Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/cZUKoc1M0lCFgCmeBqFArHEM2DA.roa
File: cZUKoc1M0lCFgCmeBqFArHEM2DA.roa (raw, json)
Hash identifier: iWxQMhiHf8hfNOVNpEd/hw1J519tLsKiYtpZ6c9Zhzo=
Subject key identifier: 71:95:0A:A1:CD:4C:D2:50:85:80:29:9E:06:A1:40:AC:71:0C:D8:30
Certificate issuer: /CN=54914541fd1b95e7c0afc875fbef78794f55386b
Certificate serial: 15C22092
Authority key identifier: 54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/cZUKoc1M0lCFgCmeBqFArHEM2DA.roa
Signing time: Sat 01 Jan 2022 05:59:09 +0000
ROA not before: Sat 01 Jan 2022 05:59:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210387
IP address blocks: 2a06:a001:a0f0::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 365043858 (0x15c22092)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54914541fd1b95e7c0afc875fbef78794f55386b
Validity
Not Before: Jan 1 05:59:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=71950aa1cd4cd2508580299e06a140ac710cd830
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:f5:be:bc:30:4e:6f:b2:7d:d3:cc:08:1a:7e:
82:9c:45:30:b0:24:6a:a1:ec:23:0f:c4:60:87:40:
0f:82:fc:60:4a:d0:0a:6c:20:07:ca:b5:02:3a:04:
ce:bd:79:1c:ec:36:a8:93:97:6e:a2:fd:55:2f:4f:
6d:4f:07:fb:a0:d3:ba:5a:5d:e4:29:24:92:4c:37:
d6:2b:2e:b0:cc:d1:87:ed:31:68:be:38:07:dd:7d:
b4:51:84:29:2d:2e:d2:af:47:b3:be:ae:8e:42:2d:
9f:b9:73:26:37:bc:2b:c3:40:a4:1f:a6:e7:55:6a:
7c:52:20:1e:9a:4b:69:cf:71:a3:ec:bf:30:9b:0b:
61:a4:21:10:1c:2b:b0:ba:ca:1c:f5:d2:39:36:b2:
89:8f:cc:e9:4a:0f:d1:98:e8:c7:8d:d3:01:2a:17:
e1:7d:0b:a5:2c:6e:00:73:52:74:8a:30:08:0d:b4:
51:1e:9b:eb:bb:0f:1e:56:12:7c:a7:6a:dd:c6:28:
ac:15:30:2f:ca:98:25:49:0e:61:68:dd:fc:08:77:
65:a3:39:72:d9:e4:9a:f0:47:78:ea:c2:30:4d:7c:
a7:78:56:be:2c:d4:c7:bc:8e:cc:19:0d:69:af:43:
df:4f:06:ef:c9:a3:89:e3:d7:a0:52:f1:3b:36:8d:
33:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:95:0A:A1:CD:4C:D2:50:85:80:29:9E:06:A1:40:AC:71:0C:D8:30
X509v3 Authority Key Identifier:
keyid:54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/cZUKoc1M0lCFgCmeBqFArHEM2DA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/VJFFQf0blefAr8h1--94eU9VOGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a001:a0f0::/44
Signature Algorithm: sha256WithRSAEncryption
48:f1:bf:6d:55:48:d0:cf:71:b2:a1:fd:04:6a:0d:6e:ab:e8:
11:f9:4d:de:98:c3:1a:9f:a7:ab:dc:68:e8:f5:41:0a:08:23:
3e:67:0b:9b:da:f0:9e:73:08:7d:99:36:17:aa:c4:5b:60:85:
d2:f1:e0:63:93:1f:31:f5:80:3e:42:4f:c5:f4:7b:6c:7e:f2:
de:61:23:6c:b6:ee:a3:12:4e:3f:1c:7b:12:68:fc:22:4b:b3:
81:ab:0e:a4:86:33:1a:11:71:e4:f0:ca:a9:4d:ed:f0:f2:83:
fe:70:d8:b5:9a:01:9f:b9:bc:3e:88:aa:25:9b:bc:13:44:14:
60:f0:a4:9b:4e:b0:bf:02:84:d1:32:a4:0d:ff:39:fd:c5:7e:
ba:e9:d0:72:84:32:42:99:ca:25:c2:93:48:0a:1c:0c:ea:c8:
a6:da:32:3b:3b:e5:ee:ed:66:11:88:b7:42:72:93:e5:9a:54:
18:43:d6:a0:42:b7:57:55:0b:36:ad:8d:e3:15:2a:56:72:7a:
85:4a:92:0c:56:01:7a:2f:ec:a6:71:38:ce:58:3a:3b:7e:1b:
b7:52:1d:5c:d9:5b:cc:fb:35:bf:30:e3:9c:51:df:ca:f0:b7:
7a:7f:b6:2d:68:3d:a4:36:93:0c:df:f4:b7:76:bf:12:55:cd:
f9:a7:9a:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 10:03:36 2025 by rpki-client