Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/ZQjMCiMukWRaJkC3hsbYKgzuyJk.roa
File: ZQjMCiMukWRaJkC3hsbYKgzuyJk.roa (raw, json)
Hash identifier: TJaZ4znSa6P0GCPdp93sNVDNtaQgZp75Z1gph/9Mfy4=
Subject key identifier: 65:08:CC:0A:23:2E:91:64:5A:26:40:B7:86:C6:D8:2A:0C:EE:C8:99
Certificate issuer: /CN=76a75826e991225a429ff8a1e7ffdc80466420df
Certificate serial: 09922B66
Authority key identifier: 76:A7:58:26:E9:91:22:5A:42:9F:F8:A1:E7:FF:DC:80:46:64:20:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dqdYJumRIlpCn_ih5__cgEZkIN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/ZQjMCiMukWRaJkC3hsbYKgzuyJk.roa
Signing time: Sat 01 Jan 2022 04:03:24 +0000
ROA not before: Sat 01 Jan 2022 04:03:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199578
IP address blocks: 2a03:db80:3824::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 160574310 (0x9922b66)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76a75826e991225a429ff8a1e7ffdc80466420df
Validity
Not Before: Jan 1 04:03:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6508cc0a232e91645a2640b786c6d82a0ceec899
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:70:ef:d3:f9:0f:1b:6d:50:fe:a0:2a:3b:d4:
72:06:c9:a5:40:d2:ec:27:0b:99:79:49:3f:af:c0:
ee:c7:53:2f:aa:2f:ab:e6:1d:1a:e6:3c:77:72:4f:
50:23:e6:05:7c:60:d7:9e:04:cc:6b:6a:16:3e:93:
45:70:7f:47:04:f9:59:40:4e:c3:42:f7:ae:85:b4:
e3:6d:a0:8f:6b:a2:1f:14:e5:0c:65:95:a1:eb:a8:
7c:b7:fb:27:3e:00:44:b3:96:0c:c3:ff:a6:4e:29:
22:f6:da:4d:b0:19:cc:7e:7f:c0:d0:a2:b9:12:49:
ee:0b:3f:cd:a4:ae:1c:21:52:1f:cb:c2:c2:4b:89:
39:5a:fd:91:20:b3:66:af:7c:43:c4:03:17:14:bc:
e0:b3:42:3a:4b:4f:37:8e:ca:44:6f:8e:c2:02:d4:
26:08:19:54:85:14:61:5a:2f:a1:41:c9:c4:e2:b9:
9d:5f:66:bd:03:51:ee:aa:b1:da:41:71:aa:60:87:
70:5b:f8:56:b2:b1:d3:cd:66:29:2c:63:b7:ff:90:
29:96:dd:f6:96:04:9f:6f:d0:b7:f0:9c:4d:d5:a1:
95:2b:ca:9c:30:b0:d4:48:d9:a8:4b:53:a3:74:21:
2e:3e:e0:ea:9e:1e:48:fe:b7:a2:7f:f2:06:2f:fe:
ac:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:08:CC:0A:23:2E:91:64:5A:26:40:B7:86:C6:D8:2A:0C:EE:C8:99
X509v3 Authority Key Identifier:
keyid:76:A7:58:26:E9:91:22:5A:42:9F:F8:A1:E7:FF:DC:80:46:64:20:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dqdYJumRIlpCn_ih5__cgEZkIN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/ZQjMCiMukWRaJkC3hsbYKgzuyJk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/dqdYJumRIlpCn_ih5__cgEZkIN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:db80:3824::/48
Signature Algorithm: sha256WithRSAEncryption
47:80:12:c8:aa:d9:8a:79:6f:89:f0:15:3b:1d:72:23:77:65:
11:9c:f8:f1:d8:44:6a:49:16:58:dc:cc:df:bc:2f:fc:1b:0d:
e0:1b:f7:48:58:a4:3d:7f:2f:3e:a8:f8:19:2a:b9:e6:13:c8:
52:8b:a7:ac:58:c1:35:33:4d:de:74:4b:19:bd:fe:14:c2:cb:
27:75:3c:7e:a9:0d:69:15:d1:f9:bb:23:c5:c1:b3:ea:c7:a5:
c8:a0:cd:ce:8c:69:ad:01:c4:f8:8c:2a:bc:80:c4:64:80:98:
bf:83:dc:b7:d2:4b:f5:7e:d2:00:16:c4:b8:a0:0c:15:3c:06:
d5:e9:32:cb:b8:f0:7e:f7:64:f9:6f:53:38:94:e6:24:4c:5f:
05:9c:be:8c:82:cc:dd:a3:48:4b:14:70:ca:d7:ed:56:6d:39:
c4:d0:f8:08:53:8f:f6:99:5e:f4:4e:1d:1b:f5:09:75:0e:93:
22:48:d7:92:06:c6:d0:4a:1f:fd:5d:3d:30:3b:99:6b:b6:10:
0d:e2:c3:0f:45:01:1e:ca:be:6c:19:8e:1d:20:4a:f6:80:73:
9e:21:b3:50:4e:9a:62:80:21:7a:ac:11:3b:cd:8c:ea:26:b5:
bb:ba:92:f8:88:d7:ec:b9:a4:4f:9f:a2:14:ff:4f:73:e6:36:
0e:51:8f:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:35:34 2025 by rpki-client