Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/AAhoe2jKGP5lRMIVJ_6ndjmanKk.roa
File: AAhoe2jKGP5lRMIVJ_6ndjmanKk.roa (raw, json)
Hash identifier: jQz4fxIWG+vCKwYTbVJkeTMKudx9IaDWGLI0N9i8rjQ=
Subject key identifier: 00:08:68:7B:68:CA:18:FE:65:44:C2:15:27:FE:A7:76:39:9A:9C:A9
Certificate issuer: /CN=54914541fd1b95e7c0afc875fbef78794f55386b
Certificate serial: 018429B5D105CC003202DE7EC656F6FA3D6E
Authority key identifier: 54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/AAhoe2jKGP5lRMIVJ_6ndjmanKk.roa
Signing time: Sun 30 Oct 2022 16:24:52 +0000
ROA not before: Sun 30 Oct 2022 16:24:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 150249
IP address blocks: 2a06:a005:21a0::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:29:b5:d1:05:cc:00:32:02:de:7e:c6:56:f6:fa:3d:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54914541fd1b95e7c0afc875fbef78794f55386b
Validity
Not Before: Oct 30 16:24:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0008687b68ca18fe6544c21527fea776399a9ca9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:31:29:cc:8d:0d:d5:d8:38:3a:e4:bb:6a:f1:
1f:0f:a2:95:15:5c:60:91:7e:75:9a:78:aa:ee:e8:
de:89:98:fa:d7:44:b2:dc:32:81:27:04:58:9c:cb:
c3:fe:b5:5f:8a:80:ae:4e:e9:fe:8e:7e:38:50:b2:
6c:ce:09:97:e3:57:a2:e7:4a:36:34:ed:ab:8a:55:
4b:bd:58:dd:11:11:59:cb:d2:10:f6:83:35:ef:bf:
21:26:ea:9a:7d:ef:56:3d:95:ef:0e:f8:b6:ff:4a:
83:d5:6c:0a:b3:4c:dc:7a:56:df:42:7c:1a:3f:0d:
44:88:3c:a4:dc:55:b4:e2:17:5d:25:54:b7:2a:24:
a2:17:9a:f8:27:b6:01:bf:eb:cb:a6:b3:86:61:18:
41:cd:aa:0d:ff:a4:95:9e:8c:42:71:05:4f:55:a0:
40:01:55:0f:53:77:46:65:bf:08:42:03:92:e1:88:
28:73:a2:36:ee:8c:71:42:1e:dd:26:35:53:3a:ab:
8f:c1:58:dd:37:0b:2b:1c:11:ac:ba:ab:fc:ec:a7:
9a:a9:b7:6c:31:88:bc:b3:16:2a:f6:40:2d:5e:3e:
39:cf:7e:94:bb:2d:40:23:cd:77:34:63:1c:83:cb:
46:07:0f:12:09:41:57:ba:11:bc:80:71:6d:41:ca:
2f:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:08:68:7B:68:CA:18:FE:65:44:C2:15:27:FE:A7:76:39:9A:9C:A9
X509v3 Authority Key Identifier:
keyid:54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/AAhoe2jKGP5lRMIVJ_6ndjmanKk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/VJFFQf0blefAr8h1--94eU9VOGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:21a0::/44
Signature Algorithm: sha256WithRSAEncryption
0b:29:f3:23:10:ed:be:54:c9:e5:fc:4b:dd:e5:8a:0f:ad:c5:
42:24:e7:76:55:9e:12:fc:61:1b:74:5e:67:ca:0f:9e:87:4f:
4d:57:5b:74:e7:02:84:4a:54:a4:fe:f4:c6:15:79:8c:20:43:
67:4d:46:4e:9f:79:ac:66:14:cd:77:1a:e8:e5:df:bf:05:49:
de:3b:bc:a8:42:9d:d0:f3:37:0e:9d:1c:b2:6d:cc:82:32:e1:
72:53:01:6c:dc:bc:1b:d9:e0:f3:42:ec:44:45:d7:f6:d9:88:
29:6b:9b:d3:f7:72:45:62:8a:31:bd:06:22:29:17:62:5a:24:
c5:97:40:ec:a9:0c:93:c8:a6:3c:05:9d:15:5c:5f:2b:6c:4b:
17:e7:9f:43:c1:40:57:bb:21:8c:a9:8f:ad:06:12:39:60:d8:
48:67:a6:2b:cb:bb:28:80:d4:21:a7:9c:91:df:83:3d:f6:40:
e1:79:05:f6:c2:d7:0c:5b:3b:59:bf:5f:b4:48:d1:69:ef:4f:
a4:06:18:a9:d1:fd:bb:28:d6:5b:3d:e0:56:59:41:dd:c7:52:
29:bf:ab:87:75:a1:d1:e0:88:77:c5:d1:87:fd:69:10:b8:35:
a6:09:07:e5:09:c5:14:a8:cc:5a:03:b0:94:fb:d1:07:e5:d6:
0b:07:73:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 10:03:33 2025 by rpki-client