Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/WJ_nEIq9aaiVhkzZ1eVk5glvH7E.roa
File: WJ_nEIq9aaiVhkzZ1eVk5glvH7E.roa (raw, json)
Hash identifier: 0ccVV8zx3+5sUuUzJpceeTKBj66jsGIsllonWEiGc7c=
Subject key identifier: 58:9F:E7:10:8A:BD:69:A8:95:86:4C:D9:D5:E5:64:E6:09:6F:1F:B1
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 27ABC56C
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/WJ_nEIq9aaiVhkzZ1eVk5glvH7E.roa
Signing time: Sat 01 Jan 2022 16:08:34 +0000
ROA not before: Sat 01 Jan 2022 16:08:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49465
IP address blocks: 2a02:128:16::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 665568620 (0x27abc56c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:08:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=589fe7108abd69a895864cd9d5e564e6096f1fb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:94:30:50:62:06:fd:91:42:0e:85:4b:7e:41:
b2:1a:9f:54:b7:b4:13:e9:3e:d2:72:0c:a2:33:39:
3b:2d:bc:d4:11:1d:b0:be:3b:65:ef:7a:30:11:26:
fc:2f:ab:4f:20:76:55:4a:b8:2f:75:c4:9a:2e:02:
a1:ba:54:e2:e1:99:f3:da:5f:7f:02:0a:af:65:00:
bf:8c:ee:53:05:8a:0f:a4:5b:e8:4a:61:29:37:f8:
0a:c0:00:b9:ba:38:3c:cf:7c:e0:9a:68:35:90:69:
dd:7b:a9:ba:92:fc:b1:9a:fe:5d:d2:a8:8a:3f:9d:
9e:01:e1:1a:5e:ce:06:76:9e:00:95:ea:a7:05:4c:
ac:16:2c:eb:76:b3:83:f6:54:3a:3c:3c:fd:b7:79:
e5:74:69:4b:71:86:d7:94:ff:60:c6:14:89:dc:c3:
33:76:ec:5a:f1:fa:40:dc:84:b6:da:16:0c:eb:7d:
95:09:30:ea:16:f5:57:6e:f0:c4:65:bc:18:95:8f:
34:15:73:be:6e:b7:57:69:ee:95:07:70:b3:86:18:
40:fa:dd:ea:f9:d1:b1:97:e8:44:68:9a:ba:a6:06:
76:a5:c4:f0:69:7c:1d:42:33:72:41:79:6b:1c:90:
d6:99:bf:ac:7c:fd:b8:85:7d:a5:27:4c:81:25:35:
b6:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:9F:E7:10:8A:BD:69:A8:95:86:4C:D9:D5:E5:64:E6:09:6F:1F:B1
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/WJ_nEIq9aaiVhkzZ1eVk5glvH7E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:128:16::/48
Signature Algorithm: sha256WithRSAEncryption
1f:dd:8f:e2:1b:3c:a2:46:ad:7a:d7:8e:03:a6:b8:9e:b1:60:
c6:0a:0c:aa:86:e7:63:3c:28:ca:b0:f3:72:fc:b4:42:51:72:
7c:db:4c:06:97:54:27:1c:e2:18:60:c7:36:bf:5d:53:af:10:
a3:fe:98:d6:86:7a:57:3b:4f:13:82:74:8a:69:b6:6b:fc:49:
82:2d:af:da:f3:b5:63:a8:15:3e:94:55:cd:e3:bf:f2:0d:4a:
d9:85:e4:7d:b6:e3:8e:36:32:9d:8d:44:77:3b:88:4a:9e:db:
cd:d9:1c:2e:e9:40:97:b5:40:ec:51:16:43:c6:71:9b:09:6c:
0d:3e:4d:60:ae:85:f2:7f:d2:50:26:6b:44:02:9b:83:7f:a0:
c1:d5:9a:a0:b0:c5:84:eb:5b:42:b7:4d:34:15:2e:6e:6d:68:
3a:08:2b:97:14:ac:ec:10:df:eb:11:6a:58:b1:ae:b4:1c:35:
4e:ae:f2:1a:55:c1:8c:82:27:ee:bc:9c:0a:bd:d7:22:9b:9d:
ae:2b:e2:e1:c3:78:0b:6f:1f:ae:04:53:58:f7:ab:60:fd:51:
ef:75:91:99:3b:02:f9:be:bb:9c:67:df:cd:b1:fc:51:86:fc:
8b:73:26:8d:2a:cc:2d:e5:1c:1e:db:1e:bb:c3:3a:31:ea:40:
e4:a8:39:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:58:18 2025 by rpki-client