Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/353bfa-abdb-444a-8154-4fc54b0baa78/1/lNVsObR5ZMX4JZTAjuMZb1ZN0Pg.roa
File: lNVsObR5ZMX4JZTAjuMZb1ZN0Pg.roa (raw, json)
Hash identifier: 3aGipyVqCsMrnZhZBJlc8IMv/tq+yHpLpjC9TR2Qq44=
Subject key identifier: 94:D5:6C:39:B4:79:64:C5:F8:25:94:C0:8E:E3:19:6F:56:4D:D0:F8
Certificate issuer: /CN=5ef104fc4b0b5c08272e3ae783b8cd777ba2aa90
Certificate serial: 018C823B0B8E49F3DEC2101E8EC4CB382438
Authority key identifier: 5E:F1:04:FC:4B:0B:5C:08:27:2E:3A:E7:83:B8:CD:77:7B:A2:AA:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XvEE_EsLXAgnLjrng7jNd3uiqpA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/353bfa-abdb-444a-8154-4fc54b0baa78/1/lNVsObR5ZMX4JZTAjuMZb1ZN0Pg.roa
Signing time: Tue 19 Dec 2023 13:19:16 +0000
ROA not before: Tue 19 Dec 2023 13:19:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 215889
IP address blocks: 2a11:a580::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:82:3b:0b:8e:49:f3:de:c2:10:1e:8e:c4:cb:38:24:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ef104fc4b0b5c08272e3ae783b8cd777ba2aa90
Validity
Not Before: Dec 19 13:19:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=94d56c39b47964c5f82594c08ee3196f564dd0f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:d2:0a:5e:68:a7:53:6e:fd:46:ef:8a:5c:30:
b3:5f:29:b2:63:1e:52:fb:b1:e5:99:cb:37:c7:21:
38:08:86:4e:92:44:07:ff:c6:82:3c:b5:32:71:4f:
a6:33:36:31:b2:d0:7a:2a:48:72:22:2a:fd:fb:c8:
b1:d2:21:6a:63:8e:8a:e0:60:5f:9a:cc:00:db:74:
29:39:b9:2f:b2:66:a1:97:d3:50:52:9e:92:e8:19:
af:78:a1:c9:25:e0:01:0d:3e:24:6c:9f:61:67:f1:
d3:d0:9a:7e:62:1c:44:c3:d6:99:4b:be:40:33:3d:
20:1a:fa:04:77:84:43:15:bc:76:39:bb:46:8a:b7:
77:7c:8e:ad:35:af:82:90:58:5e:a4:27:ce:91:81:
0b:81:60:24:1e:f1:ca:87:cb:04:7e:cd:f5:60:65:
2b:3a:84:a4:14:a0:78:8c:56:85:f3:1a:94:a3:bb:
b8:1b:81:8a:a3:32:58:fb:52:b7:b4:da:30:c1:b9:
c0:ee:0f:00:90:82:6a:ff:c4:60:60:ff:e9:77:5f:
26:05:3e:60:69:a4:ec:19:d6:fe:89:eb:2f:a2:cb:
e1:0f:8c:0b:dd:87:3b:ed:ad:e6:ea:ad:4a:e2:18:
46:96:1d:ad:de:97:b7:80:9b:86:0e:66:de:a0:fb:
2d:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:D5:6C:39:B4:79:64:C5:F8:25:94:C0:8E:E3:19:6F:56:4D:D0:F8
X509v3 Authority Key Identifier:
keyid:5E:F1:04:FC:4B:0B:5C:08:27:2E:3A:E7:83:B8:CD:77:7B:A2:AA:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XvEE_EsLXAgnLjrng7jNd3uiqpA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/353bfa-abdb-444a-8154-4fc54b0baa78/1/lNVsObR5ZMX4JZTAjuMZb1ZN0Pg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/353bfa-abdb-444a-8154-4fc54b0baa78/1/XvEE_EsLXAgnLjrng7jNd3uiqpA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:a580::/32
Signature Algorithm: sha256WithRSAEncryption
6c:40:04:e3:d2:d3:9b:23:44:fa:56:e9:96:60:99:d2:7b:24:
57:f8:4c:fd:db:dd:71:bd:3e:04:bf:54:3a:38:8d:13:ee:a2:
b4:7c:71:f9:fc:94:00:49:67:6c:35:a0:d6:d2:ca:29:05:62:
66:9e:7d:16:34:83:65:e0:1e:dc:20:38:af:2b:a4:50:bf:e6:
ca:8b:af:cf:fa:3a:3a:dc:3e:64:49:88:5f:88:de:5a:f2:32:
ba:a8:e0:47:bc:49:3d:72:ae:99:f4:33:c5:2a:dd:48:6d:22:
e6:ee:39:f3:b1:9a:c5:03:86:c0:65:4c:3e:af:40:3f:33:ed:
a3:66:3d:b8:69:e0:b1:36:4f:6d:5c:39:da:06:10:95:2f:df:
e7:b0:08:b8:2d:71:00:59:f1:f7:32:83:a8:36:a5:72:21:1a:
bf:bb:d4:d4:e4:30:9d:ef:23:15:d6:76:3f:07:0e:71:93:95:
f0:c7:e4:a4:ff:e2:d0:6e:42:9f:72:ce:f0:de:53:de:b1:da:
d9:eb:d1:4c:64:be:53:ef:5a:a8:94:f3:36:6c:21:3f:00:5f:
8f:8a:59:be:b6:8d:49:38:d0:c4:fe:4c:7d:f8:11:a3:e7:83:
54:01:2e:78:77:06:5d:2b:62:50:25:4b:68:f2:02:08:b3:ca:
2f:f0:24:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:58:53 2025 by rpki-client