Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/6d59d9-9daf-4fcb-8d05-13bcc752119a/1/Oo7caP-AU-PyikM1l6RmNxO82TA.roa
File: Oo7caP-AU-PyikM1l6RmNxO82TA.roa (raw, json)
Hash identifier: cKDiijnNBz0S6NWj7Wdv8NdabM7oY658/hzOxCII7HM=
Subject key identifier: 3A:8E:DC:68:FF:80:53:E3:F2:8A:43:35:97:A4:66:37:13:BC:D9:30
Certificate issuer: /CN=b07ab922565e2b3e2cc63d485a55dd4fc41d357e
Certificate serial: 01857039B1C72AB2804ED2F9021EB43D2382
Authority key identifier: B0:7A:B9:22:56:5E:2B:3E:2C:C6:3D:48:5A:55:DD:4F:C4:1D:35:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sHq5IlZeKz4sxj1IWlXdT8QdNX4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/6d59d9-9daf-4fcb-8d05-13bcc752119a/1/Oo7caP-AU-PyikM1l6RmNxO82TA.roa
Signing time: Mon 02 Jan 2023 02:05:07 +0000
ROA not before: Mon 02 Jan 2023 02:05:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210590
IP address blocks: 2a12:f8c1:100::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:39:b1:c7:2a:b2:80:4e:d2:f9:02:1e:b4:3d:23:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b07ab922565e2b3e2cc63d485a55dd4fc41d357e
Validity
Not Before: Jan 2 02:05:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3a8edc68ff8053e3f28a433597a4663713bcd930
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:b3:93:c5:62:a7:5d:9b:15:e1:6d:07:cd:eb:
a2:35:f9:7b:45:d2:4b:81:f9:4b:01:18:d1:02:d4:
31:5a:b9:5b:fa:0b:25:7d:f7:a3:fe:23:70:6d:01:
62:74:10:b2:90:ca:69:e6:43:cb:08:53:6b:7b:d1:
c6:07:2e:46:20:8a:03:81:c0:aa:93:92:09:5f:31:
ed:dc:d3:ee:e7:e3:3d:c4:09:27:10:5e:a7:ca:4b:
22:82:2e:74:47:8c:3b:2e:53:fb:28:f5:ad:2f:58:
58:f6:c7:07:90:40:b3:6b:ac:ff:01:90:14:1a:d3:
5f:53:77:33:53:94:da:05:cd:89:94:fb:d8:e2:5f:
be:38:c9:49:0a:bc:ae:2f:dd:f1:ec:ca:54:9a:f5:
57:b2:b6:f6:01:90:55:4b:4b:f0:ae:d0:ab:bd:da:
4b:a4:c2:e8:3b:5e:16:2f:8e:54:f6:4f:80:c0:4f:
33:97:65:9a:c1:28:5c:87:20:21:da:d1:73:b1:3c:
41:a0:58:25:40:a9:7a:f4:5b:31:39:49:23:1c:3f:
22:04:e6:53:e0:47:d2:90:88:4f:f1:ca:b8:10:57:
a4:db:a5:c9:fb:36:21:31:68:be:1f:f2:fb:89:85:
4a:ba:9b:80:45:f6:81:4c:d2:07:3b:06:29:20:39:
e1:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:8E:DC:68:FF:80:53:E3:F2:8A:43:35:97:A4:66:37:13:BC:D9:30
X509v3 Authority Key Identifier:
keyid:B0:7A:B9:22:56:5E:2B:3E:2C:C6:3D:48:5A:55:DD:4F:C4:1D:35:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sHq5IlZeKz4sxj1IWlXdT8QdNX4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/6d59d9-9daf-4fcb-8d05-13bcc752119a/1/Oo7caP-AU-PyikM1l6RmNxO82TA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/6d59d9-9daf-4fcb-8d05-13bcc752119a/1/sHq5IlZeKz4sxj1IWlXdT8QdNX4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:f8c1:100::/40
Signature Algorithm: sha256WithRSAEncryption
55:68:15:52:a4:b9:78:dc:67:f8:22:ce:83:3d:2b:74:cb:5c:
a7:f3:4d:c8:7e:42:5c:31:ce:1a:22:35:94:4d:bf:22:0c:5c:
ad:5e:8d:93:f5:34:fa:63:36:38:4d:7d:fa:44:c2:fe:50:23:
52:13:dc:87:d3:0c:20:d7:bd:4e:b6:f2:61:fe:62:87:3f:2c:
65:11:d8:74:e3:16:4b:c0:67:49:33:42:96:ce:2f:bb:47:60:
cc:2e:7c:30:54:57:7e:f9:e6:56:88:44:07:7e:1a:7b:1f:1b:
9a:63:9e:6b:94:77:b2:76:c3:ca:f7:4a:27:07:84:80:e5:2b:
2a:e1:a6:2d:fa:d7:fa:4f:fb:d4:e4:c9:f2:9d:f6:2c:d2:29:
7a:75:0d:ae:52:ff:9e:c7:3f:62:b2:82:57:a5:19:b3:5b:75:
d7:0e:6b:ac:01:b0:60:45:34:56:09:07:37:19:b2:f3:4c:89:
25:ad:b6:59:28:d6:99:92:7c:91:e9:3f:a2:bd:c5:40:b5:e3:
1b:d8:8d:90:a2:ef:4b:8e:3b:68:d1:7a:e5:7a:6e:53:9c:7f:
f8:e3:cd:42:a3:26:9e:9f:35:5e:3e:f3:5c:12:d9:fb:05:f6:
09:43:64:c1:07:7e:59:f2:11:0d:1f:f9:99:3d:31:76:65:c8:
80:1e:f5:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 21:21:25 2025 by rpki-client