Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/1-tdRtarTOGi2VSpKykHGR6kF8Vs.roa
File: 1-tdRtarTOGi2VSpKykHGR6kF8Vs.roa (raw, json)
Hash identifier: DZYYOwrgNDEJnmc0sBeJACV3zBiLNGpH/X82CVnMwLg=
Subject key identifier: FA:D7:51:B5:AA:D3:38:68:B6:55:2A:4A:CA:41:C6:47:A9:05:F1:5B
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 01857095808F54A6F7BB893B7178528AD882
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/1-tdRtarTOGi2VSpKykHGR6kF8Vs.roa
Signing time: Mon 02 Jan 2023 03:45:24 +0000
ROA not before: Mon 02 Jan 2023 03:45:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62165
IP address blocks: 2a02:128:5::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:80:8f:54:a6:f7:bb:89:3b:71:78:52:8a:d8:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 03:45:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fad751b5aad33868b6552a4aca41c647a905f15b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:a2:a7:f3:4c:83:a4:0f:ff:0e:05:ad:bf:1b:
82:d0:c0:10:15:96:d2:f3:a2:2f:b8:d0:1c:de:d8:
7a:5b:b8:b9:e3:fa:49:cb:1f:dd:72:98:21:94:6c:
a1:c5:3e:2a:22:54:c1:f2:b7:76:cc:ae:ee:b8:1a:
5c:b5:67:dd:39:88:57:73:cb:b3:39:1c:8f:c9:eb:
09:05:d9:86:16:af:f3:53:12:29:18:e7:6b:6e:73:
31:06:97:0a:b9:1f:4e:5f:ba:f1:df:d6:16:8e:06:
d8:01:2b:f2:db:3f:8d:bd:b8:0d:62:11:e6:38:33:
bf:63:07:8d:e9:b9:29:64:a0:e5:87:f1:fc:17:c0:
ff:ac:21:f7:cd:fb:0e:1e:a7:72:dc:69:83:05:5f:
28:7b:c8:4a:52:cc:5b:7f:ce:1f:59:f5:eb:06:19:
83:0e:72:f8:ad:d7:b1:53:e0:2d:7f:24:57:b1:0f:
10:14:35:bf:6d:04:90:a2:e0:58:f9:66:e6:81:37:
ff:85:84:b9:4b:9c:96:72:61:23:f3:43:4f:2e:dc:
73:b7:6e:d5:a5:1b:02:53:58:3f:20:43:2d:be:79:
d1:67:27:bf:8b:4b:c6:5a:a7:6b:2c:ab:04:32:b1:
e0:a5:76:9d:ef:d5:b9:18:2d:69:31:88:b3:3d:df:
75:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:D7:51:B5:AA:D3:38:68:B6:55:2A:4A:CA:41:C6:47:A9:05:F1:5B
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/1-tdRtarTOGi2VSpKykHGR6kF8Vs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:128:5::/48
Signature Algorithm: sha256WithRSAEncryption
30:bd:8f:f8:45:c5:5b:74:f1:af:c7:42:92:fb:1f:e8:6e:95:
2f:ac:47:7d:96:2d:18:0a:67:16:72:95:30:fd:e4:7c:93:df:
e2:0d:9b:83:46:49:53:78:aa:a9:c6:e1:65:b0:3c:ea:4d:13:
20:4f:00:88:3c:81:1f:c6:d7:fd:64:d5:5b:3e:6e:df:1f:db:
36:6b:79:23:c1:b5:7a:ee:40:88:7d:f7:ec:a0:50:13:52:52:
69:9a:54:3b:54:f7:31:d8:fa:64:9a:3f:b0:da:a6:72:85:d4:
f3:54:a7:53:62:d5:9d:f3:6c:c1:06:9c:dd:d9:7b:e3:99:9b:
c6:9c:07:eb:49:2d:b8:e0:cd:e3:df:65:f3:b2:ab:6a:61:5e:
04:04:d9:ba:19:6f:1a:86:6a:de:1b:3a:98:47:61:8a:c5:5f:
ba:f3:67:78:d3:56:f1:e8:b0:df:c2:2a:2d:ac:0b:e4:3c:86:
ce:da:b8:74:6b:c5:8b:e2:31:c9:f7:ef:50:6f:17:04:d9:55:
c7:81:c4:d7:5b:3a:27:2b:1f:db:e4:2a:7c:6b:e0:09:d0:31:
70:ca:30:b3:4a:32:2f:e8:c1:bf:2b:15:81:39:eb:4d:01:f9:
21:ff:ae:50:53:9b:3b:d5:a9:ad:79:53:1e:65:65:d4:76:78:
a5:7a:b2:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:34:29 2025 by rpki-client