Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/6788f7-d58f-4835-8522-984a08898459/1/Hx2oqDdCPWayLaDM2FKLccK-LkU.roa
File: Hx2oqDdCPWayLaDM2FKLccK-LkU.roa (raw, json)
Hash identifier: D8+oZ0j8v4YyCcutQk9h1rY3NKDm0g7vR7a5aYU8KLo=
Subject key identifier: 1F:1D:A8:A8:37:42:3D:66:B2:2D:A0:CC:D8:52:8B:71:C2:BE:2E:45
Certificate issuer: /CN=0012b9dc976d7ce807e46fea4936c726b0c4a206
Certificate serial: 018AB8257571AD41B9CFB4C4DF16E0F894D6
Authority key identifier: 00:12:B9:DC:97:6D:7C:E8:07:E4:6F:EA:49:36:C7:26:B0:C4:A2:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ABK53JdtfOgH5G_qSTbHJrDEogY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/6788f7-d58f-4835-8522-984a08898459/1/Hx2oqDdCPWayLaDM2FKLccK-LkU.roa
Signing time: Thu 21 Sep 2023 14:29:37 +0000
ROA not before: Thu 21 Sep 2023 14:29:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8075
IP address blocks: 2a13:bb40::/29 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:b8:25:75:71:ad:41:b9:cf:b4:c4:df:16:e0:f8:94:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0012b9dc976d7ce807e46fea4936c726b0c4a206
Validity
Not Before: Sep 21 14:29:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1f1da8a837423d66b22da0ccd8528b71c2be2e45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:d1:97:82:2b:e0:ab:89:bb:62:5a:49:a5:c2:
2b:1b:d0:ef:7e:d6:9a:29:61:fa:b4:42:3a:57:91:
a1:f9:e5:25:25:f6:96:3b:39:46:10:37:21:b9:ee:
89:bc:0b:16:5a:df:13:39:79:be:c4:02:c3:7c:aa:
e0:80:ee:4e:4f:40:aa:12:a9:72:47:1f:1a:36:79:
f9:c0:93:e5:d0:31:4f:e9:74:87:da:92:44:ef:ad:
72:46:b6:ac:95:02:e5:7a:7e:c6:8a:0d:93:ef:a3:
f1:e8:b6:97:88:f1:89:27:f8:0d:0a:8b:9d:ac:cf:
c9:f1:14:a5:06:ef:e3:60:fe:de:e7:20:61:70:3c:
6c:21:3f:3e:91:2a:3f:4f:f6:ca:d7:31:18:29:f8:
97:65:87:b8:c4:4f:6a:20:ab:e0:74:1a:7b:a3:58:
18:52:00:03:34:80:b0:6e:66:71:49:f6:34:2a:d1:
99:aa:f0:bf:60:45:7f:d5:b7:52:9f:06:fb:8b:02:
ab:3e:4a:5a:8d:00:9c:6a:17:4b:43:20:28:b6:08:
f7:70:5a:6b:4c:cc:d2:40:fd:08:48:98:4a:9e:c4:
0e:6a:61:ee:7d:34:e8:44:8c:23:b6:c4:4b:b7:85:
91:f4:40:0a:eb:09:92:48:45:9d:c9:0e:ea:d9:f0:
34:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:1D:A8:A8:37:42:3D:66:B2:2D:A0:CC:D8:52:8B:71:C2:BE:2E:45
X509v3 Authority Key Identifier:
keyid:00:12:B9:DC:97:6D:7C:E8:07:E4:6F:EA:49:36:C7:26:B0:C4:A2:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ABK53JdtfOgH5G_qSTbHJrDEogY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/6788f7-d58f-4835-8522-984a08898459/1/Hx2oqDdCPWayLaDM2FKLccK-LkU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/6788f7-d58f-4835-8522-984a08898459/1/ABK53JdtfOgH5G_qSTbHJrDEogY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:bb40::/29
Signature Algorithm: sha256WithRSAEncryption
26:40:98:1f:c0:e9:51:98:41:82:22:c3:d0:57:60:27:53:7b:
7b:47:44:51:f5:f8:f4:c4:37:f3:80:b7:95:e9:5f:fe:83:0d:
dc:d8:45:0b:bf:d8:81:4d:e3:da:fb:d9:ee:71:5a:79:99:1a:
8f:58:cb:ca:d4:b1:e0:98:df:a7:35:bf:00:3b:7a:68:17:a8:
9b:e8:57:be:62:79:2b:2c:7c:d7:52:bd:5d:22:28:a9:eb:28:
f4:06:fc:c8:32:7d:f4:6a:af:00:0a:ab:19:b4:84:68:66:b9:
ac:28:80:ce:96:82:65:f6:c5:7a:79:d8:8b:78:37:25:1c:51:
90:e0:4c:5a:50:eb:ca:42:fb:ac:0b:4e:f2:4f:71:dc:83:f5:
98:1c:af:55:a0:57:ea:71:26:61:71:67:7f:25:26:2c:fd:03:
3a:c9:d6:9e:00:a2:94:e7:db:2a:38:12:55:84:51:c8:09:e9:
df:58:e8:ac:48:de:14:77:6d:c0:22:47:cf:d4:af:9f:3c:0e:
9f:94:ec:5e:1c:b9:14:a6:77:dd:7d:a6:c4:48:a5:e1:46:af:
e2:97:f3:09:4d:85:6b:d7:2b:7f:e3:1e:3d:31:7f:ea:cf:1b:
0e:2a:c5:14:11:ba:fa:11:17:58:56:2b:a6:ee:2d:e5:58:2e:
19:f8:3d:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 03:45:46 2025 by rpki-client