Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/7718fe-79a7-4eee-a729-d06d28640d08/1/vqIvBfqUTpDi19dJWu8YVlr9DP0.roa
File: vqIvBfqUTpDi19dJWu8YVlr9DP0.roa (raw, json)
Hash identifier: jev/H8fxU7qDz8WNTdLALMqooN9iJ93yGvC1Pp1UX9Y=
Subject key identifier: BE:A2:2F:05:FA:94:4E:90:E2:D7:D7:49:5A:EF:18:56:5A:FD:0C:FD
Certificate issuer: /CN=5afc91718462e5de210097413199d6ce1365776c
Certificate serial: 018237125152F966DC1672F20D6822E94143
Authority key identifier: 5A:FC:91:71:84:62:E5:DE:21:00:97:41:31:99:D6:CE:13:65:77:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WvyRcYRi5d4hAJdBMZnWzhNld2w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/7718fe-79a7-4eee-a729-d06d28640d08/1/vqIvBfqUTpDi19dJWu8YVlr9DP0.roa
Signing time: Mon 25 Jul 2022 20:35:23 +0000
ROA not before: Mon 25 Jul 2022 20:35:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 2a12:6800::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:37:12:51:52:f9:66:dc:16:72:f2:0d:68:22:e9:41:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5afc91718462e5de210097413199d6ce1365776c
Validity
Not Before: Jul 25 20:35:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bea22f05fa944e90e2d7d7495aef18565afd0cfd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:51:70:c4:32:17:e2:c1:b8:ec:6f:65:2d:ce:
4d:85:45:40:51:2b:08:a8:3d:73:97:c0:7b:3d:5b:
4b:36:3e:93:a1:e8:bc:56:9c:78:3a:cd:55:46:c4:
cc:72:fe:23:14:c7:0b:ce:60:f6:c8:99:f2:20:4d:
d0:cd:f0:61:98:0c:66:70:bd:2f:3a:ea:b1:bb:ba:
3d:ef:c7:68:8e:4b:79:2f:83:42:3d:23:c3:ae:18:
52:24:90:a0:81:1f:4f:5a:40:4f:a3:18:45:4b:42:
82:d2:fe:4e:20:90:a8:d7:06:ff:de:d3:dc:88:4f:
5b:83:1f:4a:01:60:9d:22:d7:c2:a2:c5:87:d5:43:
a0:38:3b:b8:62:93:1f:a5:37:0c:28:39:c4:30:2e:
d7:e2:02:31:6d:b6:b5:e7:9a:c2:d5:dd:a4:bd:5e:
85:91:66:50:09:b2:39:7f:28:43:c9:a4:0c:41:97:
d8:f3:15:d4:b5:6d:df:3a:ec:9c:00:26:0f:f8:5e:
2a:7d:60:d5:14:18:50:c6:c1:6c:72:16:27:88:16:
bb:8f:23:d4:2b:19:88:0a:81:54:c5:7b:56:ec:94:
10:ea:c1:a1:48:cb:a3:66:ce:64:33:bc:c9:8c:50:
60:b9:18:43:a5:60:3e:59:02:e9:20:62:72:d2:4c:
a5:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:A2:2F:05:FA:94:4E:90:E2:D7:D7:49:5A:EF:18:56:5A:FD:0C:FD
X509v3 Authority Key Identifier:
keyid:5A:FC:91:71:84:62:E5:DE:21:00:97:41:31:99:D6:CE:13:65:77:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WvyRcYRi5d4hAJdBMZnWzhNld2w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/7718fe-79a7-4eee-a729-d06d28640d08/1/vqIvBfqUTpDi19dJWu8YVlr9DP0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/7718fe-79a7-4eee-a729-d06d28640d08/1/WvyRcYRi5d4hAJdBMZnWzhNld2w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:6800::/29
Signature Algorithm: sha256WithRSAEncryption
7a:15:d8:92:bc:a2:f8:34:db:4b:52:64:ac:54:b7:ac:6b:2d:
4b:5a:47:fb:b0:82:5b:fb:2b:d9:80:e3:1c:db:29:eb:d4:e3:
83:99:5e:aa:18:20:ee:ad:c6:40:e8:88:2f:8e:01:99:e1:26:
2d:32:7c:de:e2:cb:d4:4a:22:0d:54:4d:78:2e:7c:b5:54:27:
92:59:ae:d4:7d:a8:6d:82:b9:aa:3f:1a:51:77:bd:b7:bd:9b:
6a:60:fb:2d:25:48:d4:28:f1:98:a0:c0:d8:46:32:0b:3a:ed:
42:34:eb:29:5e:f3:5f:c5:0f:63:d1:49:40:12:cd:70:86:01:
1f:48:a6:8f:14:e4:c1:e3:d9:b8:4f:2b:4b:13:b6:30:4b:b3:
47:92:e5:89:ee:c8:54:45:53:61:01:b9:48:3c:17:61:b7:7c:
3b:09:af:1f:97:38:e4:7d:ad:83:15:66:d6:e8:b1:4e:1d:b1:
83:fa:d5:98:e9:f3:46:f4:ff:37:a5:80:0e:9d:9d:f7:4d:00:
14:2f:16:db:76:84:08:01:26:22:c5:cb:c7:5c:f2:4b:e0:32:
d0:36:b5:33:29:0f:2a:47:ba:bb:c9:f7:50:96:c6:bf:13:55:
a7:a1:b3:f0:e7:10:1f:62:c3:4b:2b:33:6d:62:85:8a:1b:8d:
c3:5a:02:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:58:04 2025 by rpki-client