Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/a68f21-9ff8-4a44-a36d-d1cde2465f89/1/DcFb0_8gblZPigDC-n0JPX3YbuI.roa
File: DcFb0_8gblZPigDC-n0JPX3YbuI.roa (raw, json)
Hash identifier: rMuCeMUTkdZeXB3/iIjsCTuPLjFUbEDO9mpioiGnSEg=
Subject key identifier: 0D:C1:5B:D3:FF:20:6E:56:4F:8A:00:C2:FA:7D:09:3D:7D:D8:6E:E2
Certificate issuer: /CN=ca9ccd830b7e03308bf5cf25e67a7fc2bde0957c
Certificate serial: 019643B050A832419C7B283BF33CC1AC8BA5
Authority key identifier: CA:9C:CD:83:0B:7E:03:30:8B:F5:CF:25:E6:7A:7F:C2:BD:E0:95:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ypzNgwt-AzCL9c8l5np_wr3glXw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/a68f21-9ff8-4a44-a36d-d1cde2465f89/1/DcFb0_8gblZPigDC-n0JPX3YbuI.roa
Signing time: Thu 17 Apr 2025 12:19:10 +0000
ROA not before: Thu 17 Apr 2025 12:19:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 204490
IP address blocks: 2a0e:7f45::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:43:b0:50:a8:32:41:9c:7b:28:3b:f3:3c:c1:ac:8b:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca9ccd830b7e03308bf5cf25e67a7fc2bde0957c
Validity
Not Before: Apr 17 12:19:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0dc15bd3ff206e564f8a00c2fa7d093d7dd86ee2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:9f:a0:c9:e4:63:6f:2e:72:cf:45:4e:58:02:
d1:82:56:5e:8f:dd:09:50:43:7c:8c:cf:13:2a:b7:
22:2f:5a:d8:5e:d7:cb:39:ef:22:6a:7e:52:ed:0f:
e3:48:45:3c:e3:e5:90:45:12:78:d5:e4:0e:ed:8b:
0a:ca:f6:64:b1:60:56:1b:c6:bd:0e:74:55:9a:0d:
d5:9b:3e:c6:e3:e9:2c:ca:24:77:b1:a7:a2:76:46:
ef:bf:2f:4b:cb:57:e8:03:27:22:2e:5b:0b:d5:f1:
f4:36:ae:d6:94:01:f4:b7:36:9a:49:52:c4:5c:2e:
11:48:31:7f:9a:91:c7:fe:bc:7e:9a:b0:8d:e7:52:
31:87:4b:43:bb:c1:4f:0f:84:2e:bb:28:05:9f:ac:
00:82:86:46:0c:99:28:36:94:34:8f:e5:ba:32:65:
c2:c7:c9:97:01:72:ef:08:fe:41:32:50:eb:8e:05:
bf:68:21:99:45:8c:6e:d2:c5:a8:1e:f1:ac:8e:d4:
77:42:59:e2:53:cb:1c:33:e2:ff:c6:3f:81:ec:de:
8f:9f:f4:e3:f0:ac:47:d2:8a:1d:d5:d6:9f:ca:54:
3d:79:3d:1a:b1:04:f0:f7:04:c9:29:02:7b:b2:f5:
c7:e3:1a:91:c7:2d:41:b1:a7:7c:4e:4e:ff:7f:17:
c7:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:C1:5B:D3:FF:20:6E:56:4F:8A:00:C2:FA:7D:09:3D:7D:D8:6E:E2
X509v3 Authority Key Identifier:
keyid:CA:9C:CD:83:0B:7E:03:30:8B:F5:CF:25:E6:7A:7F:C2:BD:E0:95:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ypzNgwt-AzCL9c8l5np_wr3glXw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/a68f21-9ff8-4a44-a36d-d1cde2465f89/1/DcFb0_8gblZPigDC-n0JPX3YbuI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/a68f21-9ff8-4a44-a36d-d1cde2465f89/1/ypzNgwt-AzCL9c8l5np_wr3glXw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:7f45::/32
Signature Algorithm: sha256WithRSAEncryption
a7:72:6f:57:56:4d:77:bd:d9:17:4c:52:53:8c:19:2a:6c:bd:
91:1a:ec:05:1f:a8:62:61:d6:55:91:f4:65:4c:70:2d:95:16:
53:e8:e3:a1:c4:ce:d6:12:29:19:8d:0f:bc:b6:74:a2:95:e5:
27:6b:fa:c2:3c:75:59:49:13:ff:e4:d2:6d:9c:f3:c9:cb:ed:
74:63:1c:56:07:db:2a:40:c3:e9:9b:83:9b:14:db:b9:79:05:
c4:66:7b:80:4c:60:42:5e:70:b0:15:cb:8b:d2:11:43:4b:5a:
dc:8a:9b:bd:f3:6c:4e:1f:0d:e4:50:3a:31:09:99:52:35:b0:
18:0c:fb:fa:74:5d:7b:a8:b3:32:01:1a:07:9c:99:d6:ce:6f:
0d:68:aa:c0:c4:d7:9d:2e:2f:87:92:f9:09:87:04:09:49:4b:
43:05:3d:8d:7a:8c:89:96:a3:87:9d:93:9c:00:b3:55:e3:a7:
de:cc:92:b5:14:d4:2d:6f:91:84:21:31:61:2f:7f:09:b3:38:
2b:d9:19:92:a0:cc:75:b7:c6:a3:7b:72:5a:21:f3:12:4c:da:
b4:94:d5:04:8e:4c:6c:7c:fb:29:05:9e:5f:70:bf:90:7b:a0:
f1:13:cd:f6:d4:5e:8b:b5:80:48:81:03:ae:3e:b0:06:b8:e5:
c2:6e:aa:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 17 03:26:34 2025 by rpki-client