Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/bab53b-3115-41c5-87ea-c00454e0b12a/1/Q3ex8_FxvMcSxLlbKuWMbngEiLY.roa
File: Q3ex8_FxvMcSxLlbKuWMbngEiLY.roa (raw, json)
Hash identifier: tKFlLpk8GfV9gbXDLt1iGFNP//jfMj4y8mnHPk4IDHA=
Subject key identifier: 43:77:B1:F3:F1:71:BC:C7:12:C4:B9:5B:2A:E5:8C:6E:78:04:88:B6
Certificate issuer: /CN=2cd9516db9417952dedd9252fe5d83f09a3d99f5
Certificate serial: 017943FB
Authority key identifier: 2C:D9:51:6D:B9:41:79:52:DE:DD:92:52:FE:5D:83:F0:9A:3D:99:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LNlRbblBeVLe3ZJS_l2D8Jo9mfU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/bab53b-3115-41c5-87ea-c00454e0b12a/1/Q3ex8_FxvMcSxLlbKuWMbngEiLY.roa
Signing time: Sat 01 Jan 2022 09:03:41 +0000
ROA not before: Sat 01 Jan 2022 09:03:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56434
IP address blocks: 2a0c:4181::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24724475 (0x17943fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2cd9516db9417952dedd9252fe5d83f09a3d99f5
Validity
Not Before: Jan 1 09:03:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4377b1f3f171bcc712c4b95b2ae58c6e780488b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:81:3c:b8:a4:80:72:ed:7f:53:31:87:5d:dc:
8e:3a:1b:d6:d0:47:6e:5e:9f:5c:a0:58:bf:81:a0:
bd:db:e3:83:47:31:6c:eb:a2:55:6d:42:1d:64:94:
9c:da:f0:ca:3e:b3:5d:d3:37:1d:d5:48:eb:9c:ac:
8e:55:2c:5c:e3:1a:7c:89:57:99:82:e4:a6:dd:6f:
12:16:8e:06:85:84:38:7a:b8:46:92:72:57:3e:85:
1a:5a:a9:f1:f4:c4:1e:15:79:cc:af:c0:e8:36:85:
e5:64:54:f9:7e:57:f3:be:b5:2d:87:9d:b3:ff:14:
7b:5f:3d:05:53:c5:3f:05:b5:fb:4c:a6:fc:2b:e6:
14:0d:2a:6a:81:f3:86:bd:da:0f:7b:13:b1:48:44:
1b:69:2b:50:d4:5f:50:fd:af:01:17:76:aa:5f:a1:
fb:09:39:09:c0:9d:73:9d:bc:f5:b7:81:b4:f4:8c:
85:42:a6:93:93:ca:61:53:28:29:39:64:90:1c:c6:
ce:11:0a:22:35:10:b9:36:b9:7e:ed:c0:8d:23:ac:
d0:c3:75:43:27:e8:33:3f:59:1e:83:ff:7e:78:e1:
d4:b4:eb:de:da:be:89:b8:6b:b6:8c:21:bd:6a:40:
40:d5:43:6d:db:72:7a:54:44:1a:52:fa:5f:2d:45:
f1:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:77:B1:F3:F1:71:BC:C7:12:C4:B9:5B:2A:E5:8C:6E:78:04:88:B6
X509v3 Authority Key Identifier:
keyid:2C:D9:51:6D:B9:41:79:52:DE:DD:92:52:FE:5D:83:F0:9A:3D:99:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LNlRbblBeVLe3ZJS_l2D8Jo9mfU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/bab53b-3115-41c5-87ea-c00454e0b12a/1/Q3ex8_FxvMcSxLlbKuWMbngEiLY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/bab53b-3115-41c5-87ea-c00454e0b12a/1/LNlRbblBeVLe3ZJS_l2D8Jo9mfU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:4181::/32
Signature Algorithm: sha256WithRSAEncryption
c5:e9:bc:6c:60:20:48:27:e2:d5:b2:18:07:9c:30:99:3f:4d:
e7:3e:16:65:08:95:b2:6c:e9:b6:70:c3:80:f8:43:26:10:36:
15:11:49:c5:ef:4c:f2:d2:87:9d:ae:cf:2f:bd:3b:e0:9c:1b:
aa:55:cc:55:07:7a:3a:c0:9b:a3:07:e0:40:66:d1:bc:0e:85:
c0:cc:e4:38:4c:53:18:34:57:cb:99:a7:da:ea:71:60:38:a6:
85:5b:1b:a8:41:ba:63:d9:05:7a:78:f3:19:94:04:8b:0c:b9:
d1:f1:95:2e:54:64:55:d7:b6:80:3c:9d:1a:9a:05:96:5f:07:
c6:74:f5:fd:02:dc:e2:9a:55:85:37:2b:a3:af:1d:81:bd:f1:
8c:29:cb:4a:a4:c7:45:14:b8:0b:34:d1:26:b6:1e:82:4a:fd:
d2:43:65:92:02:7f:2b:a4:9b:7b:4f:a7:88:c3:53:d8:15:cc:
f9:30:27:56:9a:e8:f9:55:ca:94:84:57:b8:45:b8:95:5b:e2:
bc:06:65:d9:5d:f0:7c:ab:dc:ea:45:fc:9f:52:93:ed:d4:65:
1c:91:07:55:49:18:b1:a7:84:d0:d2:a3:87:e1:44:5c:95:77:
b5:0d:a9:aa:e3:72:d2:27:75:09:55:a1:d5:46:8c:cf:3e:a0:
f7:9f:e7:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 22:43:06 2025 by rpki-client