Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/fppOoPtasrtX4ZPzc57YRYYu954.roa
File: fppOoPtasrtX4ZPzc57YRYYu954.roa (raw, json)
Hash identifier: b5+haWAHnyoPiS6Ivn63/MAGZ3E+APtZSJu8to6vL6M=
Subject key identifier: 7E:9A:4E:A0:FB:5A:B2:BB:57:E1:93:F3:73:9E:D8:45:86:2E:F7:9E
Certificate issuer: /CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Certificate serial: 01941FF9FE86B6C068225C3CA1896648DCD6
Authority key identifier: 44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/fppOoPtasrtX4ZPzc57YRYYu954.roa
Signing time: Wed 01 Jan 2025 03:47:44 +0000
ROA not before: Wed 01 Jan 2025 03:47:44 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8772
IP address blocks: 2a0a:b42::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:f9:fe:86:b6:c0:68:22:5c:3c:a1:89:66:48:dc:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Validity
Not Before: Jan 1 03:47:44 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7e9a4ea0fb5ab2bb57e193f3739ed845862ef79e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:e1:e1:77:70:cf:65:7b:35:72:d6:f1:d1:2a:
f5:b2:fa:0f:66:4e:83:0c:e5:67:3b:e1:a7:54:bc:
07:49:98:7e:b6:33:25:d5:1c:fc:21:d2:83:e9:60:
9f:4f:a1:7a:7d:27:9b:16:b6:a6:ee:41:ef:58:0a:
25:a5:f0:30:c5:50:08:50:23:32:00:ff:6f:c3:96:
5e:b8:f1:99:eb:5e:fe:ff:c5:8a:a4:c7:11:7d:df:
77:c5:cd:94:37:71:60:0b:2d:25:00:5e:7b:d1:5b:
cb:29:4d:63:03:97:6c:28:22:ca:0a:1b:9f:59:2a:
e4:a2:99:f6:af:03:ab:4e:08:cf:dd:7f:31:c9:5a:
31:8b:e7:f7:ed:88:3c:95:0f:16:57:d0:7d:28:d7:
5e:37:b7:42:9f:5a:09:ab:6c:4a:ac:32:fc:20:fa:
cb:88:1d:6e:94:8f:36:78:40:94:ed:b2:6a:b9:cf:
8f:ea:14:5f:07:83:09:c6:86:6e:a9:07:be:b9:8e:
eb:a9:6e:e5:60:e7:55:1d:2d:d0:ec:74:27:8d:75:
3f:1f:12:62:b3:3b:b6:c3:10:a7:ca:dd:9c:2d:30:
7e:b6:18:34:78:4f:e7:d8:39:02:f5:f6:19:68:ff:
57:6e:f9:ae:b2:08:bf:cc:7f:88:3a:0a:07:7c:9e:
51:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:9A:4E:A0:FB:5A:B2:BB:57:E1:93:F3:73:9E:D8:45:86:2E:F7:9E
X509v3 Authority Key Identifier:
keyid:44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/fppOoPtasrtX4ZPzc57YRYYu954.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/RFnsKl_VOQnFI59MyNbTKaJ3m7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:b42::/32
Signature Algorithm: sha256WithRSAEncryption
32:52:d1:da:7a:8d:47:1f:73:85:66:19:84:a9:67:64:0a:dd:
c0:7a:51:70:5c:46:10:fe:49:3c:7b:34:2a:3c:4b:80:a5:f6:
fd:6a:7f:b6:0b:5c:03:67:1a:a3:82:e0:2e:4c:b5:96:d7:ef:
c7:ca:46:fa:38:23:9f:70:b9:1a:61:f1:69:a8:74:86:61:b7:
20:2d:eb:7e:6b:77:ea:1f:6d:bf:d7:ec:ba:7f:40:6e:83:a7:
c1:e8:af:79:36:6b:12:c2:7a:40:e2:52:97:1d:41:70:6e:ac:
73:f2:ca:90:c8:9b:85:1b:ba:b1:80:cb:3e:67:2e:ee:3a:99:
f4:22:50:38:5f:69:4f:ae:54:db:08:2b:00:6c:31:67:67:16:
10:57:d8:b8:40:63:87:c8:20:77:c6:d6:25:6a:56:2c:79:c8:
59:2c:ae:3b:22:c3:b2:a2:8d:e3:cb:ab:03:13:cd:ed:36:8b:
5d:8f:d3:d3:47:b7:b0:74:e1:b0:d3:c5:f0:a6:98:bb:27:f0:
c9:70:fd:1d:cc:24:87:4e:7d:6f:51:5b:65:be:c8:5a:80:a4:
6c:e0:d3:c0:ed:3f:f3:21:8c:70:07:66:51:01:7b:9b:6a:c0:
1a:73:ae:72:54:d1:69:1a:50:68:e2:e0:de:a7:a6:e7:c1:78:
3c:a9:a9:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 03:41:56 2025 by rpki-client