Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/e5060f-647d-4762-8528-8dd91307cd2e/1/RxJwGxkWNKu233_QgTwbw9xFOS0.roa
File: RxJwGxkWNKu233_QgTwbw9xFOS0.roa (raw, json)
Hash identifier: 9TKWj3byz+sTfllLP1bPzPpRG1+/PwKb3w4O1EWzUDs=
Subject key identifier: 47:12:70:1B:19:16:34:AB:B6:DF:7F:D0:81:3C:1B:C3:DC:45:39:2D
Certificate issuer: /CN=8dde1ab6d4e41f8776f2f6d0495bc6ab0a9ce813
Certificate serial: 024E8DE5
Authority key identifier: 8D:DE:1A:B6:D4:E4:1F:87:76:F2:F6:D0:49:5B:C6:AB:0A:9C:E8:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jd4attTkH4d28vbQSVvGqwqc6BM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/e5060f-647d-4762-8528-8dd91307cd2e/1/RxJwGxkWNKu233_QgTwbw9xFOS0.roa
Signing time: Sat 01 Jan 2022 03:56:00 +0000
ROA not before: Sat 01 Jan 2022 03:56:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199861
IP address blocks: 2a00:d660::/29 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38702565 (0x24e8de5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8dde1ab6d4e41f8776f2f6d0495bc6ab0a9ce813
Validity
Not Before: Jan 1 03:56:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4712701b191634abb6df7fd0813c1bc3dc45392d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:88:52:5f:d9:23:ae:96:e4:df:df:60:0d:5d:
29:3a:18:21:fb:15:e2:8d:55:af:3f:5d:24:98:e0:
48:93:2e:cc:f4:50:26:e0:43:ac:cc:ed:92:69:41:
6d:b5:15:d6:20:b5:c8:cd:b5:45:60:a0:7e:42:dc:
97:b7:88:c1:53:37:6e:0e:33:62:1c:a0:2b:89:5b:
92:14:ca:ef:d7:6f:9a:af:09:34:c4:b0:c9:6d:19:
fa:86:95:70:47:70:b5:56:76:42:34:59:a7:ef:ae:
9f:3e:ab:46:38:a5:ec:3d:3e:4e:64:f6:9e:d4:b0:
bb:0b:c5:56:ea:73:fc:d1:a3:ee:81:b5:62:3a:b2:
f4:16:74:0a:93:49:19:63:4a:36:ca:3e:90:9e:4f:
18:bc:51:cf:5a:07:11:d9:ea:3a:72:d8:93:dc:2e:
89:5c:36:ac:f6:13:23:ea:c4:1b:e6:27:a9:ba:ff:
64:06:be:d4:90:33:bd:b6:a1:44:59:28:c6:0c:60:
91:da:00:fc:0f:da:dc:25:dd:db:e8:f0:19:8d:5a:
07:b2:77:1e:54:e2:f0:79:75:f5:98:88:5c:f9:44:
87:c6:d6:a3:fd:4a:0c:d8:62:90:13:c9:38:e2:a1:
10:a0:53:56:24:75:65:2a:af:2c:a7:f1:da:2e:0c:
95:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:12:70:1B:19:16:34:AB:B6:DF:7F:D0:81:3C:1B:C3:DC:45:39:2D
X509v3 Authority Key Identifier:
keyid:8D:DE:1A:B6:D4:E4:1F:87:76:F2:F6:D0:49:5B:C6:AB:0A:9C:E8:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jd4attTkH4d28vbQSVvGqwqc6BM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/e5060f-647d-4762-8528-8dd91307cd2e/1/RxJwGxkWNKu233_QgTwbw9xFOS0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/e5060f-647d-4762-8528-8dd91307cd2e/1/jd4attTkH4d28vbQSVvGqwqc6BM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:d660::/29
Signature Algorithm: sha256WithRSAEncryption
75:44:da:cb:3a:24:85:e8:5f:fa:aa:b4:6c:e9:28:f9:0f:88:
8a:3d:9f:7a:96:82:4f:6b:a1:14:09:13:51:6c:61:ce:55:81:
21:50:32:7e:21:e0:9d:1d:2b:0f:dc:8c:a0:ee:12:6b:3e:8f:
fe:b8:71:1a:03:fe:0d:e2:fa:99:92:c1:a5:3c:4b:ec:5e:a3:
1b:14:7f:b6:44:e9:bb:0a:52:0d:2a:43:38:58:6e:e8:67:81:
7c:aa:1a:4d:a0:3b:c9:26:03:4c:cd:85:5c:d7:04:26:0d:9b:
d9:26:dc:35:01:6f:46:3c:a7:80:e0:7d:50:8c:97:75:42:d1:
68:01:1b:5b:4a:0f:6a:83:a0:c0:96:5d:22:81:86:da:e9:de:
3f:c4:29:7e:02:fb:be:43:95:b3:dd:3e:b4:40:62:92:95:cc:
d1:7e:26:8d:1a:7c:2d:f7:ff:55:cf:20:c7:1f:4c:72:05:20:
b2:d5:2c:4d:81:e9:2e:9a:08:4e:d3:fe:32:23:bc:93:98:6a:
ee:e6:81:82:0d:e2:72:3a:fc:58:f4:df:76:cb:a4:d9:10:a9:
e9:12:63:ca:9f:f4:dc:04:dd:82:ff:14:bb:3d:52:a3:a7:57:
2a:1c:d2:6a:eb:2d:04:7b:c1:9e:6a:76:fe:77:d0:96:d6:73:
16:a5:d1:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 10:25:19 2025 by rpki-client