Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/4BxP68NF2W_1Rj5--Y8bDd4IVD8.roa
File: 4BxP68NF2W_1Rj5--Y8bDd4IVD8.roa (raw, json)
Hash identifier: IY0Kh2Qfc+ouLKy26knx/57vBhyaqBTgkR16YaNH5eg=
Subject key identifier: E0:1C:4F:EB:C3:45:D9:6F:F5:46:3E:7E:F9:8F:1B:0D:DE:08:54:3F
Certificate issuer: /CN=827603a93bca31b018f511f6d4b0b7546e963362
Certificate serial: 08C07E08
Authority key identifier: 82:76:03:A9:3B:CA:31:B0:18:F5:11:F6:D4:B0:B7:54:6E:96:33:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gnYDqTvKMbAY9RH21LC3VG6WM2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/4BxP68NF2W_1Rj5--Y8bDd4IVD8.roa
Signing time: Tue 15 Mar 2022 14:26:01 +0000
ROA not before: Tue 15 Mar 2022 14:26:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210107
IP address blocks: 2a10:f45::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146832904 (0x8c07e08)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=827603a93bca31b018f511f6d4b0b7546e963362
Validity
Not Before: Mar 15 14:26:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e01c4febc345d96ff5463e7ef98f1b0dde08543f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:d5:1a:8b:f6:1a:2a:7e:10:6d:14:76:91:8d:
14:a9:17:c3:b4:4f:8a:b3:18:c5:53:98:42:d0:c4:
2a:99:64:c0:4b:76:87:40:fc:4e:08:27:99:22:7a:
e5:fa:6b:df:b3:d9:16:58:2b:c8:8d:93:6c:41:ae:
1d:c5:17:e1:ee:fe:3a:50:2c:a1:4e:83:cc:b4:05:
e7:64:1b:fb:ce:8a:f8:a1:b7:dc:8a:48:1f:bd:01:
fb:95:16:ef:f7:3b:c4:a3:fb:ea:39:dc:77:81:77:
aa:5d:20:3e:39:66:d9:d9:20:8f:c5:80:39:fd:3f:
1a:98:2b:41:36:15:40:9c:d7:b1:94:28:95:f9:ae:
ec:15:ca:5f:73:b3:bf:16:c9:12:a9:5d:70:db:8e:
03:2a:a4:d1:ee:7a:7b:1c:e6:49:a4:83:de:e1:b9:
28:f2:69:0f:41:5b:87:63:7a:cf:e0:5f:39:ca:7d:
d5:21:7d:45:a3:cf:e9:e9:e8:51:73:56:85:df:7a:
49:4d:81:4b:e7:fb:5d:8e:2a:3d:87:b3:d8:62:c1:
25:d2:53:8f:74:60:11:a4:84:38:61:20:19:64:ef:
98:5e:11:49:67:c9:7e:ce:84:7d:a0:99:64:1f:d5:
91:56:64:6d:31:58:a6:d7:61:98:c5:e9:b4:7f:e7:
9e:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:1C:4F:EB:C3:45:D9:6F:F5:46:3E:7E:F9:8F:1B:0D:DE:08:54:3F
X509v3 Authority Key Identifier:
keyid:82:76:03:A9:3B:CA:31:B0:18:F5:11:F6:D4:B0:B7:54:6E:96:33:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gnYDqTvKMbAY9RH21LC3VG6WM2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/4BxP68NF2W_1Rj5--Y8bDd4IVD8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/gnYDqTvKMbAY9RH21LC3VG6WM2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:f45::/32
Signature Algorithm: sha256WithRSAEncryption
0d:ec:40:30:bf:f2:fc:ad:b1:e6:93:6c:d4:3f:3f:17:7f:f1:
f0:59:e0:ca:16:e4:7a:4f:a8:9e:7d:d3:0b:38:8b:b6:a0:f3:
b5:4c:fa:69:e2:23:b7:8b:eb:72:e9:8f:3d:49:4a:76:df:23:
0a:28:74:11:93:69:9e:04:fa:ac:c8:9f:09:74:11:a5:ec:fb:
85:48:ac:3c:d4:ef:3e:b0:9d:c2:a3:02:46:e0:73:82:d5:44:
9e:49:6d:8a:4a:13:1f:a9:c9:75:ab:ff:eb:07:a9:a1:86:67:
de:cc:17:11:72:24:01:1d:a7:ff:ef:00:ad:cb:f3:a2:ba:7a:
37:bf:34:08:5f:18:50:69:9a:de:5a:91:a5:5a:00:3e:af:8e:
68:08:c2:62:80:66:db:d5:16:5d:89:76:24:06:9e:fe:44:be:
e5:5e:df:4e:4e:a6:80:b3:61:94:d1:01:d0:c2:01:3f:2c:75:
f7:67:57:ac:78:ba:76:63:ea:52:68:74:4f:6f:0c:4e:36:3e:
ae:bf:8d:01:81:5f:23:20:09:5c:19:5f:fe:f2:8b:c2:ad:f4:
9d:1d:4e:3e:b9:2c:b2:0f:2d:30:32:7c:40:9e:eb:0b:ed:54:
57:02:39:03:d6:dd:38:01:0f:63:5b:67:d4:14:42:92:f2:25:
bb:33:81:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:43:38 2025 by rpki-client