Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/7e281f-405d-4437-8220-42c0b7561d29/1/z717kxz6_2-uJK8VF0Off141JNY.roa
File: z717kxz6_2-uJK8VF0Off141JNY.roa (raw, json)
Hash identifier: Ihl3+1RNAzT56l94N5cxL5CyeJVoh/v+9ycQ8QD8/Mg=
Subject key identifier: CF:BD:7B:93:1C:FA:FF:6F:AE:24:AF:15:17:43:9F:7F:5E:35:24:D6
Certificate issuer: /CN=781684136124a5cacbe7bf7d9f69fa421eccfd37
Certificate serial: 01856D53DF6393D24B08F451453E0D2B99D1
Authority key identifier: 78:16:84:13:61:24:A5:CA:CB:E7:BF:7D:9F:69:FA:42:1E:CC:FD:37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eBaEE2EkpcrL5799n2n6Qh7M_Tc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/7e281f-405d-4437-8220-42c0b7561d29/1/z717kxz6_2-uJK8VF0Off141JNY.roa
Signing time: Sun 01 Jan 2023 12:34:51 +0000
ROA not before: Sun 01 Jan 2023 12:34:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211891
IP address blocks: 2a11:29c0:3df3::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:53:df:63:93:d2:4b:08:f4:51:45:3e:0d:2b:99:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=781684136124a5cacbe7bf7d9f69fa421eccfd37
Validity
Not Before: Jan 1 12:34:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cfbd7b931cfaff6fae24af1517439f7f5e3524d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:87:bb:c2:38:26:80:03:8c:dd:dc:92:91:18:
76:73:81:37:22:0c:3d:63:e0:4c:08:3b:ae:fb:b3:
60:08:a4:9e:7f:8e:18:7e:47:ad:a7:b0:48:0d:e6:
58:17:fb:a9:9f:35:76:74:15:95:57:ce:67:63:ce:
a2:79:60:72:d7:4a:8b:ed:7d:1b:af:80:2a:33:7c:
e5:2a:83:2f:e6:4f:74:01:56:c5:3a:c9:47:dc:b5:
e1:73:85:71:7a:e3:1b:ce:2c:25:a3:b1:18:af:f1:
63:36:d9:ac:3e:c3:66:37:24:6f:a1:05:37:ff:d7:
b9:e5:89:e1:c0:54:06:d8:c3:c4:1f:d5:e7:de:68:
23:7f:a0:8b:d6:76:a8:15:c4:53:93:26:a7:73:95:
df:fd:9b:cd:57:f9:5a:62:66:cc:35:c1:2e:b4:19:
75:f9:f7:f0:2d:b1:02:60:75:63:97:ec:14:13:3e:
53:9f:5c:41:f4:4d:da:e7:e3:7d:08:44:b7:6a:92:
30:30:a5:af:8c:39:bf:cc:0e:3f:61:4c:31:7d:8a:
98:ca:38:96:fd:a8:1c:7d:0d:63:16:62:4e:f5:83:
bb:08:f0:b7:4f:8b:79:bd:1e:fd:ae:8b:7f:48:eb:
ff:2e:b2:8b:c6:1b:19:45:71:4a:51:b5:5a:e0:41:
30:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:BD:7B:93:1C:FA:FF:6F:AE:24:AF:15:17:43:9F:7F:5E:35:24:D6
X509v3 Authority Key Identifier:
keyid:78:16:84:13:61:24:A5:CA:CB:E7:BF:7D:9F:69:FA:42:1E:CC:FD:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eBaEE2EkpcrL5799n2n6Qh7M_Tc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7e281f-405d-4437-8220-42c0b7561d29/1/z717kxz6_2-uJK8VF0Off141JNY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7e281f-405d-4437-8220-42c0b7561d29/1/eBaEE2EkpcrL5799n2n6Qh7M_Tc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:29c0:3df3::/48
Signature Algorithm: sha256WithRSAEncryption
7f:06:2e:77:22:55:5d:12:66:08:85:a7:4c:3b:6b:c5:88:25:
d8:e2:cf:3a:77:60:fb:e0:0a:1e:be:b5:05:cb:43:f6:c3:3c:
3b:35:0e:e8:e9:52:be:f2:a7:66:28:fb:5e:79:aa:87:51:55:
36:3c:d8:52:35:ea:3f:6d:d5:7a:8b:2f:34:02:7b:24:7c:b7:
39:9d:b0:e6:e7:2c:10:eb:fc:13:43:6c:52:f2:b4:a0:c5:b3:
92:16:ec:ad:97:c4:e1:53:c4:13:11:ee:64:fd:d2:5b:54:bb:
66:99:4c:3b:eb:6f:6d:ee:cd:5d:b9:ce:48:8b:07:a9:a0:e4:
ce:97:60:a2:cb:55:67:0d:f5:7b:8f:2b:0e:f7:43:82:8b:59:
7c:e1:b7:1f:62:f8:0f:16:3a:a2:3c:b4:36:00:5a:0c:36:d2:
fc:db:7e:64:aa:df:9c:02:6c:47:ff:dd:f2:da:8a:48:c7:d4:
d1:cc:d8:f5:ee:52:9f:b4:c8:a0:49:76:c2:e5:b8:d0:81:c5:
07:6f:a9:e7:a1:36:30:21:fb:7f:f5:c4:c8:3e:52:40:5a:e4:
d5:1f:2c:75:6c:fa:69:85:cb:70:5b:39:0f:2d:2c:68:e9:7d:
8b:29:24:e8:eb:1d:3c:c0:e7:43:fa:9f:cb:c8:9b:4b:e4:67:
89:78:ec:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 00:13:05 2025 by rpki-client