Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/a9bd50-b4a4-4063-8436-4e2a8f84aeed/1/VtFAoX8QG6aDYWtGO_JR6ohWc54.roa
File: VtFAoX8QG6aDYWtGO_JR6ohWc54.roa (raw, json)
Hash identifier: tNy13A2z7pJHI/IYAYD75EKWHs/fXGSney62qLgJ3CY=
Subject key identifier: 56:D1:40:A1:7F:10:1B:A6:83:61:6B:46:3B:F2:51:EA:88:56:73:9E
Certificate issuer: /CN=ec79a7b54c8c94d06ca2f685971a2449fb8fcece
Certificate serial: 0189AB7EE7035391FD813684F35C04EA5707
Authority key identifier: EC:79:A7:B5:4C:8C:94:D0:6C:A2:F6:85:97:1A:24:49:FB:8F:CE:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7HmntUyMlNBsovaFlxokSfuPzs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/a9bd50-b4a4-4063-8436-4e2a8f84aeed/1/VtFAoX8QG6aDYWtGO_JR6ohWc54.roa
Signing time: Mon 31 Jul 2023 10:29:27 +0000
ROA not before: Mon 31 Jul 2023 10:29:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57338
IP address blocks: 2a13:9644:20::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:ab:7e:e7:03:53:91:fd:81:36:84:f3:5c:04:ea:57:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec79a7b54c8c94d06ca2f685971a2449fb8fcece
Validity
Not Before: Jul 31 10:29:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=56d140a17f101ba683616b463bf251ea8856739e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:63:b5:fe:0e:ab:e9:4f:99:52:78:27:9d:32:
7a:9b:4c:85:94:73:5c:34:de:bc:32:c2:25:08:f5:
d5:8b:12:44:1a:3f:65:d8:94:dc:4e:31:55:51:f7:
2e:cb:ea:39:e9:16:be:cb:b4:15:7f:a4:09:0d:dc:
ae:c4:1c:49:5f:4f:ea:33:82:88:5b:64:db:b9:53:
85:2f:3a:c1:5e:82:a6:84:47:3c:98:b1:b7:e6:1b:
b4:c2:92:87:25:3f:7c:bf:fb:d6:3e:d1:82:e4:e3:
f7:c6:0f:8c:84:d2:02:89:64:fd:71:71:49:5d:3b:
d6:47:b4:8c:a7:44:3c:ed:56:21:97:90:03:a6:46:
b0:c3:84:b2:33:57:1e:da:bf:ed:17:50:9f:aa:c2:
a5:2e:cb:43:e9:97:bc:31:cd:dc:47:62:fc:74:72:
b2:63:73:50:04:18:5c:63:1d:d9:a1:bb:3e:bc:d1:
d3:97:5f:ef:0f:df:25:92:54:42:10:c2:ff:7b:a9:
1b:5b:86:0c:60:64:ca:bd:7e:45:56:1c:97:f8:37:
93:25:f3:19:c7:26:5d:04:12:7e:19:0c:30:d2:8c:
e5:5f:b8:95:0c:3b:b1:49:3a:6f:3a:a6:9f:a1:d6:
87:29:40:2e:06:a0:88:83:60:64:f7:51:8c:f0:aa:
2d:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:D1:40:A1:7F:10:1B:A6:83:61:6B:46:3B:F2:51:EA:88:56:73:9E
X509v3 Authority Key Identifier:
keyid:EC:79:A7:B5:4C:8C:94:D0:6C:A2:F6:85:97:1A:24:49:FB:8F:CE:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7HmntUyMlNBsovaFlxokSfuPzs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/a9bd50-b4a4-4063-8436-4e2a8f84aeed/1/VtFAoX8QG6aDYWtGO_JR6ohWc54.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/a9bd50-b4a4-4063-8436-4e2a8f84aeed/1/7HmntUyMlNBsovaFlxokSfuPzs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9644:20::/48
Signature Algorithm: sha256WithRSAEncryption
c9:86:b8:3e:54:1c:95:fa:cd:cc:8c:52:85:fc:02:7b:ef:2b:
d6:83:38:6b:db:bb:ec:fe:22:5c:cd:c0:3f:cb:6f:30:23:dd:
72:3a:38:e5:44:ec:90:84:4a:07:cd:28:fe:69:a8:31:6e:3b:
08:03:c1:52:f5:62:a0:40:f7:86:dc:77:b9:23:ac:46:d7:2d:
4f:b1:88:7d:a2:6b:fe:88:32:0e:c9:cf:39:30:81:25:b0:3c:
d1:d8:d5:c9:8e:a1:d6:a0:5c:8a:bd:bb:68:a7:19:61:02:07:
cb:e1:90:9e:3d:59:9f:4c:87:79:8a:4e:3c:d5:c4:2e:e7:ce:
bb:92:ca:2e:10:fa:3c:70:b3:23:e7:5a:48:7b:9b:4b:a9:1e:
e7:c4:65:92:f3:86:e7:c4:73:9e:3d:25:38:86:c7:5e:ac:a4:
3d:b7:18:f5:ef:63:db:6d:49:99:b5:2c:bb:26:93:f2:f0:7c:
e3:f4:b1:fc:61:73:7b:5a:f3:8b:35:2f:31:63:2d:e6:4b:53:
11:44:c2:16:27:e2:01:de:f2:2e:46:64:76:61:15:00:5f:b0:
a6:38:3d:22:db:30:e2:b2:49:1c:ca:3c:6b:77:71:43:0d:45:
f9:40:e5:2e:8f:ef:05:e2:f4:b7:31:20:d2:70:c3:45:43:da:
67:37:1d:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:45:01 2025 by rpki-client