Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/2e5665-996c-4748-b27d-c920b000f4e6/1/rbUXu6PzX9WWxRoKhHFAo9hhoCI.roa
File: rbUXu6PzX9WWxRoKhHFAo9hhoCI.roa (raw, json)
Hash identifier: /V1GqaJZSgC0SBU6vRZujf/hAghz/xYP8P1/NzIxSqw=
Subject key identifier: AD:B5:17:BB:A3:F3:5F:D5:96:C5:1A:0A:84:71:40:A3:D8:61:A0:22
Certificate issuer: /CN=bca5e8ced539520a461dc8272ef97c807c97afd6
Certificate serial: 01856CAF388623056F4F7D4A970BD1249636
Authority key identifier: BC:A5:E8:CE:D5:39:52:0A:46:1D:C8:27:2E:F9:7C:80:7C:97:AF:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vKXoztU5UgpGHcgnLvl8gHyXr9Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/2e5665-996c-4748-b27d-c920b000f4e6/1/rbUXu6PzX9WWxRoKhHFAo9hhoCI.roa
Signing time: Sun 01 Jan 2023 09:35:00 +0000
ROA not before: Sun 01 Jan 2023 09:35:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 22773
IP address blocks: 2a03:cc40::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:af:38:86:23:05:6f:4f:7d:4a:97:0b:d1:24:96:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bca5e8ced539520a461dc8272ef97c807c97afd6
Validity
Not Before: Jan 1 09:35:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=adb517bba3f35fd596c51a0a847140a3d861a022
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:b1:d7:b3:d9:c9:2e:31:3c:42:1c:66:13:94:
bd:15:d9:d4:2c:94:74:e0:6e:45:ce:90:47:c9:d8:
2c:dc:1a:3e:40:66:e7:06:92:0b:f5:cf:36:df:76:
71:16:ea:9b:6f:fd:78:ce:dc:95:8a:4e:3b:06:24:
e7:d4:4c:45:a9:b9:26:a0:21:14:9c:4e:98:1b:b4:
f8:47:40:dd:ef:8e:77:c8:b8:79:aa:a4:22:a9:1d:
7d:fe:ce:aa:2e:ea:83:4a:31:c4:48:f9:8c:6e:ac:
39:49:25:ae:55:99:0c:0f:99:47:1d:1f:49:56:61:
95:95:57:93:41:6e:20:17:30:34:96:6d:82:86:96:
c6:67:0c:c6:34:51:49:a3:6e:0b:d8:e0:a2:e7:22:
14:7a:69:63:72:04:8e:a3:62:b5:78:ac:ed:62:97:
ef:3f:06:2a:63:27:11:38:eb:74:1b:d1:75:18:f1:
a0:66:94:0a:69:3a:73:22:98:dc:d1:64:12:08:14:
9a:9e:80:8b:6e:0b:fd:68:de:d8:f8:26:49:38:83:
da:88:1a:36:5e:6b:30:e9:48:58:2b:d8:0d:6b:76:
53:22:4c:8d:49:38:cb:aa:9c:0f:0e:fc:7e:1a:00:
18:c4:c6:b0:fd:6a:db:af:a1:0e:1d:f8:e0:3e:04:
1c:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:B5:17:BB:A3:F3:5F:D5:96:C5:1A:0A:84:71:40:A3:D8:61:A0:22
X509v3 Authority Key Identifier:
keyid:BC:A5:E8:CE:D5:39:52:0A:46:1D:C8:27:2E:F9:7C:80:7C:97:AF:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vKXoztU5UgpGHcgnLvl8gHyXr9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/2e5665-996c-4748-b27d-c920b000f4e6/1/rbUXu6PzX9WWxRoKhHFAo9hhoCI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/2e5665-996c-4748-b27d-c920b000f4e6/1/vKXoztU5UgpGHcgnLvl8gHyXr9Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:cc40::/29
Signature Algorithm: sha256WithRSAEncryption
ad:5b:67:a4:9f:84:43:8b:65:de:2e:90:24:91:83:7b:48:69:
d1:f9:46:1a:56:d4:b5:96:fe:d4:16:f4:d9:75:35:18:f1:00:
04:65:d3:47:d0:40:02:10:ee:f2:a0:a8:52:a2:2d:84:f3:87:
f8:df:62:2b:cd:37:a0:dc:ea:2e:91:8d:bb:e5:f2:76:bf:ba:
f1:29:2e:61:c6:42:a4:d1:d4:0b:93:ac:a1:08:ba:42:bb:3d:
51:40:f5:75:3b:22:bb:42:fe:bb:12:0f:3e:1b:e1:57:08:08:
f0:92:92:a0:e0:d0:32:00:59:da:fd:6b:fc:5f:ba:95:60:8d:
65:d2:e5:d1:9a:df:ec:04:e4:96:66:9a:e9:7d:61:10:49:d2:
4d:59:77:1b:aa:36:30:eb:73:36:0a:dd:dd:52:c5:f6:e5:76:
3f:05:ff:33:1a:94:e7:c1:4b:39:17:ac:4f:1b:0d:81:36:22:
57:00:3c:21:1a:1d:22:c2:61:3f:5d:38:d8:1f:95:70:d0:a4:
2b:5a:59:ea:6a:c3:36:75:c3:3e:38:bc:51:25:3d:83:df:fd:
9a:23:31:e7:60:ac:ab:2e:8f:f2:35:b9:5c:d7:03:1f:82:b7:
38:91:cf:ef:36:ed:98:8a:09:9a:e6:ce:f8:d6:23:d7:1e:fd:
bf:8f:cd:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:48:20 2025 by rpki-client