Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/Rp5-BPjY6D0j9pDWrjBIVoSjplM.roa
File: Rp5-BPjY6D0j9pDWrjBIVoSjplM.roa (raw, json)
Hash identifier: KducWRDQMmEHzUvqfTkNhcxp5bEFvZ6tgpv+R2uI8Xw=
Subject key identifier: 46:9E:7E:04:F8:D8:E8:3D:23:F6:90:D6:AE:30:48:56:84:A3:A6:53
Certificate issuer: /CN=0802b95ce6239d526c35ae7a8e2ceb48aeb82b5f
Certificate serial: 093B95D7
Authority key identifier: 08:02:B9:5C:E6:23:9D:52:6C:35:AE:7A:8E:2C:EB:48:AE:B8:2B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/Rp5-BPjY6D0j9pDWrjBIVoSjplM.roa
Signing time: Sat 01 Jan 2022 12:58:54 +0000
ROA not before: Sat 01 Jan 2022 12:58:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50512
IP address blocks: 2a02:2698:400::/38 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 154899927 (0x93b95d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0802b95ce6239d526c35ae7a8e2ceb48aeb82b5f
Validity
Not Before: Jan 1 12:58:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=469e7e04f8d8e83d23f690d6ae30485684a3a653
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:7c:5b:54:f6:0e:c8:92:b7:74:73:39:86:da:
63:50:45:c9:0f:3d:b7:0e:5d:58:ed:e5:09:ef:cd:
df:26:d2:97:05:d8:33:a2:a4:ff:69:79:30:57:f7:
3f:40:54:26:1c:b7:0d:b4:48:f4:98:10:d3:a6:a8:
f1:29:1d:6c:ae:f7:c2:6e:71:d8:f9:91:de:19:10:
6c:4b:3a:13:e1:80:c5:ea:3a:18:51:e9:35:4f:8a:
72:a2:a4:df:ba:85:a7:81:bc:61:23:ae:a4:7b:99:
31:7d:48:28:6d:e6:a3:f8:e8:c7:8e:5d:d6:d1:4e:
b8:43:d9:06:3f:fb:a1:a8:a4:f0:5e:a0:5f:48:9e:
36:cd:fd:a9:85:53:4d:10:5a:0b:12:7a:aa:12:3f:
79:28:5e:b5:02:7a:59:de:da:6f:04:9e:d6:d6:58:
3f:7c:73:3a:22:d0:46:0e:f9:ab:d5:b8:8d:83:f8:
f9:06:88:66:1e:59:4f:6c:24:fe:fe:62:ab:85:7b:
08:87:66:7e:38:c7:84:af:84:0d:da:55:77:a2:99:
02:a2:60:a1:33:f0:d3:e4:a0:dd:df:d3:45:1c:3f:
73:07:c8:eb:43:d3:2b:fe:f1:d2:80:fb:4c:01:d5:
0c:62:c5:31:4e:cc:26:8e:8c:5d:db:e2:c9:cf:23:
d8:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:9E:7E:04:F8:D8:E8:3D:23:F6:90:D6:AE:30:48:56:84:A3:A6:53
X509v3 Authority Key Identifier:
keyid:08:02:B9:5C:E6:23:9D:52:6C:35:AE:7A:8E:2C:EB:48:AE:B8:2B:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/Rp5-BPjY6D0j9pDWrjBIVoSjplM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/CAK5XOYjnVJsNa56jizrSK64K18.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:2698:400::/38
Signature Algorithm: sha256WithRSAEncryption
15:96:5d:3f:a5:1b:e0:49:a3:b7:43:13:fb:d6:0c:29:db:82:
b7:84:c4:40:e7:ff:94:66:d7:2c:9f:88:dd:ec:5a:6e:40:68:
69:47:a7:f8:82:56:01:c0:57:19:ed:52:61:55:a3:c2:ae:77:
9c:49:e6:42:c1:18:40:3f:6a:2b:99:67:40:6e:33:25:5f:3a:
81:07:fc:a2:e2:32:48:24:c5:04:6a:be:22:03:6e:a5:55:7b:
d6:d1:34:b6:88:35:3d:3e:99:06:b1:64:b0:11:c6:48:38:44:
c3:82:63:f5:d3:ee:f7:15:35:0f:61:09:c3:e3:60:f0:4e:d4:
57:cd:f8:ba:29:45:0d:30:c2:92:bd:48:10:b1:0f:4a:f6:a1:
c3:78:bc:3b:61:b7:ec:80:56:92:a2:99:5f:02:d2:17:0a:15:
34:f0:2c:49:1a:56:7c:b0:14:2a:f8:74:d2:8f:90:69:01:ca:
93:de:37:2c:76:e9:8d:77:f5:6f:69:a2:29:6b:6e:8f:5a:4e:
34:9a:48:1d:2a:4d:da:e5:97:89:8f:e2:c3:54:ea:bd:a2:8f:
4b:50:11:8a:ef:b8:ab:1a:c2:48:84:f1:62:5e:cc:7d:58:67:
6b:78:1a:a7:37:c2:44:ab:0f:7b:49:11:3d:18:d1:48:a3:e6:
3d:0a:72:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:37:07 2025 by rpki-client