Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/73a4c5-92ce-4d9a-858b-bdcaddc1ecce/1/LH5c8r4ZJyTh-_sKYU30uRDPO1U.roa
File: LH5c8r4ZJyTh-_sKYU30uRDPO1U.roa (raw, json)
Hash identifier: 0yS6vijGdhr5OGBwwBC4a3uk8qhVwsKHoyk3VM+FaTk=
Subject key identifier: 2C:7E:5C:F2:BE:19:27:24:E1:FB:FB:0A:61:4D:F4:B9:10:CF:3B:55
Certificate issuer: /CN=7dbe9071939bfa3bcf7e6c6fbe54f004d1e49598
Certificate serial: 018486C06668150653F57056D27D4D75970F
Authority key identifier: 7D:BE:90:71:93:9B:FA:3B:CF:7E:6C:6F:BE:54:F0:04:D1:E4:95:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fb6QcZOb-jvPfmxvvlTwBNHklZg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/73a4c5-92ce-4d9a-858b-bdcaddc1ecce/1/LH5c8r4ZJyTh-_sKYU30uRDPO1U.roa
Signing time: Thu 17 Nov 2022 18:01:06 +0000
ROA not before: Thu 17 Nov 2022 18:01:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 2a12:8300::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:86:c0:66:68:15:06:53:f5:70:56:d2:7d:4d:75:97:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7dbe9071939bfa3bcf7e6c6fbe54f004d1e49598
Validity
Not Before: Nov 17 18:01:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2c7e5cf2be192724e1fbfb0a614df4b910cf3b55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:6b:4d:bb:d0:c1:2d:3f:da:28:ab:e3:c1:82:
62:a2:92:4b:64:3d:3e:95:0a:78:d5:cf:ed:2d:ac:
84:7b:17:6c:04:3d:6d:ef:e4:5b:ab:ec:01:f8:4d:
e3:c3:cb:50:6e:68:2d:28:87:f3:8b:a8:e6:11:15:
19:05:b7:90:c3:86:a2:24:a5:4b:32:40:60:4b:0f:
21:8f:97:b4:f0:32:5d:bc:93:dd:be:78:c3:f2:71:
6b:55:9d:9a:af:b6:19:65:9f:ad:d1:80:e7:34:cf:
8b:65:1e:cb:85:ca:5a:04:a9:bd:b9:58:9f:e6:ac:
ef:0f:52:4d:d5:76:e0:94:34:be:60:ff:fa:17:bb:
3e:97:21:c1:30:12:10:8b:0d:bf:a8:41:ec:10:6b:
eb:0d:2e:ab:fe:4c:79:1e:90:52:bc:39:ae:a8:3a:
81:f4:2a:f7:22:c1:1a:be:47:9f:0d:a3:bb:f7:0c:
eb:5e:cb:a3:de:3d:84:af:da:61:95:cc:69:23:1e:
26:d9:bb:f9:45:8d:88:24:5e:ce:08:e3:2a:43:77:
56:77:e2:cb:0a:9d:05:41:de:03:50:a5:47:ad:84:
f8:e6:1b:d7:6c:30:fc:8a:71:3c:87:49:29:9e:c2:
12:1d:fc:0c:e9:29:83:7a:8e:03:38:a7:c6:b4:8b:
bd:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:7E:5C:F2:BE:19:27:24:E1:FB:FB:0A:61:4D:F4:B9:10:CF:3B:55
X509v3 Authority Key Identifier:
keyid:7D:BE:90:71:93:9B:FA:3B:CF:7E:6C:6F:BE:54:F0:04:D1:E4:95:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb6QcZOb-jvPfmxvvlTwBNHklZg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/73a4c5-92ce-4d9a-858b-bdcaddc1ecce/1/LH5c8r4ZJyTh-_sKYU30uRDPO1U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/73a4c5-92ce-4d9a-858b-bdcaddc1ecce/1/fb6QcZOb-jvPfmxvvlTwBNHklZg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:8300::/29
Signature Algorithm: sha256WithRSAEncryption
82:95:a5:23:d1:6e:ef:0b:0c:98:79:55:dd:06:c6:aa:13:5e:
56:1a:09:1f:b5:1f:0a:51:8f:db:bf:09:40:40:95:23:50:da:
ee:26:75:e1:90:7f:ab:0a:f1:d6:da:7a:56:8e:de:b1:c2:03:
97:27:58:fe:7f:1b:0a:96:ed:8a:70:69:01:4a:d5:3f:7d:4b:
42:df:a2:a3:c8:31:13:70:3b:aa:0f:a9:9c:97:67:7d:be:d2:
0e:e7:7a:2c:25:ad:e6:de:9e:83:01:00:cf:1d:77:5f:a8:6e:
01:e2:5a:4c:fc:af:11:3f:11:12:ac:15:50:06:96:04:e6:0e:
1f:64:48:38:ba:50:65:70:d5:75:28:1d:ef:1a:d6:40:45:c0:
86:50:4a:41:31:cb:c2:73:ce:a1:5c:9d:92:e2:f2:35:ed:9d:
0f:3c:5f:9f:c6:09:7f:12:8a:5d:b3:b3:af:95:b0:ed:ba:d1:
4d:45:a5:73:25:12:3c:3d:3f:dc:15:bd:d0:72:25:87:c5:a6:
d8:92:ad:18:1a:3c:b5:4a:78:1a:5b:2c:f2:b9:4c:bc:81:43:
bf:6d:13:19:2e:a6:0c:c8:76:39:17:30:55:39:53:bf:05:e7:
9e:a8:92:f2:42:17:71:25:50:bb:c3:05:3f:a4:4d:38:1b:68:
99:2c:7d:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 18:09:37 2025 by rpki-client