Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/EhHLGGk0EJ_ooNX65DeF-nyeSqw.roa
File: EhHLGGk0EJ_ooNX65DeF-nyeSqw.roa (raw, json)
Hash identifier: p1tio/nNsNlOrnxeeio7/X8Y6VMKMHrrWMtsAKcXxdk=
Subject key identifier: 12:11:CB:18:69:34:10:9F:E8:A0:D5:FA:E4:37:85:FA:7C:9E:4A:AC
Certificate issuer: /CN=0802b95ce6239d526c35ae7a8e2ceb48aeb82b5f
Certificate serial: 094ADF92
Authority key identifier: 08:02:B9:5C:E6:23:9D:52:6C:35:AE:7A:8E:2C:EB:48:AE:B8:2B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/EhHLGGk0EJ_ooNX65DeF-nyeSqw.roa
Signing time: Sat 01 Jan 2022 12:59:01 +0000
ROA not before: Sat 01 Jan 2022 12:59:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59713
IP address blocks: 2a02:2698:3800::/38 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 155901842 (0x94adf92)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0802b95ce6239d526c35ae7a8e2ceb48aeb82b5f
Validity
Not Before: Jan 1 12:59:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1211cb186934109fe8a0d5fae43785fa7c9e4aac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:eb:2a:db:3d:cd:95:ff:08:38:39:82:c5:f6:
9c:fe:cf:92:48:ed:ae:a2:00:24:70:90:02:99:76:
9e:79:b4:b8:d9:5b:68:aa:ca:65:f0:f0:5f:c6:1c:
57:5b:34:ed:12:12:a1:2c:21:a6:82:be:23:fd:8c:
39:41:a1:88:58:e8:6e:36:66:51:ae:54:29:64:a0:
c4:c2:81:a5:95:c9:6c:ee:38:91:9a:67:a0:cc:3f:
70:8c:22:11:ca:4e:7c:f8:1f:8d:02:59:d4:85:d2:
11:58:d6:be:08:04:bd:20:aa:d2:21:f7:89:50:77:
c0:51:85:fe:19:3b:34:00:d1:ec:b4:c0:7c:e4:f3:
ac:ac:6d:44:7e:6d:91:ea:8a:e8:1f:e4:ec:cc:d7:
7f:22:0a:27:f2:98:ef:b7:f5:fc:46:6d:ac:71:6a:
96:09:3c:58:0c:8d:b1:bd:24:41:02:78:ab:d6:44:
85:f6:0c:37:90:33:4c:17:e2:2f:8a:d1:bc:f0:fb:
5b:96:dd:19:be:58:f4:1f:5a:08:76:13:ba:d1:37:
7e:4b:76:c7:b9:60:8b:cd:8a:80:0b:e9:5a:18:53:
48:7d:b6:8d:24:85:97:f7:96:f7:a3:ea:28:c4:bc:
b0:d3:71:0d:cb:74:b7:76:49:aa:f0:34:b8:d6:a3:
30:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:11:CB:18:69:34:10:9F:E8:A0:D5:FA:E4:37:85:FA:7C:9E:4A:AC
X509v3 Authority Key Identifier:
keyid:08:02:B9:5C:E6:23:9D:52:6C:35:AE:7A:8E:2C:EB:48:AE:B8:2B:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/EhHLGGk0EJ_ooNX65DeF-nyeSqw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/CAK5XOYjnVJsNa56jizrSK64K18.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:2698:3800::/38
Signature Algorithm: sha256WithRSAEncryption
d2:4d:a1:7a:7d:15:75:03:1d:37:56:db:9c:89:be:00:89:4b:
ed:d7:85:bd:55:9e:a6:19:54:4f:37:37:75:aa:92:25:df:c8:
9f:ec:19:03:16:2f:64:65:80:17:91:be:95:bb:cb:fe:f4:05:
c5:ee:e9:ea:93:59:a9:b5:2b:3a:b3:f5:92:e0:c5:85:2d:f8:
05:16:31:e7:2b:7c:dd:fd:20:71:83:cf:7f:8f:2b:84:b5:1b:
90:e9:97:d0:8f:e8:de:33:f4:7c:44:c8:f0:65:ca:4d:14:9a:
cc:6a:eb:e0:4b:4d:81:5d:77:11:6c:66:12:a6:aa:5e:da:51:
50:75:8d:8b:d4:7a:be:69:d1:cf:33:eb:ec:1d:2c:21:22:e0:
64:44:e4:63:46:4e:54:cc:94:ac:09:03:dd:39:ad:69:2f:6e:
09:0a:ee:e0:55:a4:7b:ea:b5:83:bc:d3:fa:8f:d0:da:5c:9f:
63:54:d4:f4:ae:d8:92:ef:78:df:16:72:88:f4:3b:2a:a9:87:
b7:07:ed:3a:ce:1c:fd:12:12:15:ca:cc:40:e5:04:b8:8f:7d:
61:98:b7:fb:06:69:7a:dd:75:32:23:81:1e:52:d6:bc:44:27:
d8:ee:a4:97:be:a4:6e:11:d7:cc:f5:3a:cf:96:98:d3:f9:7f:
68:2e:a0:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:37:53 2025 by rpki-client