Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/5167d1-fbbd-4e07-b879-4bd1a58d2581/1/7fbtb3nRfHCTT-befXJ4bImKv_E.roa
File: 7fbtb3nRfHCTT-befXJ4bImKv_E.roa (raw, json)
Hash identifier: Jh/NWQZQEiI4H2mfKnbWC3EoRx3bjU28L54d9OjDmRU=
Subject key identifier: ED:F6:ED:6F:79:D1:7C:70:93:4F:E6:DE:7D:72:78:6C:89:8A:BF:F1
Certificate issuer: /CN=35f8bc084d0698757c82fd461e99b97c142bfb22
Certificate serial: 0432906B
Authority key identifier: 35:F8:BC:08:4D:06:98:75:7C:82:FD:46:1E:99:B9:7C:14:2B:FB:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nfi8CE0GmHV8gv1GHpm5fBQr-yI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/5167d1-fbbd-4e07-b879-4bd1a58d2581/1/7fbtb3nRfHCTT-befXJ4bImKv_E.roa
Signing time: Sat 01 Jan 2022 11:57:18 +0000
ROA not before: Sat 01 Jan 2022 11:57:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34907
IP address blocks: 2a10:53c0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70422635 (0x432906b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35f8bc084d0698757c82fd461e99b97c142bfb22
Validity
Not Before: Jan 1 11:57:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=edf6ed6f79d17c70934fe6de7d72786c898abff1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:65:29:d1:98:61:8b:57:70:b1:af:f5:84:90:
dc:ea:2f:3f:16:17:d2:32:c9:65:8b:a9:d6:67:c9:
e6:84:23:02:72:a5:90:00:7e:26:e3:e3:60:2d:83:
7d:b3:a9:e4:c3:d9:97:3d:84:a4:e7:ac:16:7b:40:
33:66:ad:bc:bd:8a:a9:eb:b4:3b:66:9f:7d:cc:d4:
fb:3a:e9:59:8a:4a:cb:0a:59:48:98:2d:dc:bc:a5:
78:cd:21:2e:07:5d:f6:35:53:42:b5:57:e6:ef:8b:
1f:57:17:b9:71:43:f1:ab:0f:0c:89:81:2e:6d:80:
8c:62:1f:dd:09:d2:30:12:fe:89:6b:fa:23:73:7e:
84:d5:c2:6a:c1:8b:35:3e:07:b5:00:2a:1a:c1:a0:
78:60:ec:fb:dd:ea:77:4c:5c:08:e4:d5:2a:7e:4a:
49:22:a4:68:2d:83:13:f3:c0:5e:32:98:d7:ce:50:
31:ca:b1:69:5f:4d:08:bc:d6:4f:74:8b:0f:fc:9a:
cf:7b:ea:d7:7e:e2:99:30:77:1c:c3:01:49:f7:df:
28:19:b1:66:86:9c:8f:b1:7f:f1:cb:70:c5:13:c7:
3c:f3:4c:4d:48:a6:a3:0f:48:c8:06:ff:56:3d:02:
53:9a:c7:ff:de:2b:94:14:64:68:ff:76:c2:83:d3:
b8:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:F6:ED:6F:79:D1:7C:70:93:4F:E6:DE:7D:72:78:6C:89:8A:BF:F1
X509v3 Authority Key Identifier:
keyid:35:F8:BC:08:4D:06:98:75:7C:82:FD:46:1E:99:B9:7C:14:2B:FB:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nfi8CE0GmHV8gv1GHpm5fBQr-yI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/5167d1-fbbd-4e07-b879-4bd1a58d2581/1/7fbtb3nRfHCTT-befXJ4bImKv_E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/5167d1-fbbd-4e07-b879-4bd1a58d2581/1/Nfi8CE0GmHV8gv1GHpm5fBQr-yI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:53c0::/29
Signature Algorithm: sha256WithRSAEncryption
05:8b:4c:99:97:8f:2f:07:8c:7f:56:72:02:ff:36:5f:c2:84:
0a:9b:fe:64:5b:c1:80:96:31:6e:a8:60:32:42:86:8f:ce:33:
a2:4a:df:10:ae:ca:35:52:92:55:30:3e:c7:8b:b5:7e:76:7d:
c2:c2:bc:67:9b:5f:f6:c7:3e:ce:b9:2f:aa:3d:c2:42:6d:37:
17:83:cc:a8:9a:24:a8:25:78:91:e9:f4:86:6d:f0:0c:d5:21:
15:a6:f6:fa:d8:4e:a6:db:e1:ef:42:dd:b3:a1:51:77:18:fe:
95:dc:c7:a3:24:f0:9f:94:03:54:e0:eb:6b:51:6f:08:f7:c6:
d3:f0:f3:8a:55:d6:a6:ce:50:6c:14:ed:fd:ec:71:64:5a:a6:
ed:46:63:4f:d8:45:93:a2:54:94:ab:bd:54:14:bd:d2:23:e4:
d7:3c:d6:c4:92:1a:e9:e2:e5:e7:73:5b:c8:cc:93:1b:59:2d:
b2:85:1d:c9:94:ba:44:b6:9a:42:ad:78:1e:c7:e1:ca:46:5c:
94:14:27:b0:92:7a:c5:ea:a6:f8:c1:b5:73:f3:47:56:17:ab:
ad:1e:f4:58:30:bd:5f:6c:28:8c:a7:98:dc:0c:b1:f8:11:6a:
85:7f:71:af:e1:49:92:e0:fa:32:cc:f7:62:1a:9e:24:f2:73:
0f:c5:05:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:42:03 2025 by rpki-client