Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/971cc4-54d5-4c28-a1c3-e63e94cba09f/1/F9-BdR5oCN5qkeB-mZp0ElI8AYM.roa
File: F9-BdR5oCN5qkeB-mZp0ElI8AYM.roa (raw, json)
Hash identifier: 7Gbia76yE5d14NXdeL45K2CHuAVmA8y3LEeHWa/mkUI=
Subject key identifier: 17:DF:81:75:1E:68:08:DE:6A:91:E0:7E:99:9A:74:12:52:3C:01:83
Certificate issuer: /CN=7d04c25c2f8b47e5daf52d1c4c5a50999dd0a0a9
Certificate serial: 0185710C3B9B817DC9E728FDFF0155737B68
Authority key identifier: 7D:04:C2:5C:2F:8B:47:E5:DA:F5:2D:1C:4C:5A:50:99:9D:D0:A0:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQTCXC-LR-Xa9S0cTFpQmZ3QoKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/971cc4-54d5-4c28-a1c3-e63e94cba09f/1/F9-BdR5oCN5qkeB-mZp0ElI8AYM.roa
Signing time: Mon 02 Jan 2023 05:55:05 +0000
ROA not before: Mon 02 Jan 2023 05:55:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200299
IP address blocks: 2a04:ff00:b00b::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:0c:3b:9b:81:7d:c9:e7:28:fd:ff:01:55:73:7b:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d04c25c2f8b47e5daf52d1c4c5a50999dd0a0a9
Validity
Not Before: Jan 2 05:55:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=17df81751e6808de6a91e07e999a7412523c0183
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:dd:9a:b4:b2:a1:25:c5:98:5d:67:54:00:35:
54:85:0c:7e:d3:f3:ca:7b:d4:35:a2:1a:ba:a5:29:
33:b9:43:0a:4c:86:f5:71:74:eb:e4:d5:85:72:b4:
35:7f:d1:6d:70:05:6c:b0:39:b9:76:22:e7:dd:94:
55:fb:a3:1b:4a:f1:f5:1f:a8:06:9a:ff:d8:68:b9:
7a:7a:74:6b:fe:17:19:df:95:d8:cc:c9:af:26:d4:
4e:29:03:4c:3e:97:8f:f5:47:11:bd:a9:58:fe:8c:
38:84:9f:a2:c5:df:fe:5f:29:40:e2:cc:bb:33:44:
59:04:00:73:51:67:17:db:f5:bf:d6:a3:94:a7:35:
eb:dc:61:e1:22:54:25:65:e9:95:20:28:58:5e:98:
77:7b:c9:c9:f4:d8:69:0d:ac:60:4b:fc:9d:0b:e6:
01:b8:59:ce:2e:4a:73:9b:3c:20:b3:da:f6:42:33:
de:15:6e:d2:7b:a4:33:19:87:41:25:db:ff:10:0a:
ab:9e:97:58:52:4b:10:fc:95:14:f3:d6:34:77:bf:
ee:b9:3f:aa:5c:ba:fc:25:89:22:03:4c:f3:dc:b5:
59:48:0b:11:a4:0c:f3:12:0c:26:b2:4f:5d:48:79:
25:34:bd:4b:61:65:1a:b3:52:84:44:8f:b6:03:ad:
27:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:DF:81:75:1E:68:08:DE:6A:91:E0:7E:99:9A:74:12:52:3C:01:83
X509v3 Authority Key Identifier:
keyid:7D:04:C2:5C:2F:8B:47:E5:DA:F5:2D:1C:4C:5A:50:99:9D:D0:A0:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQTCXC-LR-Xa9S0cTFpQmZ3QoKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/971cc4-54d5-4c28-a1c3-e63e94cba09f/1/F9-BdR5oCN5qkeB-mZp0ElI8AYM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/971cc4-54d5-4c28-a1c3-e63e94cba09f/1/fQTCXC-LR-Xa9S0cTFpQmZ3QoKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:ff00:b00b::/48
Signature Algorithm: sha256WithRSAEncryption
5c:76:2d:3b:72:b8:14:44:34:cf:82:56:7c:82:a8:6e:74:7b:
df:95:3d:ca:99:aa:d6:c4:77:fe:1f:41:bb:de:af:7b:cc:7a:
27:1f:a7:5b:0c:41:ac:6b:e5:f5:61:bf:70:50:4e:d7:34:90:
d4:82:23:83:6d:a7:4e:c1:61:cd:dd:15:de:79:24:6e:f8:00:
6f:ad:c0:78:89:2c:8f:6c:86:77:91:f3:16:bf:63:2d:76:e2:
3c:18:9d:00:35:e3:ab:00:0f:d8:90:3b:e3:cc:b3:93:c3:82:
a4:76:60:54:36:f6:7b:72:42:90:df:dd:d9:12:eb:f0:69:22:
ea:4c:37:15:8c:f1:d1:4d:6b:f7:06:ba:23:0b:35:c4:84:58:
ac:f1:aa:32:9e:d1:3e:14:3a:db:0a:0a:ca:a0:bf:86:84:be:
ca:62:1a:9e:d9:17:b3:93:e8:bd:33:44:56:f0:3b:74:fb:d3:
0b:df:f5:df:cd:15:18:d4:89:91:fd:1e:e1:bd:3b:64:81:81:
84:b6:b5:8e:8c:70:13:e8:2e:e6:9e:e1:a7:58:5d:2f:a2:e0:
d9:12:34:8b:2d:26:7e:d1:5e:ba:97:ce:ac:ee:01:7a:ed:25:
63:1c:f1:0c:64:c5:53:a9:36:91:59:e7:0a:57:9c:1d:68:1b:
6c:d7:b2:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:05:02 2025 by rpki-client