Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/7583cb-d31e-4e03-b14b-b20e28f5188f/1/jHwMoJ5mB6lzwK04PaS0w_VW1Y8.roa
File: jHwMoJ5mB6lzwK04PaS0w_VW1Y8.roa (raw, json)
Hash identifier: Xunyq37sMNBU9aZ6/kdiqY7pgGa6IfbnTHA8Al2VJsg=
Subject key identifier: 8C:7C:0C:A0:9E:66:07:A9:73:C0:AD:38:3D:A4:B4:C3:F5:56:D5:8F
Certificate issuer: /CN=3a0b05f40a6916394782302d1b5660737257a48b
Certificate serial: 01856D81972D78434DBE7F2C6BAE6D853909
Authority key identifier: 3A:0B:05:F4:0A:69:16:39:47:82:30:2D:1B:56:60:73:72:57:A4:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OgsF9AppFjlHgjAtG1Zgc3JXpIs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/7583cb-d31e-4e03-b14b-b20e28f5188f/1/jHwMoJ5mB6lzwK04PaS0w_VW1Y8.roa
Signing time: Sun 01 Jan 2023 13:24:47 +0000
ROA not before: Sun 01 Jan 2023 13:24:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44620
IP address blocks: 2a0f:6580:107::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:81:97:2d:78:43:4d:be:7f:2c:6b:ae:6d:85:39:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a0b05f40a6916394782302d1b5660737257a48b
Validity
Not Before: Jan 1 13:24:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8c7c0ca09e6607a973c0ad383da4b4c3f556d58f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:d0:0f:02:a5:2a:75:0b:f3:21:5b:14:10:64:
b2:da:da:ae:06:02:fb:ff:d8:5d:b7:87:43:b6:30:
62:ad:04:c4:e3:6f:3e:d4:91:41:80:57:65:87:97:
e2:84:62:2f:b3:02:48:10:1e:99:b1:f4:bd:39:06:
87:b1:14:ef:80:fa:3a:0c:7d:fd:ec:59:3f:df:35:
58:3b:bd:ab:5c:55:46:cc:83:cb:d4:01:32:b0:94:
d2:2f:b4:85:b3:48:81:b1:ac:18:f8:5a:39:c2:cf:
23:aa:ce:38:2b:6d:ac:68:e6:aa:eb:a7:44:fe:a0:
89:5a:21:a5:2e:9e:69:2f:db:4b:db:34:a3:bd:c1:
3a:a7:a2:57:7b:61:96:73:a6:01:47:6a:f0:98:27:
f8:bd:ec:14:74:f6:e6:8d:17:a0:75:8b:ee:fb:ed:
cc:99:9e:16:e6:1e:b1:2b:9e:98:88:01:3b:57:3c:
70:2a:97:45:a0:ae:a0:5c:13:b9:a4:e9:0b:9c:0f:
18:c4:f5:06:e8:b1:de:f8:22:ef:d1:db:71:8f:e4:
fe:ea:a6:ee:d3:b7:bc:bc:e5:49:0f:f6:3f:c1:dc:
79:59:6d:3e:c9:97:ca:0f:9e:be:3f:41:f7:73:8b:
96:53:3c:87:26:c1:ea:b9:04:6c:3d:da:af:bc:3f:
6a:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:7C:0C:A0:9E:66:07:A9:73:C0:AD:38:3D:A4:B4:C3:F5:56:D5:8F
X509v3 Authority Key Identifier:
keyid:3A:0B:05:F4:0A:69:16:39:47:82:30:2D:1B:56:60:73:72:57:A4:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OgsF9AppFjlHgjAtG1Zgc3JXpIs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/7583cb-d31e-4e03-b14b-b20e28f5188f/1/jHwMoJ5mB6lzwK04PaS0w_VW1Y8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/7583cb-d31e-4e03-b14b-b20e28f5188f/1/OgsF9AppFjlHgjAtG1Zgc3JXpIs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:6580:107::/48
Signature Algorithm: sha256WithRSAEncryption
c5:c6:d2:54:ee:24:9a:6b:39:bd:6d:75:92:85:ce:e8:3c:79:
2c:ef:d3:7a:79:36:68:e2:9b:38:5e:ab:65:79:eb:f8:0f:32:
80:a2:8b:e1:70:fe:b9:df:72:e4:51:ce:1a:49:77:32:db:dd:
03:a3:5b:ea:1c:c9:5d:98:86:6d:c6:d6:6a:da:1e:de:c4:4b:
14:27:f2:db:b7:5d:d9:d7:51:73:c5:02:83:f3:dd:cf:8d:fc:
2b:22:d9:8d:6f:ad:8f:10:bf:25:a9:48:18:c8:27:9e:09:ea:
ea:a2:d9:4f:9f:69:53:dc:56:ea:22:2a:34:3c:ec:12:b9:07:
78:a3:95:33:33:8e:39:a7:e8:d1:d5:b4:c2:78:f0:85:10:11:
01:17:74:d2:d8:df:4a:6e:1a:3a:a4:62:c3:6e:8f:63:e1:18:
0a:0d:55:34:e7:9e:28:54:a3:66:72:63:28:8a:3c:b3:6a:e0:
fe:75:9d:77:d1:9d:60:cb:65:30:30:20:c3:b0:91:66:0d:b4:
b8:da:4f:e0:32:d8:bb:da:37:c2:02:7f:20:83:89:5d:04:ff:
27:f3:66:1f:9f:a5:47:b2:6a:98:aa:d3:37:fa:c2:75:56:6d:
95:33:d7:c2:4e:06:c5:66:84:26:16:f5:8a:ff:cb:8f:fd:c8:
65:58:d1:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:20:08 2025 by rpki-client