Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/OX5WGRMzsMc_dGpoOLVRfny2bxo.roa
File: OX5WGRMzsMc_dGpoOLVRfny2bxo.roa (raw, json)
Hash identifier: 8X3DRCHPDRRM7fXfOlVxxkg/aG8D1XcXWTqt5pAok5c=
Subject key identifier: 39:7E:56:19:13:33:B0:C7:3F:74:6A:68:38:B5:51:7E:7C:B6:6F:1A
Certificate issuer: /CN=4a6d2817491dd2cd0678068e35a9efc68667df02
Certificate serial: 019427B560E24A07B738D1FD91731E0D99C7
Authority key identifier: 4A:6D:28:17:49:1D:D2:CD:06:78:06:8E:35:A9:EF:C6:86:67:DF:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sm0oF0kd0s0GeAaONanvxoZn3wI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/OX5WGRMzsMc_dGpoOLVRfny2bxo.roa
Signing time: Thu 02 Jan 2025 15:49:45 +0000
ROA not before: Thu 02 Jan 2025 15:49:45 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211448
IP address blocks: 2a10:4646:190::/44 maxlen: 44
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:60:e2:4a:07:b7:38:d1:fd:91:73:1e:0d:99:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a6d2817491dd2cd0678068e35a9efc68667df02
Validity
Not Before: Jan 2 15:49:45 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=397e56191333b0c73f746a6838b5517e7cb66f1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:8e:12:80:a6:8e:80:01:ac:0d:28:c6:64:1c:
88:2f:35:c3:78:68:45:9c:1b:74:04:06:26:d1:cd:
d2:26:c1:04:92:ce:c9:ce:28:d9:96:dc:9c:a2:cc:
dc:e5:da:ae:2a:53:06:14:f3:4a:98:96:9b:5e:16:
da:bd:c2:d3:af:56:55:57:71:47:f3:f7:b2:c3:a9:
5b:af:a8:b5:89:85:3a:dc:47:86:19:f1:64:ca:b7:
7f:4f:3a:3b:20:85:93:34:9d:7e:29:34:d9:f2:e6:
b0:18:c4:25:10:9a:86:d4:4e:90:92:65:37:db:95:
d9:4a:73:06:8a:1b:7b:89:ed:29:82:e9:61:0d:f8:
0e:47:8a:c7:34:30:11:00:4a:dd:f3:9a:96:ad:f5:
28:6f:fb:97:34:6c:ef:73:aa:09:32:ae:81:65:97:
f9:be:e8:ff:f4:04:4b:4f:d4:f8:a8:f9:62:92:7f:
25:ce:43:60:91:7a:33:fc:05:df:1d:31:65:16:16:
d3:42:07:0d:e8:22:60:6f:01:19:99:eb:cf:f7:b8:
ee:f0:92:a1:3c:17:5a:c6:0d:4c:53:52:a7:18:b1:
f2:a4:76:72:75:19:6c:19:fe:b9:ea:20:13:cf:f5:
a6:cd:fb:93:93:6b:e6:52:81:d0:a2:2c:bb:80:e0:
68:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:7E:56:19:13:33:B0:C7:3F:74:6A:68:38:B5:51:7E:7C:B6:6F:1A
X509v3 Authority Key Identifier:
keyid:4A:6D:28:17:49:1D:D2:CD:06:78:06:8E:35:A9:EF:C6:86:67:DF:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sm0oF0kd0s0GeAaONanvxoZn3wI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/OX5WGRMzsMc_dGpoOLVRfny2bxo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/Sm0oF0kd0s0GeAaONanvxoZn3wI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:4646:190::/44
Signature Algorithm: sha256WithRSAEncryption
1c:34:b0:ca:96:0e:d7:12:59:18:ff:ac:3b:f8:9a:6f:10:52:
ab:2f:fa:13:79:e9:5a:99:f2:d4:cf:a6:7b:7b:e1:ad:70:ef:
e3:2e:51:8a:c6:1a:5d:42:3b:f7:49:de:75:9a:4a:08:1a:c6:
8f:7f:b3:86:b4:f2:2e:5d:8b:7c:78:81:b8:1e:6a:08:9e:5b:
32:59:7a:91:50:8d:ea:9b:f9:07:a0:c2:b1:f1:02:f6:f6:73:
70:88:81:fa:cb:a0:df:6d:c7:85:32:bf:da:20:6d:3e:84:47:
ef:90:9a:bb:0e:02:94:9c:39:fc:96:31:71:15:1e:fe:af:2d:
0e:21:ea:79:a4:37:85:35:c4:85:2f:6a:d1:c6:d1:88:4f:b0:
48:82:d5:67:2c:62:d0:93:66:85:0d:fd:6c:99:10:a1:9e:45:
a0:64:96:ea:21:d4:f3:19:b5:11:12:42:62:1c:25:6d:c4:11:
81:06:5e:a9:08:58:39:82:36:ca:97:6f:51:11:ca:f5:a5:88:
53:da:e0:29:9b:69:30:17:e3:54:aa:d5:d8:ea:d1:73:dd:5a:
97:c4:6e:83:ec:d3:09:36:31:83:80:66:b4:51:dd:8b:16:08:
aa:5c:f8:2e:e9:62:bb:48:35:96:c7:d2:86:c4:57:18:17:ab:
ef:67:b2:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:40:00 2025 by rpki-client