Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/9loyYH03hpxc1qlMw_Yml45y0_s.roa
File: 9loyYH03hpxc1qlMw_Yml45y0_s.roa (raw, json)
Hash identifier: +d3YTtadAT/4NoRDObtxxDzwczIax7HQw7YvofefyD8=
Subject key identifier: F6:5A:32:60:7D:37:86:9C:5C:D6:A9:4C:C3:F6:26:97:8E:72:D3:FB
Certificate issuer: /CN=798f7b1fd802b3dc6abd7a5cda786a6311e1d63d
Certificate serial: 01856C1CACC9500F5FFE52ED6BDCE0211EF9
Authority key identifier: 79:8F:7B:1F:D8:02:B3:DC:6A:BD:7A:5C:DA:78:6A:63:11:E1:D6:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eY97H9gCs9xqvXpc2nhqYxHh1j0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/9loyYH03hpxc1qlMw_Yml45y0_s.roa
Signing time: Sun 01 Jan 2023 06:54:56 +0000
ROA not before: Sun 01 Jan 2023 06:54:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203899
IP address blocks: 2a12:3fc2:e400::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:1c:ac:c9:50:0f:5f:fe:52:ed:6b:dc:e0:21:1e:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=798f7b1fd802b3dc6abd7a5cda786a6311e1d63d
Validity
Not Before: Jan 1 06:54:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f65a32607d37869c5cd6a94cc3f626978e72d3fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:05:b7:19:87:5f:08:f2:a5:2d:c1:34:37:82:
a3:f6:b3:90:60:e1:d4:97:53:7c:3c:32:6e:25:b7:
51:2f:60:2b:5e:b0:de:40:fb:2d:4b:ee:8f:70:7a:
2c:c0:2c:83:c4:93:80:62:36:aa:98:48:e1:9e:1e:
47:45:b5:d3:ec:e0:5c:97:6b:7a:79:fe:87:3c:51:
b9:21:9e:c4:66:c4:f7:d8:87:e9:d8:db:1c:43:0e:
1b:b4:4b:80:4d:4d:ef:58:50:31:5b:48:ce:5e:66:
a3:99:29:28:fa:c3:e2:64:c4:fb:cc:63:7c:d1:98:
c6:55:9a:5e:71:0b:8a:79:21:8f:be:40:fd:af:1a:
f8:7f:97:88:69:62:03:e6:d5:a6:58:ea:82:82:52:
43:a1:f5:1c:96:68:c4:06:94:87:f8:86:24:38:be:
c6:94:52:25:49:7f:40:ea:df:bc:7c:59:52:7f:7e:
a4:cc:04:3d:56:c8:9a:88:7d:a1:32:74:88:72:5c:
12:b8:08:0c:f2:91:40:98:2b:0f:94:ad:c5:ae:91:
ef:77:6c:3e:bf:0a:b8:15:31:af:ac:d2:e4:0c:ed:
37:27:68:30:3d:f3:b6:c1:2b:c2:d3:64:e6:05:ab:
5e:8b:89:07:f9:ef:f7:f3:60:75:7a:32:3d:2a:77:
e6:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:5A:32:60:7D:37:86:9C:5C:D6:A9:4C:C3:F6:26:97:8E:72:D3:FB
X509v3 Authority Key Identifier:
keyid:79:8F:7B:1F:D8:02:B3:DC:6A:BD:7A:5C:DA:78:6A:63:11:E1:D6:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eY97H9gCs9xqvXpc2nhqYxHh1j0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/9loyYH03hpxc1qlMw_Yml45y0_s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/eY97H9gCs9xqvXpc2nhqYxHh1j0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:3fc2:e400::/40
Signature Algorithm: sha256WithRSAEncryption
d8:fa:30:a0:46:38:4f:b5:17:86:fa:17:97:f2:2b:89:f5:48:
48:cc:19:5b:22:b5:f7:b9:ec:7d:c3:8e:3f:5a:a3:b7:fd:19:
eb:31:70:cc:c8:3d:40:94:fc:06:4f:91:1a:cd:7f:4c:50:dc:
33:5a:16:7d:a5:b2:51:a9:e5:7b:ef:ed:55:01:32:e6:22:02:
ce:1d:dd:0f:e3:78:d7:c2:91:84:7e:e0:3e:1d:3e:93:d6:90:
7e:e5:58:01:61:6f:05:c7:ff:fa:37:32:dc:bf:c3:05:c0:21:
61:2e:da:1f:76:e9:55:92:55:ac:07:c8:ef:04:28:8a:14:4c:
7d:85:c4:ec:77:78:91:6b:2c:b0:0f:fe:1f:74:d5:c9:a3:22:
fc:a4:e9:77:d9:49:9f:69:ac:eb:2c:f1:09:64:1c:b1:39:07:
f1:86:4f:5e:95:75:bb:19:ab:5f:69:d3:8c:b2:90:08:f9:09:
c0:54:79:cd:27:74:c8:2c:b9:9d:42:d9:ce:e9:d4:a8:68:9d:
dc:3d:11:24:f5:59:03:54:7a:97:80:48:7d:cd:d7:34:33:19:
e3:9c:8d:4b:ed:d6:af:94:0c:bb:7f:85:b1:67:97:0f:6d:6b:
12:b1:85:c9:21:2b:43:6e:39:a7:a5:1a:0f:53:ce:06:7f:69:
95:aa:aa:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:02:08 2025 by rpki-client