Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/3IK6hshJ21NjImxX4D8kKHyVzcU.roa
File: 3IK6hshJ21NjImxX4D8kKHyVzcU.roa (raw, json)
Hash identifier: iXrP0celm5rgKf2UuZSmuDu+HefgBbUdpn17hq9lfGU=
Subject key identifier: DC:82:BA:86:C8:49:DB:53:63:22:6C:57:E0:3F:24:28:7C:95:CD:C5
Certificate issuer: /CN=54914541fd1b95e7c0afc875fbef78794f55386b
Certificate serial: 18F0F162
Authority key identifier: 54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/3IK6hshJ21NjImxX4D8kKHyVzcU.roa
Signing time: Sat 30 Apr 2022 09:56:14 +0000
ROA not before: Sat 30 Apr 2022 09:56:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 149795
IP address blocks: 2a06:a005:6e0::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 418443618 (0x18f0f162)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54914541fd1b95e7c0afc875fbef78794f55386b
Validity
Not Before: Apr 30 09:56:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dc82ba86c849db5363226c57e03f24287c95cdc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:74:28:45:53:56:64:65:35:41:80:e7:2f:9f:
63:72:27:09:47:71:d3:bc:0e:f3:6d:7d:a8:d6:73:
c9:78:ea:6d:d1:6c:5c:2f:35:06:90:2a:14:8f:3f:
82:90:c1:05:e7:d5:a9:6f:3f:9b:33:2c:62:92:0b:
21:ed:d2:7c:2e:3a:58:b6:4e:09:8b:d0:53:d9:35:
86:17:ff:d8:2a:fb:89:00:2f:0d:88:6a:d8:7a:ae:
fd:73:41:b1:26:22:9c:38:98:16:e3:c5:bb:54:5a:
ca:38:b3:38:2f:04:44:fe:66:27:d9:95:84:c0:b6:
97:91:e7:95:95:0d:1c:7b:d9:a9:ac:31:06:8f:99:
ed:2e:e4:99:9a:30:4d:16:7f:30:cc:0e:2b:be:02:
3c:81:bf:11:c9:12:fa:6f:c4:c7:33:1f:16:6e:1d:
b6:bf:5f:3a:42:8f:bf:b2:a2:72:7e:3f:bb:39:60:
55:99:9b:13:da:e9:2b:9d:e5:82:86:e7:d9:66:30:
6e:ce:8a:36:30:88:71:32:77:b6:a1:e6:16:98:9d:
d3:4d:e7:73:2a:ec:ab:3c:84:15:39:ea:db:ce:f8:
38:9d:30:cf:15:96:13:c3:f5:32:1e:f5:5a:fc:49:
36:95:74:be:59:b9:39:64:26:6a:a4:a1:91:f5:5c:
42:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:82:BA:86:C8:49:DB:53:63:22:6C:57:E0:3F:24:28:7C:95:CD:C5
X509v3 Authority Key Identifier:
keyid:54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/3IK6hshJ21NjImxX4D8kKHyVzcU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/VJFFQf0blefAr8h1--94eU9VOGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:6e0::/44
Signature Algorithm: sha256WithRSAEncryption
7c:8a:5c:58:4c:c4:9e:37:ca:d1:8a:98:39:eb:7b:b9:86:df:
46:67:6c:53:2c:17:c3:d4:16:e9:0f:14:5f:43:fe:57:bd:0f:
23:84:79:77:66:18:52:c5:bf:f0:20:b7:d5:a4:e5:15:f0:c3:
e1:b1:bb:79:6f:bb:3d:42:92:b6:ec:5a:d2:98:d2:2d:70:33:
d3:ab:9a:99:17:15:a2:c1:2b:71:0a:90:b7:06:43:c7:c2:f2:
37:61:6e:14:5b:34:74:51:d5:e7:3d:26:68:d5:2b:ec:30:e5:
44:11:c3:3a:ec:21:ed:f6:1f:3d:0c:b5:4d:58:29:77:93:2d:
ae:b8:1f:2a:15:2e:eb:11:c9:9c:df:d7:4c:39:a8:84:23:a8:
a6:c8:3a:bb:7b:96:56:da:6d:41:8f:86:8e:75:68:8a:d2:ac:
58:9a:bc:0c:51:df:71:26:ed:45:c2:a8:c5:ae:d5:b9:ed:79:
f2:47:b8:bc:29:8e:7a:02:92:71:dd:6c:e1:f4:11:16:bc:0d:
ac:c5:e6:ec:21:16:94:54:f4:6b:c0:6e:63:54:55:b9:7e:31:
0f:e9:97:c6:f1:c6:86:24:cf:ba:13:aa:c7:34:f6:34:eb:bc:
07:61:ba:93:61:a7:5a:f2:5b:af:03:eb:ba:2b:a1:42:79:31:
63:75:78:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 13:12:03 2025 by rpki-client