Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/a9bd50-b4a4-4063-8436-4e2a8f84aeed/1/WnjxSzwFD-uwkm-_z9qzcuj-q-E.roa
File: WnjxSzwFD-uwkm-_z9qzcuj-q-E.roa (raw, json)
Hash identifier: 8mFoo8+O158Uf9SEYAmQSJHXZ/q0bi42CcioWNg7mvE=
Subject key identifier: 5A:78:F1:4B:3C:05:0F:EB:B0:92:6F:BF:CF:DA:B3:72:E8:FE:AB:E1
Certificate issuer: /CN=ec79a7b54c8c94d06ca2f685971a2449fb8fcece
Certificate serial: 01896D317BE4ED11EFD87525C53D1F4F290A
Authority key identifier: EC:79:A7:B5:4C:8C:94:D0:6C:A2:F6:85:97:1A:24:49:FB:8F:CE:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7HmntUyMlNBsovaFlxokSfuPzs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/a9bd50-b4a4-4063-8436-4e2a8f84aeed/1/WnjxSzwFD-uwkm-_z9qzcuj-q-E.roa
Signing time: Wed 19 Jul 2023 08:08:26 +0000
ROA not before: Wed 19 Jul 2023 08:08:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52112
IP address blocks: 2a13:9640::/29 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:6d:31:7b:e4:ed:11:ef:d8:75:25:c5:3d:1f:4f:29:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec79a7b54c8c94d06ca2f685971a2449fb8fcece
Validity
Not Before: Jul 19 08:08:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5a78f14b3c050febb0926fbfcfdab372e8feabe1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:14:84:8e:f0:9f:d2:2a:e3:31:aa:27:d8:1a:
5b:1a:2d:1f:97:3b:bb:80:00:8f:3d:18:85:cd:57:
1b:08:a0:b7:b3:9b:ad:57:a4:9c:ea:72:3e:f1:37:
d8:c2:ae:f8:7a:5d:22:28:1c:f9:22:56:86:a5:32:
0b:2e:ec:af:52:f0:ed:b7:35:82:e4:bd:6c:7a:f3:
64:5c:eb:1a:7a:ee:a7:d4:65:e0:c3:83:9a:d6:3a:
74:16:4d:c4:96:10:38:cd:6d:de:6c:9d:36:80:dd:
fa:3e:8c:6b:f2:bd:d6:f0:32:f6:f1:0b:46:7e:2c:
a8:09:b9:f8:d2:07:39:38:62:f3:2b:ea:d8:8c:7c:
23:0a:37:46:90:c3:47:23:7f:b2:59:56:76:7b:0b:
4d:67:6e:7e:e3:f3:91:9d:a4:1f:d1:07:2a:c9:1e:
2f:8a:e1:f0:cc:10:a3:2f:ba:d8:a2:3f:89:7c:5b:
c3:c5:37:28:5e:66:20:cf:ca:c9:98:c9:20:a1:c5:
3a:5f:da:ba:8b:0b:b6:37:28:b9:c2:67:37:38:7b:
27:e4:a6:6b:91:d3:e0:7b:1d:ec:6e:ab:16:db:c8:
2e:57:32:a9:99:09:5f:ad:df:ba:6a:ca:26:b7:0d:
af:f7:05:c6:44:04:3a:29:4d:1d:1a:53:c0:e6:2f:
4b:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:78:F1:4B:3C:05:0F:EB:B0:92:6F:BF:CF:DA:B3:72:E8:FE:AB:E1
X509v3 Authority Key Identifier:
keyid:EC:79:A7:B5:4C:8C:94:D0:6C:A2:F6:85:97:1A:24:49:FB:8F:CE:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7HmntUyMlNBsovaFlxokSfuPzs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/a9bd50-b4a4-4063-8436-4e2a8f84aeed/1/WnjxSzwFD-uwkm-_z9qzcuj-q-E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/a9bd50-b4a4-4063-8436-4e2a8f84aeed/1/7HmntUyMlNBsovaFlxokSfuPzs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9640::/29
Signature Algorithm: sha256WithRSAEncryption
14:1e:05:39:7b:02:80:41:41:bd:67:e5:39:44:0c:44:b0:93:
6e:dc:b9:e7:01:21:00:23:5e:2c:ea:0a:e4:ed:b9:40:9a:fc:
d3:aa:79:4e:d9:cf:ac:60:b5:38:61:ff:c4:7b:ba:5c:5b:7e:
cd:d3:e8:a4:d9:bb:4e:cb:a7:dd:15:58:bc:77:1d:ab:63:41:
2b:5a:e1:d8:56:b4:a4:0e:17:d3:19:f5:8b:e6:01:76:9e:bf:
48:62:1c:c9:74:1a:2d:74:fa:45:55:73:f5:af:fb:36:73:92:
6e:ee:37:d3:dc:88:55:c1:2d:f6:0b:88:09:92:2e:ce:c6:a8:
be:8a:1c:5b:e4:ea:dc:5b:1f:e2:31:b5:c3:7f:1e:af:42:01:
c2:68:33:cb:3d:bc:42:96:20:1a:39:f1:e1:92:c0:42:f4:86:
e1:d0:73:e8:57:a6:46:7d:7b:2d:a9:71:10:db:e9:29:43:f0:
55:5d:7e:67:00:bd:f8:61:8d:3f:ac:ef:43:24:01:20:33:ac:
a1:93:62:b2:52:8b:0a:3a:3d:d1:f8:4c:ae:5b:f1:db:09:dd:
38:76:f1:a0:63:08:fb:18:f9:40:f8:b2:8d:36:df:2d:c6:7e:
35:3f:b3:0e:c7:e6:f4:6f:a8:f7:9a:20:8b:e7:36:cc:ed:05:
1a:5d:d6:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 05:10:38 2025 by rpki-client