Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/Xkrq9JkT0ABsx9GOr_vWhoWt76M.roa
File: Xkrq9JkT0ABsx9GOr_vWhoWt76M.roa (raw, json)
Hash identifier: OqEvMFRqnXLrLImGIMIgZ/LIFd+iHlxgtw/T7XvEdL4=
Subject key identifier: 5E:4A:EA:F4:99:13:D0:00:6C:C7:D1:8E:AF:FB:D6:86:85:AD:EF:A3
Certificate issuer: /CN=54914541fd1b95e7c0afc875fbef78794f55386b
Certificate serial: 15C0453B
Authority key identifier: 54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/Xkrq9JkT0ABsx9GOr_vWhoWt76M.roa
Signing time: Sat 01 Jan 2022 05:59:08 +0000
ROA not before: Sat 01 Jan 2022 05:59:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209870
IP address blocks: 2a0a:6040::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 364922171 (0x15c0453b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54914541fd1b95e7c0afc875fbef78794f55386b
Validity
Not Before: Jan 1 05:59:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5e4aeaf49913d0006cc7d18eaffbd68685adefa3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:27:f7:f1:11:8a:a4:e2:a5:e2:61:4d:d2:b4:
4e:48:12:c5:24:71:c7:fc:80:e9:bb:64:82:57:75:
77:25:72:80:62:95:b0:8c:a4:e2:32:71:fe:e7:3d:
d6:fc:58:08:42:c9:7c:3c:8b:3b:88:a7:47:aa:56:
a8:0c:d8:97:dc:0b:aa:fd:38:36:50:00:ed:4d:9b:
e3:a0:2a:53:cd:28:7d:5a:a7:eb:4d:35:3d:c8:1b:
3a:69:38:e9:e0:ec:6a:ac:10:3f:2a:bb:c5:f6:e3:
5e:c3:07:f1:9e:d5:5b:b8:25:5b:f4:3b:5c:10:43:
55:44:59:fd:25:c6:21:c8:d4:06:46:41:d5:4f:8c:
62:52:ca:49:89:99:57:09:df:45:59:fe:0b:19:d4:
a2:e8:b5:76:ca:47:be:15:c0:80:d3:96:31:27:bb:
11:8e:dd:b8:76:ce:81:4f:e6:e5:e1:70:d5:85:8d:
f3:a5:88:cb:8d:16:73:5a:1c:cb:c1:40:85:cf:44:
14:4a:06:2f:41:3b:0d:62:9f:29:bd:9c:61:5d:22:
17:cd:6f:46:eb:a2:40:f7:79:07:08:0f:6b:cd:e9:
c6:e0:7c:22:a0:cf:14:28:4e:8d:72:d5:80:12:96:
d6:97:d2:2e:ba:67:9b:47:50:38:32:3d:ce:04:a8:
6e:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:4A:EA:F4:99:13:D0:00:6C:C7:D1:8E:AF:FB:D6:86:85:AD:EF:A3
X509v3 Authority Key Identifier:
keyid:54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/Xkrq9JkT0ABsx9GOr_vWhoWt76M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/VJFFQf0blefAr8h1--94eU9VOGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:6040::/32
Signature Algorithm: sha256WithRSAEncryption
5d:d9:2e:fd:d1:c1:c5:01:75:1e:b7:17:43:f5:a0:8a:f4:2f:
60:11:22:88:81:eb:7e:6e:cc:41:5a:0a:68:50:ef:be:36:64:
31:94:99:97:f4:14:bd:5d:a9:18:fb:1e:b6:4b:0c:d4:ef:ff:
1c:b2:5f:d5:e2:32:1d:83:45:42:0e:29:73:a0:3a:6f:e5:1a:
25:00:d1:9a:87:ce:d6:eb:d2:b0:e5:a2:9e:68:08:4a:80:c3:
c2:0a:df:4f:d1:fc:7d:73:f1:57:1d:ba:9b:aa:bf:e8:10:13:
3c:95:54:5e:79:55:57:77:07:ae:24:aa:bf:78:03:57:91:5b:
16:04:5e:35:0e:e9:36:9e:65:09:1e:cf:3d:67:4b:8a:4c:4a:
5d:33:b9:10:c1:b5:e9:7b:91:49:83:69:79:90:20:a2:13:93:
ca:66:9a:1e:0e:71:d8:51:d9:86:cb:fb:d7:b6:aa:82:e8:12:
8f:97:1e:1a:18:91:24:e2:85:76:1d:14:b0:b8:d4:8b:0b:57:
c8:d2:bb:c3:75:1e:1b:b6:57:cb:3a:63:8a:34:7b:df:32:b1:
9f:96:49:d8:5d:0a:4f:e2:ae:12:6c:0f:d9:18:bd:bf:25:cc:
cd:12:06:7d:0e:ad:0b:5f:34:f4:4b:3b:c3:ba:6f:6c:bc:83:
ae:f4:9a:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 22:26:26 2025 by rpki-client