Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/28e56f-cf1a-43e0-84c3-52da8be640f4/1/Po-PIrOF4KADwZgn27YHO0drs2g.roa
File: Po-PIrOF4KADwZgn27YHO0drs2g.roa (raw, json)
Hash identifier: uIslbQb728vEN8Tt721cRZ11gFF2hFQMTjUNAVaV5XE=
Subject key identifier: 3E:8F:8F:22:B3:85:E0:A0:03:C1:98:27:DB:B6:07:3B:47:6B:B3:68
Certificate issuer: /CN=fbb330fac14c6216a74f5d9317544b63f2c118dc
Certificate serial: 099561A7
Authority key identifier: FB:B3:30:FA:C1:4C:62:16:A7:4F:5D:93:17:54:4B:63:F2:C1:18:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-7Mw-sFMYhanT12TF1RLY_LBGNw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/28e56f-cf1a-43e0-84c3-52da8be640f4/1/Po-PIrOF4KADwZgn27YHO0drs2g.roa
Signing time: Thu 19 May 2022 10:51:05 +0000
ROA not before: Thu 19 May 2022 10:51:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 2a04:5b80:100::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 160784807 (0x99561a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fbb330fac14c6216a74f5d9317544b63f2c118dc
Validity
Not Before: May 19 10:51:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3e8f8f22b385e0a003c19827dbb6073b476bb368
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:63:1d:2c:64:44:ed:65:4a:41:84:ed:02:b2:
e4:71:12:83:46:6c:96:b1:57:2b:20:e5:d7:c2:aa:
f5:55:6b:3b:3a:ac:fc:9d:b9:e1:9c:13:68:95:c5:
5d:80:7b:da:85:41:c4:8b:45:5d:94:54:bd:81:a5:
39:77:58:3f:55:47:40:79:23:8e:e1:11:3a:10:2f:
dd:5f:04:14:9f:20:1a:5f:4f:38:99:72:81:0a:d1:
7c:b1:86:9c:33:04:5c:0a:76:47:4c:98:8f:e6:91:
39:56:3a:53:ab:af:4b:65:ac:e3:07:d3:f4:1c:3f:
82:7a:22:62:cf:80:df:a3:91:c8:6e:41:16:ae:95:
f6:c9:65:c6:6e:4d:4a:2e:28:e1:01:c9:00:d4:0e:
f1:6e:9c:dc:43:e6:ee:68:62:5f:34:fc:8c:8b:aa:
38:c1:e1:1c:54:ba:3e:33:6b:1e:65:89:81:26:c6:
43:26:29:26:92:f8:6b:82:a4:81:e1:23:7e:d4:2d:
3d:73:bb:af:8e:2c:be:5d:be:0b:3a:80:44:a2:b3:
22:52:d2:12:d1:d2:f6:a7:39:4b:00:52:1b:6e:83:
5f:a3:72:ee:46:b6:e5:a8:11:60:e8:46:ca:36:88:
6d:e6:e0:ef:5c:59:9f:59:1f:26:1c:67:23:51:b2:
7e:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:8F:8F:22:B3:85:E0:A0:03:C1:98:27:DB:B6:07:3B:47:6B:B3:68
X509v3 Authority Key Identifier:
keyid:FB:B3:30:FA:C1:4C:62:16:A7:4F:5D:93:17:54:4B:63:F2:C1:18:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-7Mw-sFMYhanT12TF1RLY_LBGNw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/28e56f-cf1a-43e0-84c3-52da8be640f4/1/Po-PIrOF4KADwZgn27YHO0drs2g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/28e56f-cf1a-43e0-84c3-52da8be640f4/1/1-7Mw-sFMYhanT12TF1RLY_LBGNw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:5b80:100::/48
Signature Algorithm: sha256WithRSAEncryption
41:6b:90:b5:a4:cc:61:0f:ca:ea:10:33:4a:6d:fa:42:8e:54:
92:8c:1d:e7:c7:5a:68:42:56:3e:cb:12:07:f8:e8:20:d6:0e:
d1:58:9f:02:1c:62:31:c7:47:4a:2f:31:69:74:d4:9f:6d:a5:
1d:3f:66:64:ad:06:c1:8a:60:ea:74:1a:38:77:ea:93:d3:5e:
e1:37:22:e7:d1:ba:25:a3:2d:bc:36:80:9c:a7:eb:63:dd:38:
54:89:42:21:d4:1f:5e:9c:f1:dd:49:61:d5:c9:a7:4f:47:32:
68:57:55:e4:c0:bd:2d:60:59:3a:ad:50:78:51:a0:a8:3b:e6:
16:ba:90:37:74:78:7d:cc:31:79:dc:ab:af:a2:96:04:5b:e3:
78:a6:87:b4:4c:b0:09:55:2f:98:6f:00:7f:81:bd:06:a8:8a:
a4:5f:fc:88:ec:7e:83:33:2a:9e:78:0a:60:42:3c:8e:29:43:
24:d5:be:60:3f:92:db:50:1b:54:35:1d:18:41:ab:d8:17:2c:
2a:46:9b:26:b2:f0:f9:cd:06:ba:57:9b:af:c5:1b:c5:db:c9:
1e:7e:06:6a:0b:66:d9:8f:6d:3c:99:01:89:99:7d:28:41:65:
7a:9e:b5:01:8f:25:33:18:9a:2f:ae:a3:e6:c3:21:fb:ea:5c:
e1:53:c2:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 05:13:56 2025 by rpki-client