Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/daf25c-1b49-4719-9203-3254e4d7122e/1/p4CZRIMgYHIQVgtn03-hWytwFO8.roa
File: p4CZRIMgYHIQVgtn03-hWytwFO8.roa (raw, json)
Hash identifier: Lce/JHDkDMmB8dEcmFEPvqwtqc5RO9iHBH0BHmCsOO8=
Subject key identifier: A7:80:99:44:83:20:60:72:10:56:0B:67:D3:7F:A1:5B:2B:70:14:EF
Certificate issuer: /CN=bf174a5833bde6aa7824c34099762d00978857ff
Certificate serial: 3581B18B
Authority key identifier: BF:17:4A:58:33:BD:E6:AA:78:24:C3:40:99:76:2D:00:97:88:57:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vxdKWDO95qp4JMNAmXYtAJeIV_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/daf25c-1b49-4719-9203-3254e4d7122e/1/p4CZRIMgYHIQVgtn03-hWytwFO8.roa
Signing time: Sat 01 Jan 2022 11:56:08 +0000
ROA not before: Sat 01 Jan 2022 11:56:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15776
IP address blocks: 2001:15f8:1000::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 897692043 (0x3581b18b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf174a5833bde6aa7824c34099762d00978857ff
Validity
Not Before: Jan 1 11:56:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a78099448320607210560b67d37fa15b2b7014ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:0c:02:af:ad:39:d0:c8:f2:5a:2f:05:ba:2f:
af:32:77:3c:67:7d:ec:fc:fd:8b:89:a1:31:04:8a:
28:a4:09:2f:1c:26:8d:88:1c:d8:43:1a:e4:e7:30:
55:f3:b9:b4:31:e3:b1:24:d8:b8:6c:26:11:3f:44:
e1:b7:a8:af:a5:8d:8e:ce:e0:0a:f6:ab:a6:a5:ee:
66:9f:33:c2:7d:4f:84:69:9e:b0:d5:2a:59:54:22:
bc:4b:b7:96:83:89:ba:59:d0:a6:f2:1b:a2:c8:2c:
b8:a7:f3:89:7d:54:fa:9d:58:48:fc:d6:10:58:8d:
04:e7:03:45:3d:9c:d7:fd:5e:0a:63:4b:bd:35:bf:
85:5d:f3:93:04:df:65:e6:ae:4c:70:4a:ab:86:e5:
98:fc:ca:e1:7f:32:c9:bf:fd:ba:6c:bc:70:da:12:
30:95:4d:e4:af:a3:fd:13:8e:61:e9:dc:ec:1c:97:
96:21:c7:88:30:2f:45:98:fa:79:b4:06:a0:b7:e5:
36:60:44:c8:70:90:92:7d:3a:08:0d:f5:09:25:b6:
ef:84:53:55:55:ef:fc:55:13:8a:86:86:f7:b8:9e:
6f:1c:7f:77:04:44:9e:f3:2f:88:e4:00:ae:1a:7a:
f6:2d:9c:b4:ba:c9:75:be:05:1c:f6:aa:1d:e0:88:
a0:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:80:99:44:83:20:60:72:10:56:0B:67:D3:7F:A1:5B:2B:70:14:EF
X509v3 Authority Key Identifier:
keyid:BF:17:4A:58:33:BD:E6:AA:78:24:C3:40:99:76:2D:00:97:88:57:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vxdKWDO95qp4JMNAmXYtAJeIV_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/daf25c-1b49-4719-9203-3254e4d7122e/1/p4CZRIMgYHIQVgtn03-hWytwFO8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/daf25c-1b49-4719-9203-3254e4d7122e/1/vxdKWDO95qp4JMNAmXYtAJeIV_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:15f8:1000::/40
Signature Algorithm: sha256WithRSAEncryption
3a:86:bb:9f:b2:61:e1:fc:37:63:c8:d2:3f:1b:2e:73:24:05:
06:6f:48:2f:dd:e0:80:96:99:39:e3:8d:0f:e2:82:bf:d2:5d:
6a:54:f4:cf:b7:dc:be:85:98:ec:c8:47:62:c8:7c:47:e4:31:
e1:99:e3:3e:71:f4:03:33:d4:25:b3:9a:0f:fd:bf:83:69:33:
0f:72:3a:35:4d:fd:1d:93:33:89:1f:27:9f:48:a1:ac:da:99:
41:19:a9:bd:2f:e7:8f:39:03:8c:6c:2a:04:ee:8d:cf:f6:8a:
bb:c7:a4:7b:43:02:b0:7b:99:ce:16:7a:64:ad:65:1e:97:ad:
a6:1a:a4:02:f2:fe:3a:80:20:26:32:2f:30:d6:4d:73:6d:ab:
be:21:2a:ce:e5:a2:f6:4b:6b:c1:47:98:98:98:bc:1c:64:b3:
a9:4b:cd:b0:b7:41:30:8c:9c:b9:c1:47:17:af:a2:4c:ff:0e:
e8:a7:f0:78:18:62:23:83:9c:43:ea:08:d1:ba:e0:61:6d:ec:
7d:36:7a:10:9c:9e:6a:68:10:7c:8a:fc:26:ea:82:47:6d:7b:
68:9d:29:f6:ab:e0:af:d5:15:41:3f:3d:a7:80:73:ea:d0:5b:
ba:ef:33:5b:9f:87:2d:18:96:ca:ba:44:db:84:bd:16:fd:a2:
5c:ec:fa:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:52:48 2025 by rpki-client