Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/8e35f5-97d3-4351-9bb0-fcb36d81254a/1/BXtbJRTGPhW1VlCQ66qjiZWhbAM.roa
File: BXtbJRTGPhW1VlCQ66qjiZWhbAM.roa (raw, json)
Hash identifier: 9OVGLVBb4qleVwsOx0lriWprWo/Ar1aDDscASTXyLXo=
Subject key identifier: 05:7B:5B:25:14:C6:3E:15:B5:56:50:90:EB:AA:A3:89:95:A1:6C:03
Certificate issuer: /CN=12e64042b6e7288a485db270c551329b802fd8c4
Certificate serial: 019421B19AB3D29D375D63E4CFE0E5EDE606
Authority key identifier: 12:E6:40:42:B6:E7:28:8A:48:5D:B2:70:C5:51:32:9B:80:2F:D8:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EuZAQrbnKIpIXbJwxVEym4Av2MQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/8e35f5-97d3-4351-9bb0-fcb36d81254a/1/BXtbJRTGPhW1VlCQ66qjiZWhbAM.roa
Signing time: Wed 01 Jan 2025 11:47:55 +0000
ROA not before: Wed 01 Jan 2025 11:47:55 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 24868
IP address blocks: 2001:678:4d4::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b1:9a:b3:d2:9d:37:5d:63:e4:cf:e0:e5:ed:e6:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12e64042b6e7288a485db270c551329b802fd8c4
Validity
Not Before: Jan 1 11:47:55 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=057b5b2514c63e15b5565090ebaaa38995a16c03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:3e:1d:c3:b9:ad:ec:1b:da:dc:ab:43:3d:2a:
3a:39:f0:ad:f9:36:10:6a:5a:ac:31:e4:17:0e:02:
a1:bc:87:2b:db:e3:fd:e0:0f:eb:f9:2e:5b:87:05:
ee:82:47:b6:72:28:4c:c4:88:fc:fd:37:e6:7e:b3:
e2:86:64:c4:1a:09:e2:37:4e:97:7c:bf:44:0f:ff:
57:e0:0e:d1:6b:24:69:d9:97:4e:c0:39:ef:52:0e:
12:90:b2:c5:e5:66:ec:96:f4:f4:3d:ec:8c:a1:55:
de:74:75:ab:d6:61:9b:f1:2a:dc:ca:57:4b:4b:80:
c5:9e:f4:90:49:00:34:7c:70:24:6c:aa:0a:11:c2:
7e:e2:ca:b6:fa:fe:b3:cf:76:aa:4b:5f:1f:15:d9:
38:c8:39:ff:ed:3b:61:54:bd:22:c3:83:d9:55:4c:
dc:e9:07:63:de:be:ea:5d:6d:0f:68:16:a5:66:97:
bf:f6:65:65:2a:df:5d:2a:f3:a7:cf:6e:a5:5f:0b:
eb:d1:8e:9f:21:a1:05:6e:56:e9:2e:2c:45:68:ac:
e7:74:51:33:0d:24:57:0a:2b:74:bf:97:93:8f:e3:
4f:7a:52:ab:42:b0:2d:79:35:de:a6:e1:e7:fc:65:
9d:80:0b:ee:a2:0d:7d:6a:37:95:63:9b:87:a9:d4:
41:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:7B:5B:25:14:C6:3E:15:B5:56:50:90:EB:AA:A3:89:95:A1:6C:03
X509v3 Authority Key Identifier:
keyid:12:E6:40:42:B6:E7:28:8A:48:5D:B2:70:C5:51:32:9B:80:2F:D8:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EuZAQrbnKIpIXbJwxVEym4Av2MQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/8e35f5-97d3-4351-9bb0-fcb36d81254a/1/BXtbJRTGPhW1VlCQ66qjiZWhbAM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/8e35f5-97d3-4351-9bb0-fcb36d81254a/1/EuZAQrbnKIpIXbJwxVEym4Av2MQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:4d4::/48
Signature Algorithm: sha256WithRSAEncryption
84:02:04:54:21:6c:4e:af:cf:cf:37:d4:03:5e:2b:53:ae:5a:
5f:a7:e8:5f:49:6c:a1:80:ea:47:d4:c9:8c:64:9f:d0:0d:44:
61:2d:99:f3:60:37:cb:10:53:22:df:ef:0f:60:2c:4b:81:90:
18:40:fc:6c:ae:25:30:67:4a:8d:4b:7d:a9:62:2c:07:08:a1:
9a:13:b3:19:23:a0:81:ec:70:99:e9:14:f2:59:02:08:5d:65:
1a:65:ba:01:9c:45:83:bb:ea:93:4e:49:53:68:92:be:60:1d:
9e:ca:77:3f:b0:06:05:fb:6e:a2:06:b0:9c:62:15:d6:0c:93:
01:71:e8:c9:b9:29:a6:d4:f3:db:f5:b6:e9:0d:f8:1d:86:a7:
0a:4b:99:af:e4:3c:88:81:51:8e:5d:e2:78:91:6d:f4:41:9a:
8e:c3:81:56:53:03:89:99:71:e7:ed:50:83:ce:38:18:74:20:
e8:1b:a7:45:04:26:0a:4c:a0:42:c7:80:67:52:c4:48:de:44:
c4:85:c1:83:45:82:35:9b:1e:23:2a:c6:f1:dc:c8:9f:1a:6f:
21:75:ba:08:89:6b:be:ad:48:19:61:de:79:1b:cb:95:4a:a9:
00:ee:4f:78:c1:f7:2f:83:dd:2c:5c:31:09:a2:73:a2:bd:ac:
22:23:ba:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 23:02:10 2025 by rpki-client