Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/P4iZfjRexK3OVYcyrYSw6QqNC58.roa
File: P4iZfjRexK3OVYcyrYSw6QqNC58.roa (raw, json)
Hash identifier: D1QRCeu8Xh4zCeNNzaki5tFLnWYSgfzwPBR+06Fl70w=
Subject key identifier: 3F:88:99:7E:34:5E:C4:AD:CE:55:87:32:AD:84:B0:E9:0A:8D:0B:9F
Certificate issuer: /CN=54914541fd1b95e7c0afc875fbef78794f55386b
Certificate serial: 1A89EEB3
Authority key identifier: 54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/P4iZfjRexK3OVYcyrYSw6QqNC58.roa
Signing time: Fri 03 Jun 2022 01:41:20 +0000
ROA not before: Fri 03 Jun 2022 01:41:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203857
IP address blocks: 2a06:a005:5ec::/48 maxlen: 48
2a06:a005:851::/48 maxlen: 48
2a06:a005:11::/48 maxlen: 48
2a06:a005:a02::/48 maxlen: 48
2a06:a005:856::/48 maxlen: 48
2a06:a005:4d6::/48 maxlen: 48
2a06:a005:5e9::/48 maxlen: 48
2a06:a005:2df::/48 maxlen: 48
2a06:a005:5ee::/48 maxlen: 48
2a06:a005:4d3::/48 maxlen: 48
2a06:a005:a01::/48 maxlen: 48
2a06:a005:4d2::/48 maxlen: 48
2a06:a005:432::/48 maxlen: 48
2a06:a005:12::/48 maxlen: 48
2a06:a005:4d7::/48 maxlen: 48
2a06:a005:10::/48 maxlen: 48
2a06:a005:850::/48 maxlen: 48
2a06:a005:4d5::/48 maxlen: 48
2a06:a005:5eb::/48 maxlen: 48
2a06:a005:2d4::/48 maxlen: 48
2a06:a005:4d4::/48 maxlen: 48
2a06:a005:5ea::/48 maxlen: 48
2a06:a005:5ef::/48 maxlen: 48
2a06:a005:a08::/48 maxlen: 48
2a06:a005:5e8::/48 maxlen: 48
2a06:a005:5ed::/48 maxlen: 48
2a06:a005:5e3::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 445247155 (0x1a89eeb3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54914541fd1b95e7c0afc875fbef78794f55386b
Validity
Not Before: Jun 3 01:41:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3f88997e345ec4adce558732ad84b0e90a8d0b9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:87:8b:9b:b9:7f:1e:f3:ed:77:b3:f2:71:3d:
67:ed:75:20:5d:19:3e:dc:f8:66:45:6b:27:ce:04:
43:2e:80:72:77:cb:35:18:f9:07:fa:71:33:8b:80:
fd:21:d5:79:9a:5b:3f:28:e8:b7:ba:af:00:ba:46:
ba:66:8d:2c:74:9f:a9:79:86:86:79:6a:78:0c:85:
80:1d:98:bf:52:1d:e8:0c:b9:88:70:21:f3:dd:38:
b2:32:53:a3:3d:07:d3:d4:1f:b7:5e:aa:59:76:9b:
48:70:29:32:f0:3a:28:ac:c0:c3:3b:dd:5c:f9:1f:
59:04:86:3c:73:45:61:18:67:24:9e:d7:47:c9:6d:
4d:54:ec:82:37:ef:f7:6b:dd:ce:10:1d:37:9f:93:
f9:7a:9d:8f:ac:34:88:d5:b7:04:cf:7e:7a:d2:70:
01:92:46:da:42:db:cb:53:62:f3:9f:e3:ed:40:83:
5b:70:4b:8c:88:80:fe:70:09:14:3b:f2:32:d0:52:
f7:c0:69:0e:3c:c9:41:ed:0e:6b:95:15:0f:29:8f:
ca:b0:59:d6:48:44:87:2e:f0:ae:02:5a:02:4a:9f:
bc:b6:b1:c9:ed:50:76:b0:ce:2c:65:e1:49:f5:11:
73:8f:45:89:70:6d:52:88:a4:60:b0:66:84:93:19:
18:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:88:99:7E:34:5E:C4:AD:CE:55:87:32:AD:84:B0:E9:0A:8D:0B:9F
X509v3 Authority Key Identifier:
keyid:54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/P4iZfjRexK3OVYcyrYSw6QqNC58.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/VJFFQf0blefAr8h1--94eU9VOGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:10::-2a06:a005:12:ffff:ffff:ffff:ffff:ffff
2a06:a005:2d4::/48
2a06:a005:2df::/48
2a06:a005:432::/48
2a06:a005:4d2::-2a06:a005:4d7:ffff:ffff:ffff:ffff:ffff
2a06:a005:5e3::/48
2a06:a005:5e8::/45
2a06:a005:850::/47
2a06:a005:856::/48
2a06:a005:a01::-2a06:a005:a02:ffff:ffff:ffff:ffff:ffff
2a06:a005:a08::/48
Signature Algorithm: sha256WithRSAEncryption
04:d1:fd:2f:18:35:33:6c:20:7f:03:1e:f8:24:fe:71:44:83:
6b:21:9e:b7:22:3f:4e:09:c2:dc:35:2b:51:a8:a7:1f:6d:f3:
be:04:99:cf:69:d7:c5:29:58:79:50:b0:ad:76:51:f9:a8:90:
97:0c:4a:37:c0:5f:d1:ae:16:c5:f0:00:4a:10:03:b6:44:8a:
9a:3d:2e:61:19:6a:75:50:fa:89:3f:93:a3:ae:63:f6:74:6d:
ab:45:02:7c:cb:47:13:1d:c2:d4:d2:84:08:8c:6b:6d:61:8f:
5e:31:5a:d7:5d:5b:9a:2f:ec:47:92:6f:c0:2a:86:d3:f2:34:
86:ef:dc:b0:f2:ec:72:bf:2a:93:05:aa:7d:7a:ba:33:96:e5:
d1:97:a0:73:fd:4c:ff:16:e4:d6:4c:de:75:6d:d7:dd:81:27:
24:c4:e8:81:c8:83:30:3b:cb:4c:48:f8:cc:f3:40:85:f3:4e:
0b:d4:2b:f6:42:37:d0:bd:e9:c5:22:85:64:3d:56:4d:52:63:
6d:94:9e:6e:e6:9a:f8:f4:86:f9:0a:32:12:34:a7:44:32:39:
db:4e:4b:5d:e8:7a:4e:81:ff:7f:24:e0:f8:38:83:8b:6f:58:
e9:c2:b4:38:79:e5:6f:b9:6d:f5:f5:c0:2a:12:27:dc:75:49:
9b:bc:42:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 23 05:56:51 2025 by rpki-client