Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/c81669-2519-4da5-bd5d-1c2626590d28/1/aqdD6tZ-KOmQ0YlcPrxJtKdquuA.roa
File: aqdD6tZ-KOmQ0YlcPrxJtKdquuA.roa (raw, json)
Hash identifier: U3P68EvfK50GL+0IjiP/ymY0IAy8amWiTONJLh12Tv4=
Subject key identifier: 6A:A7:43:EA:D6:7E:28:E9:90:D1:89:5C:3E:BC:49:B4:A7:6A:BA:E0
Certificate issuer: /CN=d53ece71ef6ebf55bb7b87e50665ba11fdc77f08
Certificate serial: 03299F08
Authority key identifier: D5:3E:CE:71:EF:6E:BF:55:BB:7B:87:E5:06:65:BA:11:FD:C7:7F:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1T7Oce9uv1W7e4flBmW6Ef3Hfwg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/c81669-2519-4da5-bd5d-1c2626590d28/1/aqdD6tZ-KOmQ0YlcPrxJtKdquuA.roa
Signing time: Thu 09 Jun 2022 05:43:03 +0000
ROA not before: Thu 09 Jun 2022 05:43:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 31.6.52.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53059336 (0x3299f08)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d53ece71ef6ebf55bb7b87e50665ba11fdc77f08
Validity
Not Before: Jun 9 05:43:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6aa743ead67e28e990d1895c3ebc49b4a76abae0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:ab:e2:c8:05:e1:6d:d7:34:9c:8e:99:71:dc:
9f:63:78:83:25:03:d6:e1:cd:bf:c0:8d:23:0c:31:
64:da:50:94:d7:3a:98:cc:9f:e9:b4:c8:13:dc:26:
5e:58:ae:72:0f:28:50:6b:a1:91:7f:61:df:76:fa:
0f:13:7b:d0:44:ab:b9:db:70:7c:cb:96:97:38:7a:
a3:e3:d6:46:76:26:90:0c:70:59:8c:0e:dd:06:d9:
60:8c:39:33:d6:ab:9c:6a:85:b4:ca:91:40:33:08:
41:21:9c:f0:64:9a:ad:d8:6f:f4:c6:00:28:53:c2:
9c:9e:d4:bd:2a:6d:ed:07:9e:b7:f2:ea:df:bd:3d:
b0:61:0b:78:36:11:59:69:7a:91:9b:3f:c9:db:44:
d8:86:a7:19:08:0d:d5:6a:67:26:10:f1:bb:4c:40:
01:c9:24:c2:68:84:bd:1a:cf:9d:eb:06:b6:c1:63:
07:e7:59:a2:72:3d:d6:ac:f8:4f:dc:89:8a:cc:b3:
14:9b:3e:08:ab:ac:65:d7:f3:81:58:9a:63:f9:b3:
b8:54:71:aa:eb:ca:f0:79:c3:f2:6d:b2:b4:56:cb:
ee:c5:50:03:26:39:3a:5a:e5:1b:53:be:33:a9:46:
8c:34:e2:15:ba:1e:3d:7d:28:c3:a4:6c:77:c1:a9:
1f:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:A7:43:EA:D6:7E:28:E9:90:D1:89:5C:3E:BC:49:B4:A7:6A:BA:E0
X509v3 Authority Key Identifier:
keyid:D5:3E:CE:71:EF:6E:BF:55:BB:7B:87:E5:06:65:BA:11:FD:C7:7F:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1T7Oce9uv1W7e4flBmW6Ef3Hfwg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/c81669-2519-4da5-bd5d-1c2626590d28/1/aqdD6tZ-KOmQ0YlcPrxJtKdquuA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/c81669-2519-4da5-bd5d-1c2626590d28/1/1T7Oce9uv1W7e4flBmW6Ef3Hfwg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.6.52.0/22
Signature Algorithm: sha256WithRSAEncryption
58:f7:07:27:e9:04:c9:3a:a1:bf:14:32:a6:40:70:5d:23:f1:
f1:73:0b:57:0f:e5:e8:da:a2:d3:71:96:84:28:53:54:36:82:
c4:32:0c:44:1d:5a:77:83:7a:ad:28:cf:87:9f:82:58:6a:05:
af:e6:a7:ad:52:d6:3c:01:a2:b2:96:26:94:48:ce:6b:fe:5c:
89:3b:3f:8b:23:9b:0d:1d:a9:0d:01:c3:ba:be:92:97:ac:e5:
93:c7:26:ca:16:ca:b3:1d:b2:5d:1a:6d:1f:c9:52:3f:a7:f7:
f9:83:09:38:10:6a:78:a0:be:1f:d4:89:23:66:e4:48:17:c3:
1b:81:d4:4c:4b:46:e4:36:84:48:26:95:7c:21:f8:7d:98:51:
26:28:36:c3:b0:f4:89:11:75:6a:e7:b6:c7:98:c0:4b:4b:ed:
40:5a:7a:12:82:8b:f3:f8:95:1c:f7:31:c4:b1:ba:1e:ac:b9:
d2:ad:5c:c6:f2:53:43:4e:1e:82:1d:55:04:e2:4b:07:de:7a:
9a:0a:12:63:79:ca:9c:6d:ed:ec:c3:98:08:f7:da:f1:fb:1e:
85:56:ec:df:69:f1:18:25:1f:a7:de:f9:bc:80:9e:b3:b4:7c:
b8:8e:53:8d:01:fb:bd:e7:d1:0b:52:93:fa:a5:32:d8:9c:c9:
2b:30:b4:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 06:14:51 2025 by rpki-client