Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/V73OGBhN2UHLs9OQkbhdKss1hkQ.roa
File: V73OGBhN2UHLs9OQkbhdKss1hkQ.roa (raw, json)
Hash identifier: PyhKD7p/bVUg6Mdd9sqOnRGkjxtWXKpa3YsCMOkDxRU=
Subject key identifier: 57:BD:CE:18:18:4D:D9:41:CB:B3:D3:90:91:B8:5D:2A:CB:35:86:44
Certificate issuer: /CN=54914541fd1b95e7c0afc875fbef78794f55386b
Certificate serial: 0184D31A586626D83F6155F24F8D708B7B7F
Authority key identifier: 54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/V73OGBhN2UHLs9OQkbhdKss1hkQ.roa
Signing time: Fri 02 Dec 2022 13:50:29 +0000
ROA not before: Fri 02 Dec 2022 13:50:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200959
IP address blocks: 2a0a:6040:e500::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:d3:1a:58:66:26:d8:3f:61:55:f2:4f:8d:70:8b:7b:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54914541fd1b95e7c0afc875fbef78794f55386b
Validity
Not Before: Dec 2 13:50:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=57bdce18184dd941cbb3d39091b85d2acb358644
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:3f:3e:5a:d9:6d:44:63:e6:58:d2:ad:b2:f7:
c9:1f:f9:b2:43:b6:6a:a7:3f:c6:82:da:d0:70:ad:
b8:a3:26:d5:e2:f5:14:dd:c5:34:56:c1:a9:71:62:
00:4b:24:60:ab:8e:d1:d3:90:93:54:cb:27:c9:85:
13:33:b7:42:d2:0f:e1:37:3d:8e:48:2f:dc:26:7c:
20:40:6b:8d:cc:91:02:4e:14:71:2e:88:82:63:e1:
c5:9e:17:3d:94:78:9e:45:f2:52:0e:c6:14:d2:b3:
d8:1d:21:26:5c:15:29:98:e3:6b:e7:7e:0a:87:f5:
04:b0:1d:26:6a:dd:d1:ae:66:c5:c4:ec:bd:fb:d3:
bc:1f:c5:b9:47:94:ee:6e:d8:80:3a:d0:b6:2b:6f:
d4:a7:b2:b9:78:3d:b1:b6:cf:64:d7:57:ee:bd:15:
62:57:37:cd:c5:90:73:94:fd:0d:42:b3:92:6a:a7:
93:7d:88:79:1e:84:7a:d6:aa:31:b5:53:2d:20:a3:
61:4c:9d:c1:b0:e7:d8:bd:87:90:62:19:b5:ff:95:
b5:09:e6:ce:db:35:bd:a3:91:76:03:19:dc:9c:66:
d1:f8:5e:3e:ad:35:0a:07:ac:b1:fc:3f:a6:3b:27:
b4:63:e4:e1:7c:e8:d5:16:87:dc:22:83:7e:9b:55:
a5:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:BD:CE:18:18:4D:D9:41:CB:B3:D3:90:91:B8:5D:2A:CB:35:86:44
X509v3 Authority Key Identifier:
keyid:54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/V73OGBhN2UHLs9OQkbhdKss1hkQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/VJFFQf0blefAr8h1--94eU9VOGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:6040:e500::/40
Signature Algorithm: sha256WithRSAEncryption
97:88:0f:80:08:ca:6a:55:df:75:40:2b:9a:cb:f4:1e:51:e8:
6d:2a:b6:77:88:76:ad:f3:72:a8:e3:2f:c4:25:26:53:f3:d6:
44:f7:c9:68:ff:59:c6:cd:e7:81:7d:6d:0d:07:8d:eb:ff:60:
b0:39:18:f3:21:bc:7f:ed:da:14:f6:97:17:78:94:35:55:63:
b2:c2:87:7f:f4:20:82:44:d3:af:8d:90:77:e0:c3:de:3e:a1:
cf:34:87:06:41:00:ef:8c:f7:db:52:c2:0b:15:10:f2:b0:5f:
60:d8:08:82:ac:8d:d4:13:69:df:c9:be:cd:b3:b7:bb:77:f6:
c9:1f:a4:cc:f3:cf:31:f4:6a:fd:b8:d0:36:3b:85:1e:b8:3e:
8d:08:40:82:fb:3a:b0:36:8d:42:ee:43:2d:64:d4:27:f7:96:
bd:74:30:24:22:82:6b:7a:7d:f9:99:0d:f9:ee:3d:a8:64:a2:
bf:aa:d3:e5:88:7d:a9:5d:20:31:b3:28:cd:3a:e0:ff:3f:57:
b8:ab:a9:c2:9a:2b:f5:ce:cb:2a:02:58:f6:7f:8d:fd:a3:11:
43:e7:64:bc:6c:da:00:d9:60:67:36:e3:ef:78:49:04:5b:0b:
06:0a:38:ed:d0:60:1f:0f:66:d8:82:79:02:c0:f7:1e:b2:6f:
bd:79:e4:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 14:25:15 2025 by rpki-client