Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/7e281f-405d-4437-8220-42c0b7561d29/1/lRQuPRJONkztss19r8po3CUcYws.roa
File: lRQuPRJONkztss19r8po3CUcYws.roa (raw, json)
Hash identifier: 1I5NV5ALkPk8JPD1sTZ0ar7KyP/o4PVk84uK8hQLgO4=
Subject key identifier: 95:14:2E:3D:12:4E:36:4C:ED:B2:CD:7D:AF:CA:68:DC:25:1C:63:0B
Certificate issuer: /CN=781684136124a5cacbe7bf7d9f69fa421eccfd37
Certificate serial: 0186FF9B842F1D22F082370A92EB80FE23C5
Authority key identifier: 78:16:84:13:61:24:A5:CA:CB:E7:BF:7D:9F:69:FA:42:1E:CC:FD:37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eBaEE2EkpcrL5799n2n6Qh7M_Tc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/7e281f-405d-4437-8220-42c0b7561d29/1/lRQuPRJONkztss19r8po3CUcYws.roa
Signing time: Mon 20 Mar 2023 15:20:27 +0000
ROA not before: Mon 20 Mar 2023 15:20:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60894
IP address blocks: 2a11:29c0:25::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ff:9b:84:2f:1d:22:f0:82:37:0a:92:eb:80:fe:23:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=781684136124a5cacbe7bf7d9f69fa421eccfd37
Validity
Not Before: Mar 20 15:20:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=95142e3d124e364cedb2cd7dafca68dc251c630b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:9e:ef:3a:f9:58:4a:c5:bd:80:e5:92:15:0e:
90:05:e1:e0:f3:cf:47:79:19:c9:bb:61:34:b4:59:
04:ae:cd:3c:fe:d9:07:b6:31:22:45:2e:a8:e9:58:
59:79:dc:06:1d:db:bc:f0:30:6e:62:83:54:fe:65:
e7:bc:9d:6c:f7:b1:65:2a:89:9f:7b:44:46:6b:e0:
00:b8:96:58:f9:48:d0:b8:10:64:67:bf:6d:c6:f1:
3b:cf:9f:6b:cf:0f:ba:ba:cd:da:44:71:e5:e1:62:
ec:8e:b4:db:16:a0:6d:82:13:18:e1:cf:57:1a:18:
9a:4e:14:1a:dc:20:60:09:26:00:b9:16:d7:fa:3c:
0c:4f:6a:a7:29:1f:63:ac:84:6a:ae:9e:36:a9:3c:
71:8b:16:9f:35:c5:cb:cf:ba:7c:fc:97:a3:8e:91:
58:b5:3b:3c:cf:99:e9:57:72:a2:8f:6f:d1:fc:3c:
90:33:09:b6:a2:e0:01:6f:e0:13:66:86:b0:dd:17:
14:58:c1:9a:61:20:00:0a:33:2e:ca:2f:3f:58:05:
e1:27:9a:0e:06:2c:19:5d:cb:16:73:20:22:bc:35:
72:b1:ff:f6:36:49:fe:97:d0:35:cd:10:dd:db:cb:
0f:b0:d8:98:82:9c:3f:81:48:91:95:82:01:77:10:
5a:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:14:2E:3D:12:4E:36:4C:ED:B2:CD:7D:AF:CA:68:DC:25:1C:63:0B
X509v3 Authority Key Identifier:
keyid:78:16:84:13:61:24:A5:CA:CB:E7:BF:7D:9F:69:FA:42:1E:CC:FD:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eBaEE2EkpcrL5799n2n6Qh7M_Tc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7e281f-405d-4437-8220-42c0b7561d29/1/lRQuPRJONkztss19r8po3CUcYws.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7e281f-405d-4437-8220-42c0b7561d29/1/eBaEE2EkpcrL5799n2n6Qh7M_Tc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:29c0:25::/48
Signature Algorithm: sha256WithRSAEncryption
ad:63:7a:36:06:42:de:78:9e:dd:88:01:4e:f5:e9:8d:2c:bd:
9c:e7:7a:db:d6:31:b5:58:ae:b7:64:44:62:b0:0c:22:71:1d:
3e:28:b1:f3:30:a8:e1:22:3f:5f:b2:a8:4b:f0:2b:6d:4a:9d:
59:c0:ee:1d:ed:70:90:1e:d2:08:0d:38:69:9b:5d:ab:13:ab:
a4:06:7e:64:b8:59:20:46:d6:8e:38:30:e0:8b:1e:36:26:1b:
4f:94:b5:f7:a3:2f:38:68:8b:4f:d8:58:b2:61:69:d9:88:b7:
a9:d5:59:5d:fe:02:40:da:5d:97:f6:47:f7:b4:ff:53:ef:2a:
ff:85:90:ef:ff:b7:24:ff:f6:c3:ce:99:f8:55:54:6a:91:20:
f6:bf:e9:49:66:8c:ff:e7:37:c9:8d:40:d5:68:e3:cd:90:a2:
c5:70:36:dd:ac:48:b7:28:03:d9:09:65:b1:c0:ff:7f:39:d2:
f9:99:57:84:11:78:5f:2c:31:33:a5:21:b6:2c:46:75:97:43:
3f:8e:5e:64:98:d9:4b:99:b9:b9:0a:af:dd:2e:c8:0e:2b:4e:
0f:bb:eb:71:a3:ea:0b:d8:27:13:93:14:f7:df:2c:ac:d8:a5:
48:1f:33:29:41:37:ec:29:b3:83:db:dc:ee:1d:57:3d:46:5f:
9e:ae:0f:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 07:52:51 2025 by rpki-client