Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/XlrwfMwvWBn_1KtpY8_tA-1SSqM.roa
File: XlrwfMwvWBn_1KtpY8_tA-1SSqM.roa (raw, json)
Hash identifier: 15sMzRyjkENtHbJwv/avzXtQBHnIThdeRfW317ep3pU=
Subject key identifier: 5E:5A:F0:7C:CC:2F:58:19:FF:D4:AB:69:63:CF:ED:03:ED:52:4A:A3
Certificate issuer: /CN=54914541fd1b95e7c0afc875fbef78794f55386b
Certificate serial: 018434EBF973A5841D68F3345866A9202EBA
Authority key identifier: 54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/XlrwfMwvWBn_1KtpY8_tA-1SSqM.roa
Signing time: Tue 01 Nov 2022 20:39:50 +0000
ROA not before: Tue 01 Nov 2022 20:39:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205965
IP address blocks: 2a06:a005:2240::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:34:eb:f9:73:a5:84:1d:68:f3:34:58:66:a9:20:2e:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54914541fd1b95e7c0afc875fbef78794f55386b
Validity
Not Before: Nov 1 20:39:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5e5af07ccc2f5819ffd4ab6963cfed03ed524aa3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:86:e2:42:a4:e8:88:69:10:44:9a:f0:2d:67:
7a:99:4f:ee:36:bc:5f:ec:70:4a:2b:ec:33:52:92:
ae:4a:e5:f1:13:f3:17:05:02:9e:88:44:0d:ba:0a:
df:a0:b9:17:02:93:24:2c:b5:e1:e1:5a:de:c6:57:
bc:44:19:76:0d:91:66:bb:9d:34:a7:bb:81:a4:6f:
a5:66:e4:f5:91:66:77:70:44:14:3f:23:ec:25:8c:
3c:2a:26:51:20:bd:d9:9f:12:30:2d:87:13:e2:29:
eb:f5:36:7f:83:48:06:c2:aa:a5:bd:da:78:a4:e9:
9a:d1:60:16:37:83:17:f0:28:1d:ef:71:27:f9:b4:
f6:77:3d:60:52:ef:47:d4:48:7a:2f:a2:33:04:74:
a0:17:75:a9:f5:f4:b2:df:c4:90:9e:af:38:4c:5e:
f5:3b:ee:c7:f0:20:91:99:d0:76:76:ba:d9:48:bd:
a1:2d:ae:bc:03:c2:2f:df:6f:06:08:4d:5f:66:49:
a6:a2:6c:e2:0e:2d:61:84:8b:c5:13:c2:f2:1a:74:
4e:55:e5:ce:af:9d:de:29:1d:19:d0:e3:9f:d4:30:
d9:0a:34:5d:2f:fd:9f:2f:b7:d9:c8:b3:62:5e:6b:
ec:66:51:e9:51:ca:e6:77:79:3a:44:a2:d3:84:71:
e9:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:5A:F0:7C:CC:2F:58:19:FF:D4:AB:69:63:CF:ED:03:ED:52:4A:A3
X509v3 Authority Key Identifier:
keyid:54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/XlrwfMwvWBn_1KtpY8_tA-1SSqM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/VJFFQf0blefAr8h1--94eU9VOGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:2240::/44
Signature Algorithm: sha256WithRSAEncryption
68:80:ad:59:55:72:9e:3d:00:2b:f3:1d:07:37:45:5e:0c:da:
d5:22:c1:97:3b:f4:fc:ba:54:cc:bf:27:01:f8:36:86:83:62:
26:4c:aa:86:f0:46:52:d7:3c:3e:75:ce:37:bc:bc:49:69:d8:
55:d8:ff:b6:8d:e5:a1:1e:bb:60:e7:e5:5e:73:e6:69:e7:ed:
a2:1c:ab:21:ba:03:88:a9:ff:c9:54:cf:8a:53:5e:56:26:fc:
e8:4c:54:02:b6:21:af:16:cc:58:37:d6:0a:3b:87:5a:79:d0:
b0:a3:cc:f2:b1:67:8e:59:8b:e6:72:cb:45:e3:2f:7e:49:57:
37:27:b0:20:24:7d:fd:45:28:a8:21:e3:56:a4:3d:96:8d:fc:
9e:94:42:8f:6e:c3:13:b5:e8:08:9b:d9:9d:5c:a7:f7:4b:3b:
7a:38:e7:5b:cb:bb:3c:f6:f1:1c:be:f5:78:6d:9a:4a:26:be:
9a:8f:4a:99:23:c4:52:80:6f:1b:05:e4:41:2b:52:55:c8:ba:
fd:d4:a1:e3:2d:88:cd:c8:67:37:f8:dc:f3:c4:69:93:8e:ef:
9c:ef:9b:e3:76:98:3f:c3:af:00:f2:49:60:5b:84:75:c4:c7:
ab:00:db:60:73:32:c1:c6:21:0a:b3:6e:3b:77:69:01:de:c0:
86:93:9b:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 07:21:20 2025 by rpki-client