Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/9ba681-3649-420f-8f24-67cdb2f0693d/1/S_Yoe4RzZPXUnWYDpvwvJn53Zos.roa
File: S_Yoe4RzZPXUnWYDpvwvJn53Zos.roa (raw, json)
Hash identifier: WDFC/GVsApU3Vj2hL/B9tR3pHCUH4h1Bg0ej8Vq0Whs=
Subject key identifier: 4B:F6:28:7B:84:73:64:F5:D4:9D:66:03:A6:FC:2F:26:7E:77:66:8B
Certificate issuer: /CN=425c6104aae83931281e004fad5d9f76232c0978
Certificate serial: 0371C9
Authority key identifier: 42:5C:61:04:AA:E8:39:31:28:1E:00:4F:AD:5D:9F:76:23:2C:09:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QlxhBKroOTEoHgBPrV2fdiMsCXg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/9ba681-3649-420f-8f24-67cdb2f0693d/1/S_Yoe4RzZPXUnWYDpvwvJn53Zos.roa
Signing time: Wed 01 Jun 2022 17:53:20 +0000
ROA not before: Wed 01 Jun 2022 17:53:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209883
IP address blocks: 2a09:81c0::/29 maxlen: 29
2a0e:f8c0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 225737 (0x371c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=425c6104aae83931281e004fad5d9f76232c0978
Validity
Not Before: Jun 1 17:53:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4bf6287b847364f5d49d6603a6fc2f267e77668b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:40:d4:da:1e:49:fe:ae:64:31:6f:30:81:85:
b4:22:b2:51:67:f3:c2:93:2c:91:7a:2a:d5:e7:b7:
ea:ed:da:35:db:79:e0:53:a1:52:27:f0:8e:c5:43:
ba:04:eb:a4:a6:da:83:b6:95:03:97:b8:ce:bf:48:
f2:02:f7:79:ab:b7:21:f6:ed:20:3e:b5:88:fe:2c:
fc:c9:2b:b4:90:b1:27:ae:27:5a:74:dc:79:96:6a:
c2:ed:62:b4:9d:31:fa:42:54:0b:9b:06:61:f9:f9:
86:b0:ee:aa:57:67:d6:88:ab:9e:18:db:20:0f:8b:
c4:8d:2e:bb:d1:43:ed:76:58:72:5b:78:0f:8e:63:
6a:94:ea:73:21:68:1e:a7:d0:66:b0:03:ad:1d:b2:
da:ab:7c:35:25:e1:f3:f9:23:f3:a6:12:2f:95:2d:
20:e6:3f:40:2b:34:8a:f9:bd:27:dd:e7:c3:41:5c:
81:51:d3:cf:6a:49:ba:df:9b:73:4c:1d:33:a8:e5:
96:1a:72:7f:aa:ec:82:5c:f3:37:98:d8:2e:78:23:
8c:39:78:98:55:2d:a8:5e:8c:a2:7a:3c:c7:a4:fa:
b5:05:0a:8f:e3:77:d3:e4:1b:49:03:29:42:95:f0:
ca:e8:19:fd:a6:32:d0:d1:1e:a2:62:85:ff:60:95:
a3:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:F6:28:7B:84:73:64:F5:D4:9D:66:03:A6:FC:2F:26:7E:77:66:8B
X509v3 Authority Key Identifier:
keyid:42:5C:61:04:AA:E8:39:31:28:1E:00:4F:AD:5D:9F:76:23:2C:09:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QlxhBKroOTEoHgBPrV2fdiMsCXg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/9ba681-3649-420f-8f24-67cdb2f0693d/1/S_Yoe4RzZPXUnWYDpvwvJn53Zos.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/9ba681-3649-420f-8f24-67cdb2f0693d/1/QlxhBKroOTEoHgBPrV2fdiMsCXg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:81c0::/29
2a0e:f8c0::/29
Signature Algorithm: sha256WithRSAEncryption
66:f4:25:ab:da:c5:24:0a:b1:fc:83:57:14:b9:32:85:a0:c4:
8c:fe:83:e1:c7:f7:38:75:ab:75:03:33:14:84:bb:42:ab:9a:
4c:53:90:14:d8:b1:b8:b0:72:ed:62:50:6e:4d:ba:25:00:a5:
69:e5:3c:b0:cf:93:07:a2:83:58:8d:ca:ca:19:b8:1c:a3:3b:
91:16:f5:05:da:19:f1:98:ea:eb:12:b4:9c:c9:f7:ea:a1:a4:
00:88:55:5f:3c:59:64:2e:29:e3:b7:7c:98:01:88:be:eb:0c:
eb:3a:8d:93:b9:8e:bf:20:d9:0e:ae:2f:34:24:b4:6b:27:da:
de:53:54:5c:d5:11:41:59:a6:35:7b:52:07:30:83:ca:dc:d3:
7e:ff:13:29:ff:20:5b:a6:f9:f3:9d:26:a7:67:af:6d:04:42:
4c:cc:73:ac:d5:5e:12:b7:ad:5e:53:81:7e:78:8e:74:15:a3:
af:8b:a8:be:1f:f6:46:6c:8e:fa:24:ea:7d:2e:d8:0a:7c:91:
16:34:c2:b5:8f:ff:31:8c:01:df:8e:2f:c8:ac:c4:28:8e:fb:
36:36:aa:50:98:26:04:91:80:c9:c3:fa:1d:e5:d6:8d:11:d4:
f4:c8:50:c5:64:31:01:19:62:46:91:3d:f5:c8:20:b1:e1:85:
72:27:89:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 12 13:12:43 2025 by rpki-client