Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/0095ef-8a39-44d1-a9a6-5baef3fc295d/1/PQyn8RdxSHXOJsRxaOf-6rNH_F0.roa
File: PQyn8RdxSHXOJsRxaOf-6rNH_F0.roa (raw, json)
Hash identifier: BcK8SfGh6xhy1wwUZI32vTh3PC3CRfP3BFmOeQmzJVA=
Subject key identifier: 3D:0C:A7:F1:17:71:48:75:CE:26:C4:71:68:E7:FE:EA:B3:47:FC:5D
Certificate issuer: /CN=5b6d9be16640bef9391d079e0f5c7f6e587e4975
Certificate serial: 01912C8CE0AF8B9B054C10DB9BE2889EEC7B
Authority key identifier: 5B:6D:9B:E1:66:40:BE:F9:39:1D:07:9E:0F:5C:7F:6E:58:7E:49:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W22b4WZAvvk5HQeeD1x_blh-SXU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/0095ef-8a39-44d1-a9a6-5baef3fc295d/1/PQyn8RdxSHXOJsRxaOf-6rNH_F0.roa
Signing time: Wed 07 Aug 2024 11:15:15 +0000
ROA not before: Wed 07 Aug 2024 11:15:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 149977
IP address blocks: 2a01:e507::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:2c:8c:e0:af:8b:9b:05:4c:10:db:9b:e2:88:9e:ec:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b6d9be16640bef9391d079e0f5c7f6e587e4975
Validity
Not Before: Aug 7 11:15:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3d0ca7f117714875ce26c47168e7feeab347fc5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:de:87:41:4e:be:2b:2f:3a:84:31:d8:6d:cf:
b8:7b:2e:1c:95:50:eb:5c:89:aa:13:8f:56:0c:53:
49:49:b9:cc:2c:81:80:35:ef:c0:20:de:ad:9a:e5:
5b:3d:e2:62:73:aa:78:d9:a8:6d:31:8f:03:65:f5:
b2:c5:7a:b8:2b:6f:6d:87:c9:41:f4:77:14:35:3b:
49:d2:40:aa:1a:8b:5e:97:23:6a:7a:fb:ae:5e:66:
a0:12:99:dc:ce:71:d0:56:04:45:e3:33:02:5e:c3:
4c:2a:04:49:89:4d:26:dd:aa:92:3f:9d:f2:df:04:
ff:bb:ba:4b:6b:a9:3a:22:dd:07:69:e6:2b:2f:89:
f5:12:2b:98:71:db:23:a9:67:63:ff:4c:46:25:f3:
ca:9e:86:50:1b:d4:71:af:4c:54:38:32:7a:06:84:
00:2e:e4:13:5b:e5:00:f1:2e:c9:71:a1:19:ee:bb:
49:27:c9:19:f3:d6:63:78:3f:d7:1f:05:49:c1:08:
13:53:e0:3f:ee:3f:d9:78:b8:46:ad:cd:b3:7b:4f:
2a:cd:a1:77:0b:e4:f0:a0:b3:dc:c2:35:d5:d7:4f:
0b:05:61:ef:32:9d:80:a3:16:70:7c:7d:fa:82:af:
a0:7b:1c:b9:6e:7a:5a:c2:90:82:c0:06:a1:4e:f5:
b4:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:0C:A7:F1:17:71:48:75:CE:26:C4:71:68:E7:FE:EA:B3:47:FC:5D
X509v3 Authority Key Identifier:
keyid:5B:6D:9B:E1:66:40:BE:F9:39:1D:07:9E:0F:5C:7F:6E:58:7E:49:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W22b4WZAvvk5HQeeD1x_blh-SXU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/0095ef-8a39-44d1-a9a6-5baef3fc295d/1/PQyn8RdxSHXOJsRxaOf-6rNH_F0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/0095ef-8a39-44d1-a9a6-5baef3fc295d/1/W22b4WZAvvk5HQeeD1x_blh-SXU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:e507::/32
Signature Algorithm: sha256WithRSAEncryption
75:d1:d2:c7:3f:a8:2d:a0:1c:70:89:2b:8e:33:d6:c2:c1:33:
52:46:e6:3e:af:16:70:d3:9d:e6:de:fe:0f:3b:52:15:ea:1f:
3f:30:d6:5a:e3:4c:fe:e3:ae:bb:35:be:97:47:dd:2c:be:05:
b3:67:b0:f0:c5:9d:df:3f:c5:26:6f:f1:b2:9d:11:13:da:fe:
f4:bc:bd:4b:c0:27:79:ae:77:da:24:8d:2c:37:9d:9b:a2:99:
b5:58:5e:04:f4:d2:fb:83:18:7a:67:79:99:fc:b0:23:07:b3:
6a:49:c4:c2:b7:33:a1:0a:88:00:37:ec:b1:71:d8:43:99:f6:
4f:95:d2:9d:3f:e2:a3:c8:46:60:9e:b6:5a:2e:1e:dd:af:dc:
e2:06:dd:9b:5b:44:32:62:0f:52:04:3a:53:dd:9f:fc:a1:71:
f0:57:4d:97:3a:53:c6:b0:93:ab:05:ef:9e:59:2d:7c:ec:a3:
2e:21:4d:9b:06:11:48:e4:4c:87:95:6c:56:97:7b:da:5a:7c:
f5:c4:11:bc:ca:f4:81:56:05:3c:77:56:c7:d3:5c:63:bb:4a:
16:c6:3f:f1:47:a4:3e:88:da:59:66:e9:10:ce:fa:cf:4a:9f:
c7:2b:e4:1b:06:1f:62:94:94:b5:2d:ba:30:65:d6:6d:a0:8f:
aa:e9:e2:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:28:13 2025 by rpki-client