Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/2zIiTerAXL4vLdqbo5amI5j-FQM.roa
File: 2zIiTerAXL4vLdqbo5amI5j-FQM.roa (raw, json)
Hash identifier: HxMJfm0/E1dx9jDaVg9wPPQ7QvAXPf1wmkwUTigdNbY=
Subject key identifier: DB:32:22:4D:EA:C0:5C:BE:2F:2D:DA:9B:A3:96:A6:23:98:FE:15:03
Certificate issuer: /CN=54914541fd1b95e7c0afc875fbef78794f55386b
Certificate serial: 183D8E22
Authority key identifier: 54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/2zIiTerAXL4vLdqbo5amI5j-FQM.roa
Signing time: Sun 17 Apr 2022 14:52:46 +0000
ROA not before: Sun 17 Apr 2022 14:52:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209933
IP address blocks: 2a06:a005:4d9::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 406687266 (0x183d8e22)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54914541fd1b95e7c0afc875fbef78794f55386b
Validity
Not Before: Apr 17 14:52:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=db32224deac05cbe2f2dda9ba396a62398fe1503
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:64:b7:2e:ff:df:1e:29:90:31:03:78:3e:84:
6e:2b:36:24:3f:2b:8b:ef:75:08:8b:d1:ed:06:be:
7b:bc:03:d8:42:c7:2f:c4:c1:96:b2:e5:e8:60:d2:
35:10:e6:6e:61:d5:5a:45:ea:af:90:f8:bf:42:b2:
d8:90:30:d4:fb:9a:06:98:f2:dc:c1:56:a1:c5:3d:
65:49:26:b5:83:9d:42:12:47:de:51:18:af:89:b3:
12:11:02:5f:40:41:43:dd:f6:1a:d5:b0:c2:01:92:
7c:0e:06:74:d3:97:ab:ec:c3:03:27:42:b5:f6:bc:
f9:9c:df:04:db:6d:c9:51:56:15:d0:f4:da:ee:75:
a3:f2:8a:92:78:7a:a0:51:e5:a9:82:2b:20:c5:68:
ec:93:f4:76:85:a9:fa:74:0a:12:fa:4e:dc:92:17:
aa:f9:d1:69:2e:63:64:f5:5a:64:59:dc:58:14:d2:
73:aa:8e:db:61:72:89:b8:cd:fe:22:65:7a:58:f4:
30:f9:51:08:6b:70:3f:20:15:87:58:e0:59:e4:34:
ab:c3:37:a9:4e:43:35:68:e4:64:db:2c:0c:5f:21:
1c:0f:c2:4a:1d:15:9f:da:09:9a:66:f3:76:a8:73:
7a:b7:dd:af:a5:de:2b:45:66:1c:3c:a6:a6:01:a5:
3a:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:32:22:4D:EA:C0:5C:BE:2F:2D:DA:9B:A3:96:A6:23:98:FE:15:03
X509v3 Authority Key Identifier:
keyid:54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/2zIiTerAXL4vLdqbo5amI5j-FQM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/VJFFQf0blefAr8h1--94eU9VOGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:4d9::/48
Signature Algorithm: sha256WithRSAEncryption
91:a7:68:b1:c2:8c:af:fc:16:32:26:fb:f2:33:85:7e:d3:67:
31:56:bd:c2:a8:49:97:82:39:44:ab:36:9d:20:b9:6f:be:7b:
cd:90:50:a9:d0:2b:44:4b:50:b5:89:c7:21:f8:ba:77:ba:05:
61:f8:6a:01:5f:fa:15:8c:e4:07:fa:02:b0:58:41:bb:e1:40:
90:1a:8c:2b:d1:e0:f2:d7:60:b0:00:10:91:0e:d1:01:d6:c8:
c7:05:35:80:1e:ab:1c:f4:25:ca:dd:03:5e:49:c4:b1:95:b4:
ed:55:78:33:fa:c7:b9:b5:eb:b0:3f:70:67:ec:7e:54:05:04:
0a:8e:99:1a:03:62:10:d1:78:7f:90:10:f1:70:a8:7c:1e:ba:
d5:70:e0:42:07:ed:4e:04:6d:b6:96:d3:95:ff:54:cd:02:87:
2c:77:dd:cb:32:d9:61:11:cb:ba:30:7f:00:65:8b:d2:8f:93:
89:d1:80:c2:03:93:75:a2:11:3f:45:bb:18:af:7c:07:92:33:
81:e3:ee:e3:98:73:eb:28:a5:19:38:91:03:33:a3:83:9e:48:
e0:06:25:36:dc:3e:5d:af:89:59:c7:ef:01:d1:4d:1b:5d:4f:
d9:68:c3:41:31:05:2f:05:f0:61:eb:7a:55:e7:62:1b:4d:57:
25:13:a6:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 14:27:21 2025 by rpki-client