Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/17c994-1454-4b59-b661-c007436c20be/1/3JbsrsSUB5lAXQb6VunuJzv6kxE.roa
File: 3JbsrsSUB5lAXQb6VunuJzv6kxE.roa (raw, json)
Hash identifier: Cl2YqN6G4W1WtBRjDxiuH1M934An/Hy6+DVHgQAsliI=
Subject key identifier: DC:96:EC:AE:C4:94:07:99:40:5D:06:FA:56:E9:EE:27:3B:FA:93:11
Certificate issuer: /CN=9b98f423292a35a98c220f90cf301dd4102584a1
Certificate serial: 018BF3E9B4E82591B394B360C28520DAFAFC
Authority key identifier: 9B:98:F4:23:29:2A:35:A9:8C:22:0F:90:CF:30:1D:D4:10:25:84:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m5j0IykqNamMIg-QzzAd1BAlhKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/17c994-1454-4b59-b661-c007436c20be/1/3JbsrsSUB5lAXQb6VunuJzv6kxE.roa
Signing time: Tue 21 Nov 2023 22:04:21 +0000
ROA not before: Tue 21 Nov 2023 22:04:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 215978
IP address blocks: 2a13:ef41::/32 maxlen: 32
2a13:ef41:cafe::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:f3:e9:b4:e8:25:91:b3:94:b3:60:c2:85:20:da:fa:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b98f423292a35a98c220f90cf301dd4102584a1
Validity
Not Before: Nov 21 22:04:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dc96ecaec4940799405d06fa56e9ee273bfa9311
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:fb:7f:be:81:1a:c9:92:7f:c0:82:a4:13:53:
db:57:c9:95:94:a1:3a:1b:a7:b1:19:ee:e9:1f:99:
13:ba:8f:2a:7a:76:14:2b:da:fd:26:52:ba:7e:f7:
67:ea:e5:74:16:cd:15:11:d5:26:62:21:93:e7:4f:
d7:ff:69:c2:ff:78:8e:e1:96:b9:a0:43:59:b6:de:
44:ae:c7:7d:5a:2f:21:28:e9:87:2d:5c:f2:e4:78:
69:c0:28:d3:7e:6f:fb:d3:9f:a2:9c:dd:d2:c6:23:
f1:74:c1:b4:c2:21:d6:09:7d:68:b7:2f:b4:01:44:
71:f0:6e:e8:c5:b7:9c:e8:64:7d:e2:1a:8f:b2:ca:
9d:eb:fc:59:f9:9e:ce:80:99:7c:d1:ca:b1:da:66:
03:b6:b2:21:d1:a8:48:78:ae:2e:6f:88:6b:01:be:
88:fc:69:c6:69:fc:40:6a:cc:5b:8e:2b:08:41:b3:
88:23:44:72:68:df:1b:a9:03:b3:18:c6:5b:fb:6e:
8c:fa:81:13:17:4d:84:7b:61:7a:62:20:6d:17:6f:
cb:24:0c:a8:85:a5:49:bb:58:34:82:97:c6:a9:3c:
02:34:aa:e2:4f:cc:ac:02:29:6b:91:ab:4f:17:24:
27:76:87:7f:b1:7a:2f:9e:bc:ba:14:a6:ce:b2:13:
24:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:96:EC:AE:C4:94:07:99:40:5D:06:FA:56:E9:EE:27:3B:FA:93:11
X509v3 Authority Key Identifier:
keyid:9B:98:F4:23:29:2A:35:A9:8C:22:0F:90:CF:30:1D:D4:10:25:84:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m5j0IykqNamMIg-QzzAd1BAlhKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/17c994-1454-4b59-b661-c007436c20be/1/3JbsrsSUB5lAXQb6VunuJzv6kxE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/17c994-1454-4b59-b661-c007436c20be/1/m5j0IykqNamMIg-QzzAd1BAlhKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:ef41::/32
Signature Algorithm: sha256WithRSAEncryption
8c:8d:1f:55:de:a8:9e:7b:d5:ae:8f:ff:5a:58:e5:49:a4:0a:
ce:b6:a2:01:a3:d0:02:16:b5:cc:f6:64:50:65:95:dc:1d:54:
61:57:91:bf:0f:a9:3e:27:75:4e:55:1b:bc:cf:81:2f:7b:7d:
30:fe:77:1e:d1:e8:a3:8c:9e:e8:66:d7:d6:f7:8e:32:15:6b:
81:22:06:1c:0e:d4:be:ed:e9:d2:1d:67:81:03:44:a4:d6:fd:
d3:40:df:38:b8:0c:04:7a:56:c9:c1:a9:a1:83:be:83:73:3a:
88:e6:31:87:b5:6a:73:d7:b3:76:e5:65:69:db:81:e7:0a:b7:
57:33:30:ac:f1:e8:50:41:fc:f8:21:75:a0:db:49:bd:8a:a9:
b3:aa:8a:e7:e4:2e:d1:48:6b:db:1e:d0:d7:11:85:f2:4e:85:
bf:28:c4:59:2c:e7:c5:b8:06:84:3d:c5:10:ae:29:f6:6b:ac:
94:f5:b8:a1:d1:b7:fb:0e:23:bb:bd:1d:6a:9a:4e:a7:68:b5:
88:0d:aa:d9:5c:33:d8:ba:c4:90:46:1c:28:e6:95:e1:fe:d6:
93:58:0b:bc:20:c9:42:5b:22:44:e7:ac:1f:3f:24:bb:2f:94:
e3:83:c5:93:33:61:5d:01:55:c8:0d:30:2d:93:ea:0a:1b:03:
d6:d3:1c:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 12 13:13:58 2025 by rpki-client