Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/RhSpFWqbFa30Dl1zgQtsc-cODCQ.roa
File: RhSpFWqbFa30Dl1zgQtsc-cODCQ.roa (raw, json)
Hash identifier: 4vHG4ISO7EsZEXyaLWUChjFklO1YKwzBAYXDRR/IZFA=
Subject key identifier: 46:14:A9:15:6A:9B:15:AD:F4:0E:5D:73:81:0B:6C:73:E7:0E:0C:24
Certificate issuer: /CN=54914541fd1b95e7c0afc875fbef78794f55386b
Certificate serial: 18D0BB5D
Authority key identifier: 54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/RhSpFWqbFa30Dl1zgQtsc-cODCQ.roa
Signing time: Wed 27 Apr 2022 14:26:15 +0000
ROA not before: Wed 27 Apr 2022 14:26:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205531
IP address blocks: 2a06:a005:5b4::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 416332637 (0x18d0bb5d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54914541fd1b95e7c0afc875fbef78794f55386b
Validity
Not Before: Apr 27 14:26:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4614a9156a9b15adf40e5d73810b6c73e70e0c24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:c5:61:bc:c7:83:a8:3d:34:93:ed:6d:35:84:
6c:44:d8:f6:86:ca:83:43:12:c1:0a:da:f2:3b:37:
bb:6c:69:87:a5:3c:fa:74:f3:29:ad:c0:73:df:ba:
3f:f1:94:1d:46:a3:67:fe:3f:1c:15:24:26:8b:c8:
b2:38:1c:7f:76:c9:e6:5c:ae:57:84:cd:10:e9:a6:
fa:44:d9:32:fd:8e:3f:7c:ad:c0:b4:c2:b7:0f:96:
03:94:43:a4:76:d6:4e:db:e7:a0:8a:e6:89:31:30:
57:0a:b9:a9:c6:7c:ef:ef:66:e9:fa:3c:01:0c:97:
ac:c1:48:92:f5:9f:49:a8:10:f0:a1:fe:4d:ff:4d:
dd:f5:dd:a4:8c:34:5f:c0:94:d0:c2:29:37:75:fc:
b2:ee:fa:0c:3b:26:20:ab:41:78:c7:9a:29:15:54:
dc:d1:e6:a7:b5:5c:d7:f4:45:fe:4a:73:4f:82:bb:
6e:ef:52:09:dc:89:ed:b3:8d:2f:8b:c5:6e:ac:71:
ee:db:12:0d:a2:0c:5e:a4:0b:bb:34:1b:fc:11:15:
79:c2:b1:f5:0e:5d:bc:8c:f7:ca:5b:34:59:6a:0c:
e2:1b:ea:53:7e:b3:4b:2b:74:e0:36:31:79:f9:f7:
3e:84:34:e9:ca:57:e2:2d:ff:67:7e:63:c6:6d:17:
a8:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:14:A9:15:6A:9B:15:AD:F4:0E:5D:73:81:0B:6C:73:E7:0E:0C:24
X509v3 Authority Key Identifier:
keyid:54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/RhSpFWqbFa30Dl1zgQtsc-cODCQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/VJFFQf0blefAr8h1--94eU9VOGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:5b4::/48
Signature Algorithm: sha256WithRSAEncryption
37:5d:55:b8:d3:3c:5f:9a:d6:73:72:0b:07:d0:c7:5a:b3:17:
9c:5a:29:6a:d0:c4:e2:fc:93:80:dd:cd:f7:8e:30:9d:20:c6:
6e:86:08:13:d3:42:f6:64:e4:0d:48:43:c9:4c:5a:27:21:a6:
8e:7e:45:40:ca:f5:68:6d:4e:be:07:cd:3f:d4:95:b9:7b:fd:
59:5c:8b:03:89:67:f9:1e:df:3c:05:84:f7:0f:53:c1:4c:71:
9f:3d:e0:a5:91:b8:23:a7:ba:47:70:50:33:a6:9d:54:39:22:
56:6a:bf:35:4b:38:be:db:8a:21:9f:2f:04:f5:f9:68:fc:10:
50:c3:2e:7f:90:01:99:09:56:da:87:f7:d0:bc:66:f4:8c:fc:
d5:9f:bc:08:cf:99:db:42:09:9b:7d:8b:82:36:38:16:dc:56:
cc:b8:23:ae:74:c9:0a:fd:09:e9:bb:cf:ca:ed:bb:5d:41:21:
22:f6:bc:6e:7e:71:07:6a:90:79:9a:40:9c:ea:f6:11:56:dc:
fb:d1:47:fa:fc:3d:e4:d3:7a:c2:b0:6a:61:4b:e1:e5:ee:24:
94:fb:89:dd:b6:b1:4f:70:e4:0d:ad:d7:42:eb:fa:53:20:08:
de:8d:82:5b:78:7d:12:ea:3b:c0:78:68:eb:9a:85:bf:49:31:
8d:e9:28:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 09:50:45 2025 by rpki-client