Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/84b507-942e-43d6-b430-873d5907b94a/1/lE4zDYUARPGqZLs5OAk56RXH_0A.roa
File: lE4zDYUARPGqZLs5OAk56RXH_0A.roa (raw, json)
Hash identifier: XzmwmE3z55DGbzGz5f6m20SqYPkr6CwIpvpeD+vpYec=
Subject key identifier: 94:4E:33:0D:85:00:44:F1:AA:64:BB:39:38:09:39:E9:15:C7:FF:40
Certificate issuer: /CN=4e99f4c2ebd4979bfd461530a38e23540bf9578d
Certificate serial: 0186EE441ED57187C7A82E63C279BB4DF979
Authority key identifier: 4E:99:F4:C2:EB:D4:97:9B:FD:46:15:30:A3:8E:23:54:0B:F9:57:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tpn0wuvUl5v9RhUwo44jVAv5V40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/84b507-942e-43d6-b430-873d5907b94a/1/lE4zDYUARPGqZLs5OAk56RXH_0A.roa
Signing time: Fri 17 Mar 2023 06:31:27 +0000
ROA not before: Fri 17 Mar 2023 06:31:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29491
IP address blocks: 2a11:95c0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ee:44:1e:d5:71:87:c7:a8:2e:63:c2:79:bb:4d:f9:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e99f4c2ebd4979bfd461530a38e23540bf9578d
Validity
Not Before: Mar 17 06:31:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=944e330d850044f1aa64bb39380939e915c7ff40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:49:01:79:d6:5a:ce:1d:bc:64:d5:72:3b:a5:
9c:fd:ab:71:e6:2c:46:79:83:55:10:36:02:1e:5d:
22:16:b1:8d:34:c3:a7:e2:15:d3:c4:17:6c:95:49:
9f:fb:ff:98:86:51:8d:f6:ae:eb:62:f0:ab:93:8f:
3f:9d:ad:94:ce:5f:cc:6b:ab:d3:b2:68:20:cd:83:
4c:0c:c1:af:6f:88:98:0b:9f:38:3d:d7:86:4e:85:
2c:c6:c0:f7:84:39:b5:74:b6:ed:31:b4:f1:4c:b3:
75:52:2a:6b:b3:54:44:6a:bc:40:2c:f2:69:a1:9c:
1e:a8:56:5a:4a:23:4f:63:da:35:44:f7:02:7e:51:
de:25:80:f6:5a:f5:7c:ce:56:f8:84:4c:72:82:76:
44:83:cf:50:d3:e3:a0:fe:18:bc:5d:e1:3b:79:f9:
67:b2:b2:90:37:48:db:71:3a:02:5e:b9:53:23:ad:
16:0b:75:9a:fa:de:e5:5b:b4:1d:89:c9:e5:db:22:
22:a2:39:d8:08:1c:dd:c4:ae:b7:68:a3:23:52:9c:
7c:29:e2:45:fd:42:bf:e9:73:20:db:e5:1e:46:dd:
e1:50:4c:d8:a1:87:ec:e3:b3:4a:c9:53:ee:3e:99:
75:32:d9:09:1e:14:c2:a9:0b:cb:c5:46:39:86:c3:
5d:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:4E:33:0D:85:00:44:F1:AA:64:BB:39:38:09:39:E9:15:C7:FF:40
X509v3 Authority Key Identifier:
keyid:4E:99:F4:C2:EB:D4:97:9B:FD:46:15:30:A3:8E:23:54:0B:F9:57:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tpn0wuvUl5v9RhUwo44jVAv5V40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/84b507-942e-43d6-b430-873d5907b94a/1/lE4zDYUARPGqZLs5OAk56RXH_0A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/84b507-942e-43d6-b430-873d5907b94a/1/Tpn0wuvUl5v9RhUwo44jVAv5V40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:95c0::/29
Signature Algorithm: sha256WithRSAEncryption
ba:46:30:16:cd:b1:86:7b:74:b5:90:d2:4c:a1:09:03:75:16:
ec:f2:3f:3f:f4:7c:ee:2b:62:88:7e:c2:56:60:62:35:df:33:
d8:38:31:35:06:04:28:16:6c:fc:93:96:f5:52:7e:c9:d7:a2:
db:d4:4d:14:5e:e3:a5:25:82:ce:8d:75:8e:55:dd:8a:e9:27:
ba:8d:63:76:a9:51:b5:4d:0d:a8:36:a0:9e:89:47:5d:6d:23:
bd:f6:77:a8:3e:aa:00:a2:5e:84:c8:bd:ec:b7:a6:d2:8a:53:
1e:8a:aa:fc:a8:9f:9e:cc:6c:0c:6c:01:22:d5:75:12:36:1d:
00:b7:03:5b:dd:57:af:88:79:6a:81:41:8a:10:f1:ca:cf:74:
a0:c5:bc:3f:3b:b6:44:22:e9:8d:8a:2c:7f:6e:7d:87:cd:46:
22:b2:a6:7c:48:3c:2c:a5:c2:19:ea:f0:7b:ac:ba:93:08:68:
30:b2:e6:3b:59:fc:fa:25:52:a0:c8:dc:ae:9f:56:e9:2f:e1:
7a:28:6c:c4:91:2b:33:c0:63:51:30:6d:cb:8b:99:b8:53:13:
4d:58:7a:80:c9:ce:b4:f3:17:83:63:82:87:b4:75:97:8d:01:
18:65:07:92:f7:36:70:ef:9e:29:fd:d7:eb:bd:e0:2f:e6:f9:
6c:6d:8e:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:22:09 2025 by rpki-client