Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/6d59d9-9daf-4fcb-8d05-13bcc752119a/1/e-1ifaRwYBUlvjvOxk9JNZ5Q7AE.roa
File: e-1ifaRwYBUlvjvOxk9JNZ5Q7AE.roa (raw, json)
Hash identifier: t5CDAG+XHLj28hi4+CR7oGjEglbkmBLZ3OMeheDhwLo=
Subject key identifier: 7B:ED:62:7D:A4:70:60:15:25:BE:3B:CE:C6:4F:49:35:9E:50:EC:01
Certificate issuer: /CN=b07ab922565e2b3e2cc63d485a55dd4fc41d357e
Certificate serial: 01857039B004CD2CA9B963BBB2929B531C3A
Authority key identifier: B0:7A:B9:22:56:5E:2B:3E:2C:C6:3D:48:5A:55:DD:4F:C4:1D:35:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sHq5IlZeKz4sxj1IWlXdT8QdNX4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/6d59d9-9daf-4fcb-8d05-13bcc752119a/1/e-1ifaRwYBUlvjvOxk9JNZ5Q7AE.roa
Signing time: Mon 02 Jan 2023 02:05:06 +0000
ROA not before: Mon 02 Jan 2023 02:05:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202118
IP address blocks: 2a12:f8c1:20::/44 maxlen: 44
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:39:b0:04:cd:2c:a9:b9:63:bb:b2:92:9b:53:1c:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b07ab922565e2b3e2cc63d485a55dd4fc41d357e
Validity
Not Before: Jan 2 02:05:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7bed627da470601525be3bcec64f49359e50ec01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:82:f7:6d:32:04:00:48:5d:19:c1:8e:b7:1c:
73:f8:11:a4:0b:cd:31:c7:eb:f1:16:83:66:3d:cd:
47:f2:bd:73:4a:33:51:bb:0c:00:b5:59:6b:a5:4c:
98:c6:9a:b3:3d:43:97:9a:9a:06:a7:f7:7c:74:41:
68:93:7f:e3:10:60:66:30:7b:e5:eb:8d:22:d0:d9:
b6:63:b0:90:9d:67:ba:cd:bd:18:a3:ce:b6:df:5e:
cf:b9:45:09:9b:75:c9:16:40:1d:e7:7d:94:83:96:
da:41:ef:e7:98:a1:27:05:c3:40:20:37:3f:fe:e4:
37:fe:52:f9:b8:f5:be:ae:7d:9a:95:2c:9e:e7:b6:
7a:e1:b3:31:f1:5b:ae:ec:20:53:63:10:2c:64:83:
ca:9b:0f:29:c4:11:be:e0:70:64:4f:a8:bc:fe:03:
a0:92:be:23:7f:b5:66:3b:88:4d:da:c5:df:22:c7:
c5:68:15:96:3c:a4:7f:b4:6f:94:04:0a:d0:10:55:
8e:7f:f6:49:d8:23:d9:8e:46:fa:06:c3:67:9a:72:
30:6d:c9:44:cc:08:19:61:2a:a4:f6:b3:95:f3:d4:
91:d6:6a:00:62:88:c8:a7:bf:7f:3d:29:b7:8b:c4:
11:71:d4:0b:25:40:2a:8a:da:7f:f9:e1:cc:bb:65:
44:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:ED:62:7D:A4:70:60:15:25:BE:3B:CE:C6:4F:49:35:9E:50:EC:01
X509v3 Authority Key Identifier:
keyid:B0:7A:B9:22:56:5E:2B:3E:2C:C6:3D:48:5A:55:DD:4F:C4:1D:35:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sHq5IlZeKz4sxj1IWlXdT8QdNX4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/6d59d9-9daf-4fcb-8d05-13bcc752119a/1/e-1ifaRwYBUlvjvOxk9JNZ5Q7AE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/6d59d9-9daf-4fcb-8d05-13bcc752119a/1/sHq5IlZeKz4sxj1IWlXdT8QdNX4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:f8c1:20::/44
Signature Algorithm: sha256WithRSAEncryption
b6:71:de:6a:15:5d:5c:9f:c9:bb:1a:15:0d:23:50:7b:df:ca:
fd:37:c9:22:ad:02:fd:75:c9:0a:3a:44:c0:18:fd:d1:7c:27:
58:2f:e4:68:a2:1f:ae:3a:d5:44:f6:b2:27:38:95:1c:ed:13:
3d:5f:e1:06:28:b8:35:ae:a8:11:a8:e6:ad:9a:54:57:ff:db:
9f:bd:c5:e8:c9:35:56:db:60:c8:7a:37:e6:d9:42:69:33:e9:
fe:e7:96:98:d0:3f:92:76:8a:7a:d5:46:52:32:fc:2b:1b:3a:
9c:c8:54:44:54:ef:c6:57:8e:62:aa:c0:d5:8d:15:7b:27:ef:
7f:b6:5d:e7:4e:60:2b:20:ca:29:63:13:58:3b:7b:c4:06:df:
2e:7a:05:42:a1:8c:97:07:17:22:c0:e9:83:8a:07:34:00:e8:
90:52:63:63:e2:75:18:23:87:7b:f4:49:d7:80:c6:dd:7d:42:
e2:75:04:84:9f:07:de:98:68:65:46:b6:79:fb:40:8d:11:92:
2c:3d:fb:ec:48:94:8d:88:d6:26:20:96:c9:c4:ec:2a:b4:38:
d0:ee:cf:3d:9c:97:59:1a:a0:cb:fe:f5:9b:30:5f:4f:f4:b7:
1f:4d:b4:4b:3e:22:06:bd:3a:48:2d:b5:9a:b7:07:25:d1:57:
8f:c0:5e:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 21:30:25 2025 by rpki-client