Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/7QBz_6KBA4TJwTlCgAD2350AqSA.roa
File: 7QBz_6KBA4TJwTlCgAD2350AqSA.roa (raw, json)
Hash identifier: xmn/mfmmNO/Ot/7kWH0FLa6zao+wDRiA1JMmWBl7YSU=
Subject key identifier: ED:00:73:FF:A2:81:03:84:C9:C1:39:42:80:00:F6:DF:9D:00:A9:20
Certificate issuer: /CN=0802b95ce6239d526c35ae7a8e2ceb48aeb82b5f
Certificate serial: 093FCC2E
Authority key identifier: 08:02:B9:5C:E6:23:9D:52:6C:35:AE:7A:8E:2C:EB:48:AE:B8:2B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/7QBz_6KBA4TJwTlCgAD2350AqSA.roa
Signing time: Sat 01 Jan 2022 12:58:56 +0000
ROA not before: Sat 01 Jan 2022 12:58:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51604
IP address blocks: 2a02:2698:1800::/38 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 155175982 (0x93fcc2e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0802b95ce6239d526c35ae7a8e2ceb48aeb82b5f
Validity
Not Before: Jan 1 12:58:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ed0073ffa2810384c9c139428000f6df9d00a920
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:57:cf:8f:32:af:ca:9b:a5:f8:8e:a1:8c:01:
b5:60:fe:51:ab:fe:3d:68:b2:5e:8d:29:93:3d:af:
32:87:25:a5:b2:2e:c3:b3:d4:09:7a:d1:cf:25:60:
9a:74:5e:a5:e0:62:df:1b:e8:e7:5e:34:4b:88:8b:
dd:51:7d:be:ae:d7:85:c5:b8:37:1a:cf:fe:b7:fe:
e5:e2:48:59:b8:db:f0:1c:27:73:26:b5:60:d3:6c:
e9:66:63:7d:bb:ac:ec:4d:0a:e5:36:02:78:59:b4:
00:c7:51:4a:89:ce:91:fd:40:fc:07:1c:ce:a6:0f:
53:62:4e:31:22:d5:2c:99:f6:83:73:f3:49:09:8d:
36:80:61:8b:cc:64:20:53:93:b0:41:92:b1:68:c7:
30:3e:2b:5b:87:43:22:28:4b:9e:00:b5:d1:a6:95:
06:da:c3:14:ce:6c:7c:ef:41:0e:91:79:68:28:fe:
fa:ec:e5:5b:90:49:db:f0:4f:66:51:2d:28:55:17:
d8:58:57:6f:d0:c9:ad:d4:e6:e4:37:b1:c9:29:ef:
59:c4:88:0d:75:49:a0:75:4b:68:3c:95:f6:8b:3d:
18:19:d4:13:2b:7b:12:5e:af:4d:d8:91:a1:70:30:
94:f0:0f:17:5e:ea:26:d8:a0:2d:37:c6:4a:b7:43:
9c:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:00:73:FF:A2:81:03:84:C9:C1:39:42:80:00:F6:DF:9D:00:A9:20
X509v3 Authority Key Identifier:
keyid:08:02:B9:5C:E6:23:9D:52:6C:35:AE:7A:8E:2C:EB:48:AE:B8:2B:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/7QBz_6KBA4TJwTlCgAD2350AqSA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/CAK5XOYjnVJsNa56jizrSK64K18.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:2698:1800::/38
Signature Algorithm: sha256WithRSAEncryption
22:46:90:10:9c:e9:1f:99:3d:84:05:a9:7d:f6:ac:7f:30:c2:
51:ea:37:a1:fa:4a:30:51:9d:d7:f7:e9:ef:94:b3:aa:34:02:
61:4f:16:55:80:fb:ad:a2:1e:6d:8c:cd:6d:8e:ac:fb:84:58:
ab:93:43:ed:73:19:3a:76:04:75:77:7b:66:92:01:a9:d9:7f:
13:27:57:eb:ee:23:04:63:a5:d9:ee:6c:a8:30:66:f1:25:ec:
28:02:80:41:a2:01:97:ca:01:3b:b0:40:59:44:32:15:6a:8d:
6a:04:ec:18:c9:d6:b0:e1:a2:8c:77:73:e5:80:c8:11:f5:c6:
09:cb:de:c7:0c:7d:92:4f:52:15:9d:08:7e:4e:b4:90:46:a9:
ad:25:51:d5:b6:b7:21:14:a0:0c:fe:2f:ce:94:2f:b1:2e:c6:
a3:bb:48:91:6c:e1:c7:47:35:69:2f:46:5c:dd:56:36:c3:8e:
57:01:8a:45:c2:46:69:d1:50:d0:da:11:e2:a8:34:d0:bd:c9:
e5:d8:4c:4e:3d:d8:eb:02:3b:d4:6d:82:7c:85:4a:e5:5a:fd:
6f:12:e2:5b:15:17:f6:ae:63:07:ef:f2:1d:e1:d0:54:c0:25:
c8:b5:b6:98:f0:fa:97:0e:5e:b7:53:18:2d:0a:f7:14:9e:8a:
72:34:e0:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:48:51 2025 by rpki-client