Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/I9AwvOdqnkobVtV-lnTx1XO5uMc.roa
File: I9AwvOdqnkobVtV-lnTx1XO5uMc.roa (raw, json)
Hash identifier: tiqC/7s5RFBK4pG/wkzqndY1CPmjfDL/wP8tESp13Eg=
Subject key identifier: 23:D0:30:BC:E7:6A:9E:4A:1B:56:D5:7E:96:74:F1:D5:73:B9:B8:C7
Certificate issuer: /CN=54914541fd1b95e7c0afc875fbef78794f55386b
Certificate serial: 17961534
Authority key identifier: 54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/I9AwvOdqnkobVtV-lnTx1XO5uMc.roa
Signing time: Thu 31 Mar 2022 18:14:33 +0000
ROA not before: Thu 31 Mar 2022 18:14:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 141776
IP address blocks: 2a06:a005:170::/44 maxlen: 48
2a06:a005:340::/44 maxlen: 48
2a06:a005:100::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 395711796 (0x17961534)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54914541fd1b95e7c0afc875fbef78794f55386b
Validity
Not Before: Mar 31 18:14:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=23d030bce76a9e4a1b56d57e9674f1d573b9b8c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:df:00:7a:85:4f:3d:46:10:f3:f0:0a:ce:f1:
30:6a:a9:70:04:d8:25:fd:e6:e6:f1:67:07:b0:bc:
bc:da:5d:6b:de:64:05:c9:5c:fc:17:e5:4d:68:7c:
86:7d:ed:4f:6b:30:7a:66:cd:6d:3a:b8:af:88:e1:
f5:cf:4f:df:8c:cd:b5:89:ce:b3:87:fe:d5:eb:b6:
89:15:f2:50:fb:f4:a8:3f:00:d3:d4:54:66:c5:c3:
eb:15:9a:09:2e:17:60:ac:26:8e:31:ea:7a:fe:fa:
35:d8:ff:08:40:f6:e6:7b:6b:8f:75:fe:9e:23:b3:
88:d6:47:6e:fc:21:bf:db:03:7e:3a:da:57:77:56:
be:d1:ba:80:d3:1b:43:30:7d:5c:64:d1:9b:66:21:
ce:4d:e4:67:fd:58:c4:5b:d9:6d:5b:3d:f8:61:e5:
24:96:c3:33:78:1b:1f:87:d7:9d:7f:7d:17:47:6f:
b3:95:56:2f:85:32:e5:ff:a8:79:1f:20:f8:38:86:
84:8e:8c:60:37:32:42:3a:79:0a:62:f7:e2:32:73:
37:4d:26:b1:58:bc:bf:60:fa:b8:24:32:d1:d8:02:
7e:dd:44:5a:36:1d:99:92:b0:0e:24:76:3f:c9:b5:
fc:b8:54:a3:59:10:8c:d6:90:cc:2a:1d:a8:e5:6f:
15:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:D0:30:BC:E7:6A:9E:4A:1B:56:D5:7E:96:74:F1:D5:73:B9:B8:C7
X509v3 Authority Key Identifier:
keyid:54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/I9AwvOdqnkobVtV-lnTx1XO5uMc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/VJFFQf0blefAr8h1--94eU9VOGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:100::/44
2a06:a005:170::/44
2a06:a005:340::/44
Signature Algorithm: sha256WithRSAEncryption
66:4d:aa:6f:24:1a:78:bc:83:bd:ed:fd:b5:cf:f5:f0:65:3d:
cd:fd:d9:af:78:a2:38:a0:fc:42:83:72:ef:83:cb:44:dc:d1:
0c:e4:9f:69:48:b5:d3:fc:09:ca:d7:e4:a3:cb:d8:62:73:66:
09:f7:ed:e0:9c:2a:e2:d8:9f:d6:8a:a8:8a:50:d7:0d:2a:ab:
9d:ed:1d:f6:33:12:7c:c5:77:21:63:87:5d:0f:5f:66:db:bd:
9a:a9:cb:53:fb:2a:2b:e0:7f:14:5a:e3:85:ce:ad:9c:5e:2d:
2a:ac:8a:a3:f3:87:ad:3c:37:c7:3c:2a:35:10:fe:8f:94:9b:
19:ca:b4:92:70:65:98:ae:15:0c:03:a1:7c:8f:f9:83:1a:19:
f9:99:19:13:be:45:f8:6e:a7:b2:36:1a:84:69:24:91:0d:3c:
0b:2c:69:e1:3e:81:07:7c:6f:d0:32:e8:60:29:50:5b:cf:d7:
ab:77:97:05:fb:0b:d3:4c:32:d8:e9:e5:7a:8d:a2:33:24:f2:
82:36:c6:29:a7:d8:d8:d3:2f:56:5f:2f:1c:dc:d0:17:39:f1:
5b:f0:76:1b:ce:b4:16:b4:f1:8e:15:ce:3e:4c:0a:51:d1:68:
52:41:c4:1a:b8:d9:d2:94:34:ae:5f:72:89:3d:a5:e0:9f:14:
9e:38:ab:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 16:05:19 2025 by rpki-client