Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/kWLrC2cY9-kzpri3z95NGgp17Y4.roa
File: kWLrC2cY9-kzpri3z95NGgp17Y4.roa (raw, json)
Hash identifier: hQcy3gqVsn/cCa3MLOVpiDqm1taQQVkxWWNZOT1XwzU=
Subject key identifier: 91:62:EB:0B:67:18:F7:E9:33:A6:B8:B7:CF:DE:4D:1A:0A:75:ED:8E
Certificate issuer: /CN=54914541fd1b95e7c0afc875fbef78794f55386b
Certificate serial: 18F4CC5B
Authority key identifier: 54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/kWLrC2cY9-kzpri3z95NGgp17Y4.roa
Signing time: Sun 01 May 2022 16:25:59 +0000
ROA not before: Sun 01 May 2022 16:25:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 142289
IP address blocks: 2a06:a005:700::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 418696283 (0x18f4cc5b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54914541fd1b95e7c0afc875fbef78794f55386b
Validity
Not Before: May 1 16:25:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9162eb0b6718f7e933a6b8b7cfde4d1a0a75ed8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:26:ba:b0:f9:0d:1b:be:0d:b2:bd:9d:85:50:
fa:f3:58:0a:ac:3c:12:f5:11:96:31:91:39:26:96:
2b:92:99:99:85:81:a9:a0:bf:53:91:48:86:87:36:
bb:89:13:f4:e4:d5:70:c4:9a:be:15:a6:8d:74:25:
4b:45:0d:48:1b:fe:b8:f1:29:18:6e:72:d2:61:f6:
30:2d:0a:2e:52:b4:a0:7c:3c:f2:c4:43:1c:74:e9:
3b:2e:68:0e:80:85:a0:d2:fc:83:62:4b:f4:23:3c:
82:f2:f9:9a:0b:b4:ac:0f:34:1e:4e:b9:a4:f0:1e:
9c:a1:7d:e5:b6:52:12:4e:dc:39:69:c9:fa:b5:b6:
5d:c4:7e:14:98:55:a5:00:86:c0:05:a5:a3:62:71:
96:3c:e2:8d:da:af:05:b6:f5:ae:c5:67:24:29:22:
63:fe:c9:ef:7b:db:b1:97:bc:fc:bb:61:3a:78:a5:
ee:45:9f:54:51:34:64:80:f4:ce:3b:50:ed:93:e6:
6a:76:a2:5f:af:d8:59:74:bb:ec:5b:52:05:d2:bb:
70:89:f3:35:c6:09:eb:76:80:55:1c:e0:ec:5b:ef:
15:9c:7c:ae:71:b9:76:5c:5f:2e:e3:91:28:01:32:
00:aa:dd:d0:2b:2d:cc:b3:25:76:26:38:6a:22:6f:
9d:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:62:EB:0B:67:18:F7:E9:33:A6:B8:B7:CF:DE:4D:1A:0A:75:ED:8E
X509v3 Authority Key Identifier:
keyid:54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/kWLrC2cY9-kzpri3z95NGgp17Y4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/VJFFQf0blefAr8h1--94eU9VOGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:700::/44
Signature Algorithm: sha256WithRSAEncryption
38:01:28:fc:4b:70:0d:79:dc:05:7e:df:b6:99:56:fe:9e:c2:
33:1f:d3:13:66:a5:be:3f:6c:97:31:38:f8:df:1e:dd:2f:1f:
2c:ef:97:29:0f:4a:ca:b0:93:52:ca:5e:54:16:aa:80:0f:00:
fa:26:f0:0c:6b:3b:5a:08:04:63:86:45:06:46:08:81:05:09:
18:bd:fe:11:3c:c0:76:ad:60:38:0e:9f:db:95:2b:e2:bd:22:
49:56:65:a3:39:91:46:6f:b4:1e:34:02:ec:5e:cd:63:d2:7c:
5a:04:9b:8c:03:cd:4c:93:c2:56:c4:06:12:f6:92:9f:e0:b8:
40:d3:07:6f:f3:a8:67:1a:9e:f5:e0:05:45:dd:71:51:49:91:
22:20:9b:12:42:b7:52:7e:81:8a:5a:8a:8c:6d:15:27:f0:c2:
e6:65:7a:55:6f:4b:55:81:80:a9:a9:55:61:6e:7a:10:b3:fb:
1e:b6:03:39:47:ac:31:fa:ed:30:e4:2f:5a:81:e6:23:70:db:
88:80:63:7c:b3:6c:5d:37:a6:2a:fb:bb:02:6f:b6:4e:d1:c9:
e7:06:8e:a6:53:55:22:48:cd:d0:74:d4:f7:91:ed:b2:e3:24:
4d:20:f2:05:b4:2b:56:27:a5:89:b5:b7:6d:70:59:1b:ed:49:
bb:03:f9:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 23 10:28:50 2025 by rpki-client