Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/807cf2-1e7c-46ba-a06b-6e0718db6e5b/1/GRqkJq3WOjaRm-C3xESdwd3El_M.roa
File: GRqkJq3WOjaRm-C3xESdwd3El_M.roa (raw, json)
Hash identifier: rVmcNKXzubRcjBpU/+HYkdb+CJ4TqTPvEeKRW6nGE1w=
Subject key identifier: 19:1A:A4:26:AD:D6:3A:36:91:9B:E0:B7:C4:44:9D:C1:DD:C4:97:F3
Certificate issuer: /CN=34fee1e361cf0a7e75e6923c14140b1d5261c02a
Certificate serial: 2F452B
Authority key identifier: 34:FE:E1:E3:61:CF:0A:7E:75:E6:92:3C:14:14:0B:1D:52:61:C0:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NP7h42HPCn515pI8FBQLHVJhwCo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/807cf2-1e7c-46ba-a06b-6e0718db6e5b/1/GRqkJq3WOjaRm-C3xESdwd3El_M.roa
Signing time: Fri 27 May 2022 09:15:16 +0000
ROA not before: Fri 27 May 2022 09:15:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50737
IP address blocks: 2a03:4740::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3097899 (0x2f452b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34fee1e361cf0a7e75e6923c14140b1d5261c02a
Validity
Not Before: May 27 09:15:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=191aa426add63a36919be0b7c4449dc1ddc497f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:32:a2:74:06:a4:75:c5:73:70:69:a6:55:f2:
f6:46:c6:6e:6c:0b:e1:87:96:67:08:bc:34:db:15:
a8:78:7b:08:a1:c1:d6:01:92:a1:56:a6:0b:0e:05:
96:ea:58:2f:aa:74:78:54:71:f3:51:3e:af:4f:e5:
b9:d3:04:86:c8:85:1a:df:0c:bd:43:eb:22:12:a0:
1f:9e:7e:60:4b:6a:d0:29:b2:d7:10:87:4a:2c:57:
df:b4:e8:31:2b:ae:02:1f:ab:ac:81:e8:a5:2d:51:
0f:32:83:77:cc:e3:69:ad:e9:f0:52:6c:d7:ae:de:
e2:e2:c9:09:d2:8d:ba:e0:b7:47:84:f4:55:28:05:
19:de:2d:81:f3:9c:d2:8e:da:93:59:c5:e6:59:46:
06:35:1d:f8:94:84:0b:d3:0c:c1:98:31:f0:3b:86:
cf:89:2c:04:aa:b1:aa:4e:d9:6e:ab:1f:f5:da:8d:
24:6a:3e:94:67:4b:02:e1:8f:31:c5:44:a7:13:0d:
f0:31:6e:4b:a0:be:a1:a8:90:bc:dd:aa:f4:3c:69:
af:ba:40:a6:b4:ee:18:9f:7b:99:63:39:31:cf:63:
85:a1:3c:eb:e7:17:82:72:30:d1:19:71:ee:53:6a:
5c:a2:69:4b:0e:24:52:11:f6:b2:0e:15:b8:ac:9c:
e5:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:1A:A4:26:AD:D6:3A:36:91:9B:E0:B7:C4:44:9D:C1:DD:C4:97:F3
X509v3 Authority Key Identifier:
keyid:34:FE:E1:E3:61:CF:0A:7E:75:E6:92:3C:14:14:0B:1D:52:61:C0:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NP7h42HPCn515pI8FBQLHVJhwCo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/807cf2-1e7c-46ba-a06b-6e0718db6e5b/1/GRqkJq3WOjaRm-C3xESdwd3El_M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/807cf2-1e7c-46ba-a06b-6e0718db6e5b/1/NP7h42HPCn515pI8FBQLHVJhwCo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:4740::/32
Signature Algorithm: sha256WithRSAEncryption
6a:89:da:69:21:78:80:21:bf:a4:af:09:46:9d:b9:90:a7:f4:
a7:41:9e:8b:45:50:ba:43:ab:9f:1e:40:40:5a:5c:2b:67:c5:
45:bc:6b:27:82:59:13:d3:cc:fb:41:ab:13:fb:69:e2:69:7c:
14:8d:10:39:ed:fe:45:a1:0f:80:24:98:5c:c1:e4:45:59:7d:
86:1c:b2:04:7d:c9:9a:3f:bf:8c:2a:57:6d:4e:92:57:e9:11:
5b:90:5a:5b:08:2f:54:f2:3b:e1:39:4b:6d:7e:89:fc:c1:5e:
24:7d:0e:c5:cc:bd:d2:7a:17:38:e7:05:3d:56:93:e0:67:87:
af:24:12:78:8a:5f:95:bf:74:4a:d3:f5:c2:5f:93:ff:aa:fd:
a3:6d:df:2c:d8:46:52:ef:d0:11:58:9a:48:c4:29:b7:36:c4:
92:12:00:ef:7c:17:ed:55:1c:6d:e0:4b:a8:f4:73:33:33:5d:
68:59:b6:63:60:ba:dc:01:3f:47:4f:ec:e5:fe:4d:ae:8e:6f:
c1:da:14:c7:c2:62:e6:dd:c8:84:a2:8f:6c:82:7c:c6:64:2a:
df:d1:b1:a4:ac:56:f4:2b:c8:18:fa:13:27:a1:72:fc:a3:99:
13:c0:e0:6e:21:a2:66:cc:1f:5c:39:02:9d:3a:e6:6f:ab:0a:
ce:19:f7:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 11:03:46 2025 by rpki-client