Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/003de2-cf9c-4803-ad56-ca6a44f9902b/1/OQkQRctsxxlCpXX1GOWBu4lLaKM.roa
File: OQkQRctsxxlCpXX1GOWBu4lLaKM.roa (raw, json)
Hash identifier: DJjeposIgBh+vXaeFYAUiMn0XgnSAtmP0Oa/lssC3Y0=
Subject key identifier: 39:09:10:45:CB:6C:C7:19:42:A5:75:F5:18:E5:81:BB:89:4B:68:A3
Certificate issuer: /CN=737c4c2cd4cc8d602539abbe931b57fb9735f05d
Certificate serial: 0133AC
Authority key identifier: 73:7C:4C:2C:D4:CC:8D:60:25:39:AB:BE:93:1B:57:FB:97:35:F0:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c3xMLNTMjWAlOau-kxtX-5c18F0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/003de2-cf9c-4803-ad56-ca6a44f9902b/1/OQkQRctsxxlCpXX1GOWBu4lLaKM.roa
Signing time: Thu 27 Jan 2022 11:30:28 +0000
ROA not before: Thu 27 Jan 2022 11:30:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209428
IP address blocks: 2a09:5ec0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78764 (0x133ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=737c4c2cd4cc8d602539abbe931b57fb9735f05d
Validity
Not Before: Jan 27 11:30:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=39091045cb6cc71942a575f518e581bb894b68a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:31:bd:4c:2d:88:84:aa:84:46:01:af:d8:ca:
13:6b:e2:c7:11:53:16:b2:5b:04:f6:32:a9:e5:2e:
72:85:b3:6c:46:1e:67:15:90:bf:40:e2:bf:cf:77:
ef:80:ce:e5:d7:22:48:dc:d5:43:ae:01:c8:f8:83:
41:5b:42:c4:c9:08:f3:e7:cd:af:5c:de:2c:20:9a:
c5:79:d5:cb:cc:79:ba:b8:1d:4a:ef:e2:d7:c9:61:
35:fb:27:93:bd:c2:bd:9f:50:1d:5b:a4:a7:ee:4a:
60:c7:fb:ce:ee:0a:48:35:cd:ff:fd:7a:2d:57:ef:
42:50:3e:31:a8:5b:03:e7:82:75:75:03:36:35:7d:
97:a8:71:36:7f:26:cf:ca:34:94:d6:20:a6:dd:96:
77:7f:af:3b:e1:54:5b:1a:1d:b4:6a:d0:2f:c5:d8:
2d:8b:7f:56:12:05:7a:63:85:40:df:fd:63:e8:de:
ee:04:9a:af:82:25:75:85:70:a1:a0:e8:17:eb:46:
64:2d:db:ba:7b:7a:ea:22:0e:ad:3d:d8:3b:8d:23:
69:20:4b:86:4c:9c:8d:16:1f:a1:02:a3:87:a8:ce:
39:81:a4:88:b0:6a:e0:7b:82:38:46:56:67:13:52:
29:30:6d:47:01:71:4d:7d:a2:b1:08:54:6b:e5:2d:
01:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:09:10:45:CB:6C:C7:19:42:A5:75:F5:18:E5:81:BB:89:4B:68:A3
X509v3 Authority Key Identifier:
keyid:73:7C:4C:2C:D4:CC:8D:60:25:39:AB:BE:93:1B:57:FB:97:35:F0:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3xMLNTMjWAlOau-kxtX-5c18F0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/003de2-cf9c-4803-ad56-ca6a44f9902b/1/OQkQRctsxxlCpXX1GOWBu4lLaKM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/003de2-cf9c-4803-ad56-ca6a44f9902b/1/c3xMLNTMjWAlOau-kxtX-5c18F0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:5ec0::/29
Signature Algorithm: sha256WithRSAEncryption
20:03:83:35:27:d3:f0:85:22:bd:6f:fd:8f:78:f0:a5:6b:aa:
0a:33:c2:5a:11:d3:fc:35:23:f1:20:b8:cf:16:82:e8:e1:4b:
72:42:c7:4c:08:42:dd:2b:2e:7a:f7:9d:9e:3a:33:2b:48:2b:
62:10:1b:2c:46:ec:ed:82:be:80:01:d4:cc:c4:ad:43:20:e9:
e7:2c:f5:c7:85:f0:2d:cc:a7:d9:3e:00:c4:ce:81:04:16:74:
56:20:61:44:ac:ab:be:f1:95:39:e6:72:85:30:81:dc:36:4e:
c1:9a:1f:08:d9:89:37:72:3b:ae:bf:26:1a:2a:55:f6:d0:31:
47:0e:3a:26:11:73:85:73:8a:e5:81:c7:47:17:80:01:20:77:
e9:1e:5a:7f:e9:cf:0b:28:fc:c2:0b:0d:ae:ce:ab:7e:c6:52:
28:a6:18:17:65:95:f2:09:1a:53:9e:28:c8:4a:92:8a:b4:a1:
ac:36:16:0c:46:c9:b2:82:bd:fd:98:b8:32:c8:b0:3a:2d:4d:
1f:86:cb:e8:a8:6f:f0:03:79:cc:e3:71:fc:d6:c1:74:61:c1:
78:cd:b7:7e:a8:f4:76:f0:4d:5a:74:33:a6:22:f8:84:30:2e:
74:92:09:30:be:f0:7c:90:79:d9:9c:7d:d5:73:39:19:d3:59:
4f:74:a9:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:32:27 2025 by rpki-client