Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/pIQZZphSJtBYsyTHp4f-i1SMyDg.roa
File: pIQZZphSJtBYsyTHp4f-i1SMyDg.roa (raw, json)
Hash identifier: lVtacCTMuw1LDKM9GcfZXt6oB/LanX6YKSPjsWgdwnc=
Subject key identifier: A4:84:19:66:98:52:26:D0:58:B3:24:C7:A7:87:FE:8B:54:8C:C8:38
Certificate issuer: /CN=0802b95ce6239d526c35ae7a8e2ceb48aeb82b5f
Certificate serial: 093F3EC5
Authority key identifier: 08:02:B9:5C:E6:23:9D:52:6C:35:AE:7A:8E:2C:EB:48:AE:B8:2B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/pIQZZphSJtBYsyTHp4f-i1SMyDg.roa
Signing time: Sat 01 Jan 2022 12:58:56 +0000
ROA not before: Sat 01 Jan 2022 12:58:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51570
IP address blocks: 2a02:2698:6c00::/38 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 155139781 (0x93f3ec5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0802b95ce6239d526c35ae7a8e2ceb48aeb82b5f
Validity
Not Before: Jan 1 12:58:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a4841966985226d058b324c7a787fe8b548cc838
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:d2:49:6d:28:65:d5:ea:a8:0b:d1:91:27:25:
db:4b:23:78:79:29:83:fc:ea:f6:51:26:d4:fb:ea:
da:7d:30:b7:30:fb:7d:e1:9b:df:da:bc:2c:08:ba:
c2:95:de:59:b4:b2:5a:64:28:42:f2:26:74:37:6e:
c4:b9:b8:df:00:98:2b:98:c7:45:d7:f6:c0:b0:fd:
8c:2a:0a:0d:0d:89:ae:00:3f:e6:e6:31:1a:0e:ff:
13:1e:78:f2:5c:de:88:67:f1:9d:d4:08:08:08:e6:
41:b8:9c:ce:c8:bf:4f:33:61:90:77:3a:c8:89:dc:
a5:77:28:0d:dc:27:3b:59:c2:fb:8d:40:7a:08:c2:
e8:b1:88:aa:71:0e:54:4a:e4:2a:ab:9d:ff:67:a4:
8c:f9:66:9c:3f:f3:64:cb:a1:78:c5:dc:5a:45:2a:
ec:43:fb:34:30:00:8d:c2:76:95:99:1e:e5:75:fd:
b8:cb:41:c2:71:a0:86:d5:cf:2e:1a:30:a8:f5:dc:
33:cc:e2:28:b5:df:01:16:a8:53:47:cb:72:03:31:
2a:d6:40:d1:78:06:9a:09:34:07:15:c6:c0:7e:e3:
37:f4:50:4a:99:71:79:15:f3:0b:00:85:03:dc:39:
3f:0b:c2:88:ce:7e:f5:1f:eb:4d:1e:2c:4d:f7:ad:
78:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:84:19:66:98:52:26:D0:58:B3:24:C7:A7:87:FE:8B:54:8C:C8:38
X509v3 Authority Key Identifier:
keyid:08:02:B9:5C:E6:23:9D:52:6C:35:AE:7A:8E:2C:EB:48:AE:B8:2B:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/pIQZZphSJtBYsyTHp4f-i1SMyDg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/CAK5XOYjnVJsNa56jizrSK64K18.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:2698:6c00::/38
Signature Algorithm: sha256WithRSAEncryption
c6:7b:49:44:7f:48:39:a7:73:5b:77:34:df:22:52:f2:23:da:
6c:fd:3f:db:7e:b1:f7:e7:c3:93:bc:ce:5f:48:0b:e4:71:22:
eb:c9:ce:39:9e:e1:2b:5b:d4:fe:16:fc:b4:51:18:d9:27:c7:
da:1d:36:f9:c3:64:49:4f:4a:75:08:a0:cf:af:49:32:4b:bf:
9a:42:d4:43:8f:13:ef:cc:34:81:99:df:66:38:b9:4a:6f:9e:
5c:4d:35:14:9a:b0:d9:b7:ad:9f:cd:8e:72:82:2b:ba:97:14:
34:28:d7:1c:8f:41:19:61:34:17:bd:93:3f:4c:c1:3d:e0:74:
81:38:77:1e:8e:ed:34:21:b9:58:3c:ba:58:aa:2f:07:09:90:
6b:e9:66:df:18:0d:06:3e:4f:4b:e9:16:12:72:19:f8:e6:93:
05:9e:06:de:70:4d:44:d4:a4:9d:2b:4a:28:1d:cf:ae:c0:1b:
61:90:ec:72:8b:0d:c3:1d:53:af:55:87:69:91:7d:b2:fe:61:
44:1f:50:f8:48:cc:09:40:d4:1d:62:75:a7:a3:86:37:52:a9:
3a:23:82:be:89:97:19:8a:f0:aa:2e:f7:4e:74:41:2e:37:f8:
35:2e:c3:9c:9e:aa:fb:a7:cc:b9:17:db:6e:c9:d0:0e:9f:3a:
df:31:1e:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:48:12 2025 by rpki-client