Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/6d59d9-9daf-4fcb-8d05-13bcc752119a/1/VhkxqP9TbLQR9Gn1V-OMZp3B9Qs.roa
File: VhkxqP9TbLQR9Gn1V-OMZp3B9Qs.roa (raw, json)
Hash identifier: 78nVT+9URA9R7oOQbWFfvkFoUlkBssq7AOWzZRNGzSQ=
Subject key identifier: 56:19:31:A8:FF:53:6C:B4:11:F4:69:F5:57:E3:8C:66:9D:C1:F5:0B
Certificate issuer: /CN=b07ab922565e2b3e2cc63d485a55dd4fc41d357e
Certificate serial: 5FF669
Authority key identifier: B0:7A:B9:22:56:5E:2B:3E:2C:C6:3D:48:5A:55:DD:4F:C4:1D:35:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sHq5IlZeKz4sxj1IWlXdT8QdNX4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/6d59d9-9daf-4fcb-8d05-13bcc752119a/1/VhkxqP9TbLQR9Gn1V-OMZp3B9Qs.roa
Signing time: Fri 01 Jul 2022 06:42:02 +0000
ROA not before: Fri 01 Jul 2022 06:42:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204214
IP address blocks: 2a12:f8c1::/44 maxlen: 44
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6289001 (0x5ff669)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b07ab922565e2b3e2cc63d485a55dd4fc41d357e
Validity
Not Before: Jul 1 06:42:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=561931a8ff536cb411f469f557e38c669dc1f50b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:59:f8:de:a5:86:8d:30:2a:ac:8c:95:76:cf:
23:22:f5:de:68:ed:0b:23:8d:3c:08:ea:e7:8c:e2:
81:cc:9a:2f:82:22:8b:08:cc:56:ee:1f:2b:c6:3e:
36:b3:d7:ec:c7:65:a6:fe:eb:e7:4b:09:a9:2c:6b:
32:1c:48:1b:d0:1d:67:00:9b:b1:69:16:e2:08:32:
45:b5:c9:2f:95:15:14:2f:e0:fc:55:7e:75:c4:ca:
70:47:6b:d3:ca:06:37:86:47:2b:19:ec:73:ba:95:
3b:f2:d1:3d:a6:d0:3f:c5:68:58:c8:c5:f6:f4:1c:
20:7e:cf:48:96:6f:bd:be:a2:ae:69:e9:c9:8a:0a:
26:7a:5e:ad:da:8c:cf:72:76:ce:b5:ba:22:df:b1:
0d:09:60:f8:43:e5:8a:d2:63:8e:54:0a:28:c6:0c:
32:b9:66:ac:bd:5a:3a:53:0d:c3:39:f2:d3:d7:b8:
7a:cd:3f:48:a8:62:08:bc:80:e9:d5:e8:1c:35:67:
5d:8a:54:77:03:84:1a:36:88:fa:6e:03:96:17:04:
1e:40:59:78:c4:38:8f:6b:7b:59:39:de:3f:be:9e:
63:76:8c:a5:18:31:d3:5f:6f:21:9a:4d:e1:2b:15:
91:56:8a:c5:d1:62:2a:f1:e3:26:9f:2c:7b:15:97:
f6:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:19:31:A8:FF:53:6C:B4:11:F4:69:F5:57:E3:8C:66:9D:C1:F5:0B
X509v3 Authority Key Identifier:
keyid:B0:7A:B9:22:56:5E:2B:3E:2C:C6:3D:48:5A:55:DD:4F:C4:1D:35:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sHq5IlZeKz4sxj1IWlXdT8QdNX4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/6d59d9-9daf-4fcb-8d05-13bcc752119a/1/VhkxqP9TbLQR9Gn1V-OMZp3B9Qs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/6d59d9-9daf-4fcb-8d05-13bcc752119a/1/sHq5IlZeKz4sxj1IWlXdT8QdNX4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:f8c1::/44
Signature Algorithm: sha256WithRSAEncryption
74:d6:97:ae:bb:6f:ec:ac:1a:c9:2d:43:f8:a2:75:67:f2:12:
5b:a1:a0:58:26:06:a6:04:35:a2:c1:0a:17:19:21:cf:39:60:
3d:ea:68:68:7f:1f:c9:9a:7c:85:3d:2d:34:94:2e:e7:3e:8f:
26:e1:12:f4:cc:80:ec:b3:79:d5:1e:33:b2:8d:62:86:10:69:
7e:b8:e0:a7:3b:9a:dc:97:94:0c:77:18:7b:f4:55:11:af:61:
31:ba:82:fb:f1:03:2f:ae:0c:ff:7c:ae:a7:69:4e:34:2b:6e:
0a:27:5e:c8:09:7f:f1:bb:94:3f:10:1a:9d:94:2f:7d:2e:10:
e5:c6:ad:6a:22:19:93:44:80:2f:be:e0:60:e9:7c:c2:18:db:
35:d6:18:86:07:64:3f:ed:2d:be:5c:4d:68:f5:e7:53:8a:4c:
05:fe:83:ed:a5:cc:08:e7:01:17:c2:7c:af:83:19:1b:34:28:
7b:08:b3:51:cd:0c:ce:6e:0b:e0:a0:ce:dc:1b:a8:2f:9c:db:
80:a4:91:94:07:90:5a:0d:34:dd:d5:f5:26:30:ed:54:a4:d6:
3c:b4:2c:fe:c3:2b:bf:00:43:c9:6a:76:b5:14:04:54:ba:16:
14:af:68:ac:8b:47:14:c3:69:36:bd:de:e0:80:ad:77:c9:68:
33:45:4e:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 21:29:48 2025 by rpki-client