Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/x0pY0R0ZKfYqzajqTelU7dep5MA.roa
File: x0pY0R0ZKfYqzajqTelU7dep5MA.roa (raw, json)
Hash identifier: zjeCsk3a02jGMkrMIfEFd6go/ETeI7yTNwIVBrmyfNE=
Subject key identifier: C7:4A:58:D1:1D:19:29:F6:2A:CD:A8:EA:4D:E9:54:ED:D7:A9:E4:C0
Certificate issuer: /CN=0802b95ce6239d526c35ae7a8e2ceb48aeb82b5f
Certificate serial: 093B4BCA
Authority key identifier: 08:02:B9:5C:E6:23:9D:52:6C:35:AE:7A:8E:2C:EB:48:AE:B8:2B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/x0pY0R0ZKfYqzajqTelU7dep5MA.roa
Signing time: Sat 01 Jan 2022 12:58:54 +0000
ROA not before: Sat 01 Jan 2022 12:58:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50498
IP address blocks: 2a02:2698:3c00::/38 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 154880970 (0x93b4bca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0802b95ce6239d526c35ae7a8e2ceb48aeb82b5f
Validity
Not Before: Jan 1 12:58:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c74a58d11d1929f62acda8ea4de954edd7a9e4c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:b0:2b:9e:eb:6b:79:b5:c6:5b:5b:ae:d4:3d:
d2:89:71:6e:6c:4a:58:9c:f3:7e:4f:ff:0c:41:f6:
98:79:51:e1:89:ce:40:cc:c6:69:e2:3c:bb:3a:12:
bb:1c:3c:3f:c5:a2:44:3d:82:18:b1:bd:3c:d8:9a:
5d:41:2c:d3:ff:bf:5e:51:b0:3d:6e:42:16:63:96:
93:50:41:7a:2c:95:1a:86:16:7a:e9:bb:8d:23:81:
69:6d:e4:33:9d:94:52:68:07:42:f3:ea:ab:df:e0:
28:9c:d1:05:ff:55:28:a1:91:e3:ca:b2:56:ad:25:
22:34:be:d2:02:a7:23:1a:fd:22:6c:53:ce:63:45:
ca:5d:7f:97:ec:e6:75:89:64:53:22:08:57:96:88:
e1:31:a0:e0:be:7e:4a:e5:d8:e7:3d:5a:27:2b:f3:
60:f5:49:4b:ab:3d:b2:63:1e:3e:36:bf:62:a5:ba:
6e:e1:73:66:29:e0:c3:ad:1b:bc:5c:01:5f:e2:fc:
01:9c:3b:b5:df:39:c5:12:bd:0d:a9:31:20:c9:32:
e2:95:26:62:bb:12:d7:1c:43:0f:7a:3f:35:d6:3e:
df:b4:16:35:8e:98:f9:47:2d:d2:53:77:64:34:43:
6b:c3:19:f3:7f:30:b6:d7:24:43:89:a0:50:ef:6d:
81:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:4A:58:D1:1D:19:29:F6:2A:CD:A8:EA:4D:E9:54:ED:D7:A9:E4:C0
X509v3 Authority Key Identifier:
keyid:08:02:B9:5C:E6:23:9D:52:6C:35:AE:7A:8E:2C:EB:48:AE:B8:2B:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/x0pY0R0ZKfYqzajqTelU7dep5MA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/CAK5XOYjnVJsNa56jizrSK64K18.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:2698:3c00::/38
Signature Algorithm: sha256WithRSAEncryption
00:9e:35:1c:3d:21:a0:89:fd:79:bb:6c:4d:2b:f6:d3:06:01:
6c:00:cd:bb:be:5e:c1:eb:83:db:e3:e2:5f:4b:ea:fb:68:8e:
e0:6e:80:b8:e6:99:35:e1:0c:98:9e:09:fe:18:4a:84:4e:1b:
f2:cc:81:f5:5d:80:ca:03:40:ef:4f:80:df:9d:1c:ae:4d:d6:
5e:f9:1e:54:94:4e:ff:68:b3:35:e4:66:9c:c8:10:de:ff:b3:
82:d6:8a:d5:f0:8f:d7:f4:3e:ef:17:a1:a6:e0:79:83:44:96:
7e:29:03:7f:e7:85:00:0a:da:8b:a3:03:93:9b:ed:a8:e2:ca:
94:d4:a7:24:ca:45:3c:ab:a1:c9:25:28:e5:40:6b:12:6e:4b:
d1:ef:55:24:d2:93:91:51:e2:6e:53:53:75:c7:97:ae:19:7c:
5d:8f:6f:29:8e:a8:b6:55:57:be:fc:e2:e9:76:fb:71:4b:fe:
f8:ab:7d:a3:ee:90:82:74:27:99:f0:8a:33:77:44:db:4e:d6:
f2:7c:96:1e:4e:b2:b6:2c:a8:a0:e6:2d:68:b9:24:12:95:4d:
4e:e9:29:0c:00:9c:cf:12:82:ca:8c:67:1e:01:38:4a:20:c7:
be:a9:84:03:0c:19:e0:a4:0f:61:e0:0a:cc:fe:be:d6:41:fe:
e4:bc:6a:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:37:19 2025 by rpki-client