9/1/rzDuEXo0h15tN1onQfvdfKOerNI.roa
File: rzDuEXo0h15tN1onQfvdfKOerNI.roa (raw, json)
Hash identifier: Rm0BFvhI+es2ozBderkrcSg2LqNFRQ+VOueKD9tKZoQ=
Subject key identifier: AF:30:EE:11:7A:34:87:5E:6D:37:5A:27:41:FB:DD:7C:A3:9E:AC:D2
Certificate issuer: /CN=2682c816f72686ff7aede53538618cc2e8861039
Certificate serial: 01941F8C94F277D659F8BD049AC1EDE5E76F
Authority key identifier: 26:82:C8:16:F7:26:86:FF:7A:ED:E5:35:38:61:8C:C2:E8:86:10:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JoLIFvcmhv967eU1OGGMwuiGEDk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/a00090-6663-46a1-a5fb-661e8fe3c1e9/1/rzDuEXo0h15tN1onQfvdfKOerNI.roa
Signing time: Wed 01 Jan 2025 01:48:14 +0000
ROA not before: Wed 01 Jan 2025 01:48:14 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212894
IP address blocks: 2001:67c:2850::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:94:f2:77:d6:59:f8:bd:04:9a:c1:ed:e5:e7:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2682c816f72686ff7aede53538618cc2e8861039
Validity
Not Before: Jan 1 01:48:14 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=af30ee117a34875e6d375a2741fbdd7ca39eacd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:51:8b:23:46:9c:5f:c4:81:aa:dc:2e:2a:12:
61:5a:21:da:78:32:25:15:8e:ff:0f:13:54:d5:68:
07:88:ff:09:cc:e6:ed:e3:84:be:7a:9d:dc:d2:ac:
7f:e5:1b:4c:d3:4a:5d:b7:b5:c8:46:0a:c8:88:7b:
65:f1:9b:67:46:b4:ad:fd:1f:58:cf:4a:c5:f6:5f:
2f:e8:4c:67:06:8b:1a:c0:ad:d7:49:0f:d3:20:57:
a5:16:4a:8c:c4:c1:27:94:e1:0b:e5:bd:e7:9c:27:
f2:8a:f9:13:60:46:a1:ff:78:89:45:6d:8b:e4:de:
a9:28:c6:3f:9e:db:4d:39:25:81:b6:24:3b:6b:2d:
85:90:84:f4:81:9b:46:59:7e:be:2f:96:c5:af:c1:
76:3f:a3:b7:4d:e5:ab:4c:c0:82:ab:21:5b:ad:35:
fd:60:ac:d4:0f:6d:cf:92:22:ce:89:a9:a9:f7:c6:
a5:58:b4:f9:34:ff:c9:48:06:a4:4c:65:8a:42:2e:
7e:8b:fc:0b:da:28:e9:69:46:45:3b:2e:e2:be:0a:
ae:f0:91:22:c8:8c:37:6f:d3:d2:b0:0f:21:5f:47:
6c:84:c6:a2:46:b9:9c:8b:cd:22:6b:8b:65:0b:20:
e7:e2:a5:30:2e:1a:f2:92:64:d9:11:50:51:3f:98:
d7:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:30:EE:11:7A:34:87:5E:6D:37:5A:27:41:FB:DD:7C:A3:9E:AC:D2
X509v3 Authority Key Identifier:
keyid:26:82:C8:16:F7:26:86:FF:7A:ED:E5:35:38:61:8C:C2:E8:86:10:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JoLIFvcmhv967eU1OGGMwuiGEDk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/a00090-6663-46a1-a5fb-661e8fe3c1e9/1/rzDuEXo0h15tN1onQfvdfKOerNI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/a00090-6663-46a1-a5fb-661e8fe3c1e9/1/JoLIFvcmhv967eU1OGGMwuiGEDk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2850::/48
Signature Algorithm: sha256WithRSAEncryption
71:5e:0f:7e:0d:b5:3c:31:1d:5c:d3:9b:53:a0:b7:6a:ae:cd:
bf:47:2d:a2:f9:03:f3:a6:c8:28:7a:88:6d:dd:e0:54:16:00:
02:52:25:3d:05:4e:fd:dc:e0:a7:c2:02:cd:f3:d2:81:f4:ee:
17:8a:86:6d:74:31:3b:b1:f0:4f:91:46:00:64:1c:15:6c:7d:
72:1a:4a:f0:a1:7d:01:ca:a3:8c:66:09:b6:d6:8c:1b:e6:17:
3a:b7:8c:16:4b:3d:a8:48:d2:ce:b9:50:94:6c:0a:c3:33:71:
16:6c:da:35:8e:6b:a1:ec:d7:bd:00:b3:36:24:9b:25:da:34:
71:6f:71:36:0a:56:9a:28:13:2d:f4:fe:8d:d7:f1:b4:1e:64:
8c:47:65:71:dc:5e:8c:fd:d4:c7:99:62:88:10:b7:d8:54:07:
2a:36:c5:36:5f:d4:b2:85:17:79:eb:d1:17:63:1c:43:fb:95:
48:91:95:7d:e7:9c:cf:b4:ab:e0:6b:16:36:34:fb:04:f1:dc:
a5:a8:54:e0:6e:49:75:d3:5c:19:98:7d:a3:46:22:d8:83:e6:
92:d2:67:68:d5:50:e8:69:69:0b:de:6b:08:a3:00:18:13:72:
2b:90:3c:7c:88:36:19:cc:6c:d2:54:fe:34:1f:0c:09:f8:75:
0f:06:2d:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 06:40:06 2025 by rpki-client