Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/caf034-cbe2-4d2d-a02b-5d34704b7c88/1/7omSZ0QPIwMwkSCHBa0XlT2pjnA.roa
File: 7omSZ0QPIwMwkSCHBa0XlT2pjnA.roa (raw, json)
Hash identifier: fgrujtWVO0Q18TbBZwIwvUJrQZUhznwYdEBLNmHXxZI=
Subject key identifier: EE:89:92:67:44:0F:23:03:30:91:20:87:05:AD:17:95:3D:A9:8E:70
Certificate issuer: /CN=bd2a5a06b9b43fcea188541d30c6dc3430aaf392
Certificate serial: 02007D07
Authority key identifier: BD:2A:5A:06:B9:B4:3F:CE:A1:88:54:1D:30:C6:DC:34:30:AA:F3:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vSpaBrm0P86hiFQdMMbcNDCq85I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/caf034-cbe2-4d2d-a02b-5d34704b7c88/1/7omSZ0QPIwMwkSCHBa0XlT2pjnA.roa
Signing time: Sat 01 Jan 2022 15:01:20 +0000
ROA not before: Sat 01 Jan 2022 15:01:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205969
IP address blocks: 2001:67c:12f4::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33586439 (0x2007d07)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd2a5a06b9b43fcea188541d30c6dc3430aaf392
Validity
Not Before: Jan 1 15:01:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ee899267440f23033091208705ad17953da98e70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:15:46:2e:c5:5d:f5:e8:6b:9f:cb:d2:69:c4:
92:09:36:91:18:af:1f:80:47:cb:52:ef:14:5f:c3:
dc:a0:97:fc:9a:f9:35:4b:18:d3:89:41:f0:0a:f0:
d0:1e:d1:9c:88:19:c0:af:61:7c:ed:35:dc:19:31:
74:c7:42:ba:9a:5c:6f:54:56:24:0a:1a:51:b9:4c:
9e:71:c7:66:36:35:8e:14:ad:58:db:64:af:cf:24:
b9:2f:70:ad:82:12:f1:03:e7:63:d2:89:af:b8:fc:
08:cf:42:70:98:df:c1:d5:9d:a5:12:9d:42:9b:ca:
09:c9:0d:8a:be:a8:87:73:b7:30:66:38:80:02:92:
45:6d:02:fe:ea:eb:54:36:56:78:34:70:77:23:59:
d2:aa:f3:57:4c:bf:f9:74:d9:28:e8:07:21:26:e2:
16:35:f7:fd:51:46:c7:96:93:d2:02:98:bc:aa:d0:
a9:37:1a:9b:2d:66:7e:8c:a0:9e:ce:fd:9b:b3:82:
5e:af:18:04:7a:51:1a:47:a3:30:ba:a8:8d:e2:9d:
d5:84:cb:42:ce:3f:63:ed:a5:a3:69:e4:15:e4:0c:
e0:3b:cf:b1:61:b3:11:c9:2e:12:5f:32:bf:c0:d8:
14:e3:7d:bd:f9:8f:4f:85:db:f3:a4:1a:cb:cc:17:
7f:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:89:92:67:44:0F:23:03:30:91:20:87:05:AD:17:95:3D:A9:8E:70
X509v3 Authority Key Identifier:
keyid:BD:2A:5A:06:B9:B4:3F:CE:A1:88:54:1D:30:C6:DC:34:30:AA:F3:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vSpaBrm0P86hiFQdMMbcNDCq85I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/caf034-cbe2-4d2d-a02b-5d34704b7c88/1/7omSZ0QPIwMwkSCHBa0XlT2pjnA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/caf034-cbe2-4d2d-a02b-5d34704b7c88/1/vSpaBrm0P86hiFQdMMbcNDCq85I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:12f4::/48
Signature Algorithm: sha256WithRSAEncryption
58:c6:c5:cc:b7:35:a8:ed:a0:9d:1e:88:11:cd:72:41:08:86:
a4:e1:96:91:94:11:6c:96:b8:56:f2:80:74:75:69:b4:80:90:
f9:2f:02:2b:63:12:25:df:81:71:e0:b8:a1:47:17:f7:25:3d:
04:9a:43:43:24:6f:bb:17:34:a8:2b:f0:e9:55:eb:75:e4:b8:
81:e0:89:83:4b:12:19:12:a9:0a:40:84:20:ca:7d:4d:c7:ac:
ad:0a:c1:b3:38:69:e0:a6:a7:80:05:d9:64:1b:72:4d:35:6f:
47:9f:ec:6c:15:13:77:de:56:ab:50:39:8b:29:57:b7:61:a5:
d3:83:43:58:3b:ba:3e:b2:b9:1c:da:64:4e:cd:f4:4e:cf:f5:
9c:7a:25:89:09:4c:0f:72:a1:26:11:7b:45:3a:7a:b4:cd:ce:
72:fb:48:d7:cd:7a:dd:8c:03:c5:b7:57:e2:65:22:a2:6a:2c:
ce:40:cf:8f:68:4c:f0:28:f5:d7:55:a5:61:54:b3:e5:ee:66:
41:fd:b1:40:2e:45:76:53:17:87:3a:94:b1:36:8c:98:31:b5:
b8:9c:ef:49:4b:80:9a:4a:53:42:92:c8:bb:92:78:25:55:ef:
84:46:ee:d7:e5:2a:b0:b1:75:a7:75:15:ba:79:ca:29:e0:aa:
17:ea:ba:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:24:55 2025 by rpki-client