Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/llgRriy2OXxVIb1J10HBaMzzWkg.roa
File: llgRriy2OXxVIb1J10HBaMzzWkg.roa (raw, json)
Hash identifier: siw4iFJXZEcw23jD69pMiNp/a1+0+53KTOuEQ0bkJ5g=
Subject key identifier: 96:58:11:AE:2C:B6:39:7C:55:21:BD:49:D7:41:C1:68:CC:F3:5A:48
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0187E174D57C379D396570BEBBCC100EA250
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/llgRriy2OXxVIb1J10HBaMzzWkg.roa
Signing time: Wed 03 May 2023 11:52:22 +0000
ROA not before: Wed 03 May 2023 11:52:22 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199487
IP address blocks: 2a0c:b641:a00::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:e1:74:d5:7c:37:9d:39:65:70:be:bb:cc:10:0e:a2:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: May 3 11:52:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=965811ae2cb6397c5521bd49d741c168ccf35a48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:d0:9d:f1:33:c8:ea:c7:43:bc:53:6f:00:0a:
86:cf:ab:78:f7:4a:8d:9f:71:dd:0f:c2:3e:50:58:
b3:b7:50:5b:4b:e3:85:2d:c0:77:dd:b0:c7:fd:24:
bf:a0:d1:c4:6d:9f:6b:2d:b9:17:1f:e0:40:bc:70:
32:09:41:b8:25:a4:98:ea:c6:5a:02:b8:1e:96:cb:
d4:68:ca:ca:6f:86:c0:8f:94:6a:be:7a:e6:72:06:
47:51:f6:b1:f7:0f:e6:d3:df:3b:17:a2:8f:5a:fc:
00:ac:a5:2d:c6:95:07:b8:9f:d3:78:c8:a6:3b:dd:
20:28:8f:a6:83:e1:2b:80:10:7e:bf:50:8b:24:53:
fd:61:cf:1b:67:99:20:c4:87:7f:2b:c5:7e:0b:7b:
00:8f:f0:b9:61:6b:9c:2f:25:97:4e:0d:91:a5:38:
e1:f5:a7:70:49:00:47:23:22:34:c4:42:d7:58:7a:
c8:5c:e7:d1:19:56:a9:0b:99:86:a6:50:ea:40:0c:
0c:2c:53:8e:8c:31:45:3d:18:d0:c9:c5:6e:68:33:
c6:9f:6b:84:70:b4:74:2a:2b:1e:fb:fd:2c:70:62:
7d:a4:8d:48:05:67:32:c3:73:93:7d:d5:7d:13:61:
65:3e:26:1d:df:8f:5f:70:02:91:7e:d3:a7:32:b8:
7d:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:58:11:AE:2C:B6:39:7C:55:21:BD:49:D7:41:C1:68:CC:F3:5A:48
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/llgRriy2OXxVIb1J10HBaMzzWkg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:a00::/44
Signature Algorithm: sha256WithRSAEncryption
88:f6:80:3a:00:01:9a:1c:84:bd:e9:47:60:a3:4a:9c:11:7b:
a4:7f:9e:69:c3:2f:fe:6e:ca:50:14:d4:a6:31:7b:b6:8e:c4:
89:d0:b7:2e:ca:12:d2:fb:0a:90:9d:be:15:c6:69:48:1d:7a:
22:a8:ad:8d:12:5c:6d:31:9a:2c:0f:f9:f4:62:ec:30:0c:79:
36:3b:bf:dc:8b:d0:1f:bd:4f:08:f8:1f:99:0e:c7:d5:22:db:
12:c8:47:82:99:fc:21:b2:e3:3d:bb:cb:b5:43:54:6c:6a:28:
23:0d:da:b6:34:1c:4d:fd:d7:00:a9:c6:c7:a6:0d:07:3e:aa:
4e:0b:ca:37:af:83:ab:ce:d5:b2:66:5c:d5:5c:32:5d:66:a6:
6f:de:09:59:ea:43:d9:f8:98:7c:0a:d1:8c:d2:80:66:b2:7d:
6e:80:21:01:c1:a2:5b:30:60:fb:5e:86:b7:9d:24:1f:d8:dc:
d0:b4:94:41:e7:2d:c1:40:12:38:66:4a:a1:ae:4d:4e:5b:3c:
7c:94:11:2c:13:01:be:52:d6:f5:0b:5e:b1:b6:4d:2c:21:d9:
b4:68:d2:9b:0c:ad:66:98:c0:49:32:0c:9f:af:c6:dd:35:06:
a4:59:2e:0a:4c:1f:38:9a:49:c9:99:b8:ce:9f:7b:b5:28:5b:
aa:63:95:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 21:35:50 2025 by rpki-client