Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/e0caff-28cd-4c6b-b675-e263cad7beba/1/rpJQLwGR4MNKRE5tH1WH4wJBl44.roa
File: rpJQLwGR4MNKRE5tH1WH4wJBl44.roa (raw, json)
Hash identifier: Y/5vRqXI+ecruCu4gzgUV+x56sdEoHB9LsrFiCPTUsg=
Subject key identifier: AE:92:50:2F:01:91:E0:C3:4A:44:4E:6D:1F:55:87:E3:02:41:97:8E
Certificate issuer: /CN=80149f43feeb699ffa40a870e5ed7dfc225f133f
Certificate serial: 421BA8
Authority key identifier: 80:14:9F:43:FE:EB:69:9F:FA:40:A8:70:E5:ED:7D:FC:22:5F:13:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gBSfQ_7raZ_6QKhw5e19_CJfEz8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/e0caff-28cd-4c6b-b675-e263cad7beba/1/rpJQLwGR4MNKRE5tH1WH4wJBl44.roa
Signing time: Tue 15 Mar 2022 10:23:46 +0000
ROA not before: Tue 15 Mar 2022 10:23:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207420
IP address blocks: 2a12:84c0::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4332456 (0x421ba8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80149f43feeb699ffa40a870e5ed7dfc225f133f
Validity
Not Before: Mar 15 10:23:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ae92502f0191e0c34a444e6d1f5587e30241978e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:a5:05:99:25:48:f3:3c:cd:17:e3:9d:e0:1a:
07:bf:59:56:d6:29:97:c9:e0:ec:c4:d0:c3:89:c6:
a2:5d:69:4e:4a:58:00:6a:44:e6:e1:e9:a3:c5:5a:
57:e9:8c:1e:80:d7:c7:37:87:27:9f:1e:59:fb:68:
9c:6f:6e:a8:96:20:be:49:37:4d:03:84:fd:a0:75:
f1:f9:2a:21:d9:17:01:e0:23:9b:ab:5d:c4:6f:1d:
e9:d1:bf:f7:05:d5:81:b9:d1:b9:fa:0c:c5:1e:77:
de:33:e2:49:09:ac:2d:60:82:b3:51:28:9d:ff:73:
ba:c3:ca:b2:e9:09:38:b9:b6:8a:b9:f5:30:f8:cc:
f6:6c:9a:a7:96:28:7b:99:3d:68:df:fb:cb:ce:0f:
1c:02:d4:c1:80:4b:ad:4e:b8:b1:50:c9:9d:86:49:
55:9d:68:a3:6c:79:01:4c:83:9d:15:47:01:73:92:
3f:58:2b:12:c3:63:a0:6a:8f:ae:4d:bb:20:76:1d:
2e:55:9a:e6:78:b4:28:0d:62:af:5a:88:0d:09:5e:
2b:1c:ee:cd:77:ef:97:84:ee:25:31:ca:26:42:c9:
a9:3d:6c:aa:4d:d3:6a:15:87:de:d6:ce:92:cd:80:
70:d4:e0:04:ca:3f:36:88:c9:35:e6:f0:92:9d:d1:
7a:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:92:50:2F:01:91:E0:C3:4A:44:4E:6D:1F:55:87:E3:02:41:97:8E
X509v3 Authority Key Identifier:
keyid:80:14:9F:43:FE:EB:69:9F:FA:40:A8:70:E5:ED:7D:FC:22:5F:13:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gBSfQ_7raZ_6QKhw5e19_CJfEz8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/e0caff-28cd-4c6b-b675-e263cad7beba/1/rpJQLwGR4MNKRE5tH1WH4wJBl44.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/e0caff-28cd-4c6b-b675-e263cad7beba/1/gBSfQ_7raZ_6QKhw5e19_CJfEz8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:84c0::/40
Signature Algorithm: sha256WithRSAEncryption
53:8b:d9:4f:72:f8:6e:85:83:3c:d6:ce:b2:ed:c0:6d:18:40:
65:ea:a2:c1:ef:01:3a:cf:68:a6:03:b5:5d:7e:8a:2e:f4:ec:
39:29:f5:7b:74:84:0f:a0:be:73:5a:ad:40:5e:4d:6a:dc:ce:
49:5f:9d:58:58:62:5d:1e:5b:c0:4d:e7:27:31:01:a1:ed:02:
9f:50:3e:ee:47:8a:a3:ee:73:c8:74:d9:83:63:5d:9b:c8:75:
8e:6b:7c:17:da:a3:ec:42:4d:7c:39:bf:0d:1e:a4:4d:4f:e3:
0a:1b:96:31:38:44:f4:cb:a3:54:dc:79:96:51:27:f1:9a:ad:
d0:c0:c6:b1:32:fa:dc:f2:40:b2:9c:ee:7e:b6:5e:ef:d2:34:
ab:ca:11:cf:f8:7b:56:a1:5e:31:4e:02:e2:89:c8:5a:cb:d2:
ed:3c:31:2e:28:3f:2e:dd:c0:89:ac:22:7b:e6:97:fb:95:1f:
12:b8:08:17:76:66:42:3c:d7:e6:ff:4b:aa:42:c7:55:4f:53:
5b:8e:b5:d8:4a:d4:ae:ac:28:f7:0d:85:b1:82:e1:39:ab:4c:
79:17:06:37:d9:20:63:dd:bb:2b:e4:c6:fb:04:44:77:de:a8:
96:73:a1:e5:f4:7d:35:99:f7:7a:a0:80:30:c9:6f:63:58:d5:
99:5d:84:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 02:46:43 2025 by rpki-client