Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/BWm3yqYF15J2yMnsENnRi5xAVFc.roa
File: BWm3yqYF15J2yMnsENnRi5xAVFc.roa (raw, json)
Hash identifier: cVdiPDwDQMphHalvIbwCpreGXhZaS5uFcqNWGchvP/8=
Subject key identifier: 05:69:B7:CA:A6:05:D7:92:76:C8:C9:EC:10:D9:D1:8B:9C:40:54:57
Certificate issuer: /CN=54914541fd1b95e7c0afc875fbef78794f55386b
Certificate serial: 1AC7B941
Authority key identifier: 54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/BWm3yqYF15J2yMnsENnRi5xAVFc.roa
Signing time: Sat 11 Jun 2022 21:39:27 +0000
ROA not before: Sat 11 Jun 2022 21:39:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211144
IP address blocks: 2a06:a005:5b4::/48 maxlen: 48
2a06:a005:431::/48 maxlen: 48
2a06:a005:a07::/48 maxlen: 48
2a06:a005:9f0::/44 maxlen: 48
2a06:a005:440::/44 maxlen: 48
2a06:a005:18::/48 maxlen: 48
2a06:a005:2d0::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 449296705 (0x1ac7b941)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54914541fd1b95e7c0afc875fbef78794f55386b
Validity
Not Before: Jun 11 21:39:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0569b7caa605d79276c8c9ec10d9d18b9c405457
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:0e:f7:4a:e4:52:c8:dc:ad:09:59:28:14:29:
e6:15:11:52:a6:82:cc:8c:42:d1:b6:9b:c6:2e:26:
44:d3:6f:16:01:fa:9f:ef:39:b0:6c:4b:4e:63:8b:
23:f9:66:23:c2:7e:93:78:0d:52:b0:db:16:40:ee:
9b:e6:2e:6a:6b:db:55:e8:b5:9a:2f:a9:e0:f9:29:
60:8c:45:eb:81:3d:76:a0:5c:e5:29:21:4c:a2:30:
fa:3f:fe:04:cf:e2:e0:25:8a:d0:4a:b8:38:e4:a1:
b3:5f:e3:6b:87:c9:00:2a:1f:9a:44:b2:b1:41:a6:
f2:46:03:65:4a:61:ca:ee:7f:da:9e:3e:f0:2d:5d:
1b:4b:36:83:2f:95:a0:39:19:36:48:0e:28:b4:47:
67:bc:fc:0b:f0:aa:32:05:16:1b:c2:25:b7:34:19:
d2:80:42:54:03:24:93:e8:44:b3:4d:4d:79:b8:15:
42:40:63:3d:e3:4d:25:73:f6:67:b0:5a:30:da:29:
71:50:b5:68:cb:60:04:d3:39:5e:eb:97:3a:91:81:
95:86:ac:40:91:ab:3e:6b:9c:fd:94:d5:0c:e7:67:
2f:f2:2e:f9:32:d3:07:8c:cb:dd:49:06:58:d8:d3:
5d:e8:a2:d7:9f:83:50:22:89:2a:60:e4:97:30:28:
52:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:69:B7:CA:A6:05:D7:92:76:C8:C9:EC:10:D9:D1:8B:9C:40:54:57
X509v3 Authority Key Identifier:
keyid:54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/BWm3yqYF15J2yMnsENnRi5xAVFc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/VJFFQf0blefAr8h1--94eU9VOGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:18::/48
2a06:a005:2d0::/48
2a06:a005:431::/48
2a06:a005:440::/44
2a06:a005:5b4::/48
2a06:a005:9f0::/44
2a06:a005:a07::/48
Signature Algorithm: sha256WithRSAEncryption
6b:d6:f3:b4:f3:fe:38:77:2b:43:df:1a:07:ce:73:c9:5b:22:
ce:b7:3f:28:12:fb:9d:06:fb:f7:16:65:31:21:27:bf:3a:09:
92:f4:e5:24:15:3f:53:e4:f3:b3:69:71:cb:2c:ab:92:5c:12:
de:8f:9b:ad:e8:04:00:a3:a0:eb:bc:99:e2:59:e3:39:11:77:
31:29:d9:70:49:2c:26:ac:67:74:04:d4:4f:f9:c7:b6:ca:13:
4b:f8:fa:b1:cb:4d:14:d9:84:a0:93:ff:36:56:e7:19:3e:eb:
ce:34:12:fc:61:0c:83:89:1e:5f:1d:ea:b1:e9:c2:ce:81:72:
69:64:6b:fc:19:36:fd:aa:7b:a0:8c:13:01:9b:d7:10:d5:0f:
eb:8d:1b:7b:15:90:72:53:67:be:a0:c5:45:71:4e:a1:fa:79:
0d:e2:44:57:56:0b:12:b5:6f:2a:42:a8:6e:ec:9c:ff:f1:c7:
34:22:45:5d:04:07:06:69:f4:11:cd:30:27:cf:35:26:f7:12:
ae:15:82:1c:94:97:8a:59:82:bc:0c:cf:49:3a:b5:9d:8f:a7:
73:a3:6c:7a:f0:cf:82:c5:a8:ae:41:e8:81:07:bf:a7:50:ef:
19:ad:4d:a3:15:de:a7:4a:d5:25:29:01:10:3a:fd:6d:f1:ba:
74:5a:72:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 12:03:27 2025 by rpki-client