Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/e0caff-28cd-4c6b-b675-e263cad7beba/1/SE2uQ6ZxcwdGlii-j43J2DqnpDo.roa
File: SE2uQ6ZxcwdGlii-j43J2DqnpDo.roa (raw, json)
Hash identifier: oyM0+Irz2gyTWatHgVNvHqnAnvVHNmsH/c/9wQ9wui0=
Subject key identifier: 48:4D:AE:43:A6:71:73:07:46:96:28:BE:8F:8D:C9:D8:3A:A7:A4:3A
Certificate issuer: /CN=80149f43feeb699ffa40a870e5ed7dfc225f133f
Certificate serial: 3C2664
Authority key identifier: 80:14:9F:43:FE:EB:69:9F:FA:40:A8:70:E5:ED:7D:FC:22:5F:13:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gBSfQ_7raZ_6QKhw5e19_CJfEz8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/e0caff-28cd-4c6b-b675-e263cad7beba/1/SE2uQ6ZxcwdGlii-j43J2DqnpDo.roa
Signing time: Sun 13 Mar 2022 13:56:56 +0000
ROA not before: Sun 13 Mar 2022 13:56:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20473
IP address blocks: 2a12:84c0::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3941988 (0x3c2664)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80149f43feeb699ffa40a870e5ed7dfc225f133f
Validity
Not Before: Mar 13 13:56:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=484dae43a6717307469628be8f8dc9d83aa7a43a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:de:bf:a4:8b:37:e8:b4:8c:7a:d9:ad:51:10:
a8:69:33:bc:9c:c8:30:53:cf:1f:e2:79:d4:f4:8d:
71:32:48:b8:02:26:b3:c1:20:f3:02:3d:ef:b8:0e:
82:6a:77:47:ce:41:0e:8d:9e:7a:a2:36:08:b7:fe:
91:1d:cb:b1:fd:60:1c:24:ef:84:be:3a:19:3a:ae:
83:ca:67:16:d7:09:70:57:ca:cb:7b:27:cf:17:ed:
7a:83:81:2d:f5:63:31:85:98:5e:f4:b0:a8:4f:30:
f3:8a:08:f9:f2:be:6f:ec:61:64:19:8d:31:85:4d:
0f:5e:8e:21:c9:36:1c:d9:d1:85:80:cb:63:e1:e5:
4a:c6:b2:d3:63:fd:92:09:41:e1:72:f8:ce:fa:f6:
47:79:1c:78:a5:09:6b:ae:b5:f8:77:c1:d7:7c:86:
93:e1:2e:bb:23:fd:e2:fb:2b:08:ab:91:00:23:d2:
a2:09:d4:04:24:bb:63:a1:e5:85:ce:9e:3e:ff:d7:
33:c7:74:12:b3:c7:2d:2f:08:67:26:5f:88:a4:bd:
e7:ab:22:0a:74:2a:e3:41:e7:bf:f7:cf:8e:81:db:
1a:08:3c:ad:b4:a7:df:b6:21:40:ef:8f:87:cf:ac:
23:4c:c6:a7:2f:e1:72:8a:68:e1:f4:b6:f7:3a:5d:
b0:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:4D:AE:43:A6:71:73:07:46:96:28:BE:8F:8D:C9:D8:3A:A7:A4:3A
X509v3 Authority Key Identifier:
keyid:80:14:9F:43:FE:EB:69:9F:FA:40:A8:70:E5:ED:7D:FC:22:5F:13:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gBSfQ_7raZ_6QKhw5e19_CJfEz8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/e0caff-28cd-4c6b-b675-e263cad7beba/1/SE2uQ6ZxcwdGlii-j43J2DqnpDo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/e0caff-28cd-4c6b-b675-e263cad7beba/1/gBSfQ_7raZ_6QKhw5e19_CJfEz8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:84c0::/40
Signature Algorithm: sha256WithRSAEncryption
75:ad:cf:2b:0c:8b:a9:6a:a8:81:21:3e:7a:26:fe:c0:ea:d5:
c6:67:b1:12:24:38:88:9f:28:27:aa:d3:bf:0e:45:7b:b1:8e:
40:7f:38:86:fc:b0:c9:cb:51:05:f0:27:fc:89:c5:31:66:2a:
f1:af:92:33:2c:22:59:63:b6:8e:26:56:b9:10:21:02:9f:f4:
56:e6:80:b7:9f:19:8a:65:ea:a6:ab:79:87:e5:87:de:93:f5:
e6:f5:6a:71:4d:f0:a1:53:7d:40:05:6f:fd:be:b6:f7:df:1a:
a5:e2:94:da:df:ce:a2:3a:79:c1:b7:45:8e:56:b7:5b:7a:86:
5a:33:92:2d:49:05:7d:a3:9a:f1:5b:c2:36:4b:2c:89:15:64:
07:d0:cd:51:03:ea:f0:5e:fb:67:32:6e:db:36:7d:d8:29:40:
e6:4b:6b:22:46:aa:19:cc:b9:e7:14:38:25:73:51:8b:f1:cb:
82:57:55:89:f1:e4:b8:3d:b0:30:8d:4d:63:7b:8b:f8:ba:e0:
97:58:e6:ca:8f:7b:4e:a3:0f:dd:94:5b:5f:34:b2:e6:0c:43:
69:0c:9b:b6:0b:48:05:53:b0:4f:d5:09:21:58:8a:bc:3a:6a:
30:e5:43:2c:3b:f0:21:99:e6:0c:70:9e:8d:cb:e9:1f:f6:d4:
75:78:70:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 02:48:51 2025 by rpki-client