Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/7690b7-df00-4bd8-9ca7-a718514c58ca/1/8LO0A6HH1wcsKqiLIzFWOtAiyNE.roa
File: 8LO0A6HH1wcsKqiLIzFWOtAiyNE.roa (raw, json)
Hash identifier: mVc2pNGHkwIm1RHzYTa1LMdeUI3YXX2NCKUmmPJJFXA=
Subject key identifier: F0:B3:B4:03:A1:C7:D7:07:2C:2A:A8:8B:23:31:56:3A:D0:22:C8:D1
Certificate issuer: /CN=1637a493bc2025bf080c0b5e242e61e417670e86
Certificate serial: 01856F9499E7643CD66FCBADDA5703AB48B8
Authority key identifier: 16:37:A4:93:BC:20:25:BF:08:0C:0B:5E:24:2E:61:E4:17:67:0E:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fjekk7wgJb8IDAteJC5h5BdnDoY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/7690b7-df00-4bd8-9ca7-a718514c58ca/1/8LO0A6HH1wcsKqiLIzFWOtAiyNE.roa
Signing time: Sun 01 Jan 2023 23:04:47 +0000
ROA not before: Sun 01 Jan 2023 23:04:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 22773
IP address blocks: 2a12:8d80::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:94:99:e7:64:3c:d6:6f:cb:ad:da:57:03:ab:48:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1637a493bc2025bf080c0b5e242e61e417670e86
Validity
Not Before: Jan 1 23:04:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f0b3b403a1c7d7072c2aa88b2331563ad022c8d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:d4:98:44:1e:7a:4f:57:1f:ba:23:84:80:14:
29:d1:86:a8:44:3b:49:1b:e5:92:22:dc:9e:f6:db:
87:40:d2:eb:0f:96:8b:ba:84:ba:cd:ea:25:b8:c5:
ee:6a:d8:77:5a:69:0d:d2:2b:20:10:12:9b:1e:c2:
09:6c:6c:d4:9d:84:fc:52:62:d3:c0:60:18:d5:9f:
db:e3:4d:3a:8c:cd:39:95:99:36:1b:7e:9b:ec:c4:
ea:2e:54:c6:a0:17:d4:ff:48:58:e0:df:ca:b2:2c:
91:10:e5:be:29:2a:f7:6f:02:91:a6:de:26:6c:d4:
8a:62:38:58:74:49:39:6c:fa:70:ef:90:31:d6:75:
ba:77:81:d0:f6:aa:b2:20:62:b5:dc:a9:bf:3d:2c:
f0:06:85:99:19:11:02:59:da:c8:d1:62:c1:e5:cd:
d6:66:69:00:33:af:26:cc:e0:1e:ce:73:a2:83:02:
13:c4:25:65:d4:97:ad:55:6b:a0:31:d3:a2:9c:cf:
02:a8:01:27:7f:14:a7:e6:e3:39:ec:e3:10:25:49:
3c:d0:1c:db:2d:3a:0e:06:94:05:e4:44:1a:2e:77:
6a:c4:d0:2a:92:10:48:bd:d7:e6:75:fb:b4:94:8c:
c2:58:cf:9a:e0:6f:ef:2e:01:c5:51:03:57:2a:d8:
0f:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:B3:B4:03:A1:C7:D7:07:2C:2A:A8:8B:23:31:56:3A:D0:22:C8:D1
X509v3 Authority Key Identifier:
keyid:16:37:A4:93:BC:20:25:BF:08:0C:0B:5E:24:2E:61:E4:17:67:0E:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fjekk7wgJb8IDAteJC5h5BdnDoY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/7690b7-df00-4bd8-9ca7-a718514c58ca/1/8LO0A6HH1wcsKqiLIzFWOtAiyNE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/7690b7-df00-4bd8-9ca7-a718514c58ca/1/Fjekk7wgJb8IDAteJC5h5BdnDoY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:8d80::/29
Signature Algorithm: sha256WithRSAEncryption
13:68:3e:4a:9d:e2:79:c2:b2:ab:3d:57:e8:54:fe:1c:63:40:
92:70:99:30:d8:d1:14:f4:eb:26:23:46:02:0d:a6:48:b8:31:
7f:4f:24:e0:45:7f:c0:91:3e:30:73:7f:79:71:8d:26:af:53:
f5:3b:4d:1d:85:de:77:29:b4:4d:26:0a:57:16:c2:a7:ef:eb:
6a:b5:de:b1:42:9b:a3:cb:a5:9c:6e:8c:22:1b:7c:d4:a6:b0:
1c:99:22:cd:6e:26:d2:92:03:ad:27:81:d9:3d:10:3c:ff:1d:
ed:bf:d7:e3:2a:40:77:04:36:ef:9b:a6:95:71:e8:31:97:ab:
41:9a:a5:5e:d4:d0:c7:e4:f7:0f:83:e1:34:85:1f:f6:d9:47:
8c:a0:52:c3:6c:f1:8e:30:26:8e:56:f6:68:51:ea:29:31:b6:
ff:cb:4d:ad:ee:4a:b9:88:88:25:39:34:01:ad:55:2a:31:c3:
94:3d:cd:79:df:a0:d6:5f:4c:43:c5:60:9c:8f:ef:3e:51:60:
ec:a6:f4:4f:58:ae:6a:e7:4f:e2:2a:b6:4a:07:51:b8:4a:22:
43:0c:1c:82:70:03:6b:74:fb:d0:f6:68:b2:67:5a:f2:76:42:
86:9c:68:ad:90:15:78:61:e5:f3:38:88:ed:25:12:4a:98:bf:
34:41:ba:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 03:34:26 2025 by rpki-client