Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/dfBszcHQQvDj-zhhnDZhX8xye1A.roa
File: dfBszcHQQvDj-zhhnDZhX8xye1A.roa (raw, json)
Hash identifier: E4d0bYQXCcSNtSaVB636bWjp+xV2ck06e8GR64E3p1Y=
Subject key identifier: 75:F0:6C:CD:C1:D0:42:F0:E3:FB:38:61:9C:36:61:5F:CC:72:7B:50
Certificate issuer: /CN=370e5450d1486780aba54f045ec4802f19f0b4f7
Certificate serial: 02F7E54D
Authority key identifier: 37:0E:54:50:D1:48:67:80:AB:A5:4F:04:5E:C4:80:2F:19:F0:B4:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/dfBszcHQQvDj-zhhnDZhX8xye1A.roa
Signing time: Sat 01 Jan 2022 16:03:37 +0000
ROA not before: Sat 01 Jan 2022 16:03:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 142419
IP address blocks: 2a0e:46c4:107::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 49800525 (0x2f7e54d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=370e5450d1486780aba54f045ec4802f19f0b4f7
Validity
Not Before: Jan 1 16:03:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=75f06ccdc1d042f0e3fb38619c36615fcc727b50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e0:91:c2:1c:5e:15:5d:aa:8b:3d:28:6e:06:
df:22:87:66:1f:7d:03:61:fb:69:85:c1:eb:c0:d6:
5f:21:88:55:e4:6d:83:76:0d:7e:3b:e2:1f:dd:db:
35:71:73:1b:19:30:89:87:01:84:56:a1:91:68:1e:
70:80:5e:cf:50:52:0c:3b:ac:23:44:5c:94:0b:24:
8f:9e:5f:b3:d2:7a:1a:e8:72:87:20:44:e1:6f:72:
d3:95:be:4c:4a:05:7c:12:69:9e:62:df:25:02:75:
0a:5b:9c:3a:b9:f8:90:9c:a3:fb:da:06:6a:e1:aa:
5f:2a:d5:c8:50:e5:de:bf:d2:4c:08:4b:31:3c:46:
eb:12:8c:43:c1:28:c6:4e:09:1f:ed:df:13:13:de:
e1:1c:2a:38:e0:60:08:b6:2f:7c:1b:f7:9b:0c:fc:
b6:b7:e5:9d:5f:f8:47:bc:ef:a0:a3:8d:ad:09:7d:
e2:31:d7:be:d0:c3:7a:54:2b:51:44:cc:3c:1e:dd:
83:fa:18:04:dd:ae:de:e5:0b:b4:f6:81:da:41:43:
fe:56:84:39:88:90:84:48:de:3d:1c:11:4d:58:3a:
c6:fb:ed:2c:0b:a0:82:17:a5:5f:33:b6:67:c8:57:
c1:e9:62:a7:cc:79:c0:00:62:f3:be:6b:b8:7d:07:
f8:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:F0:6C:CD:C1:D0:42:F0:E3:FB:38:61:9C:36:61:5F:CC:72:7B:50
X509v3 Authority Key Identifier:
keyid:37:0E:54:50:D1:48:67:80:AB:A5:4F:04:5E:C4:80:2F:19:F0:B4:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/dfBszcHQQvDj-zhhnDZhX8xye1A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:46c4:107::/48
Signature Algorithm: sha256WithRSAEncryption
51:cb:09:42:66:4b:21:76:84:49:ee:24:7b:87:5a:50:f5:a6:
9d:37:a7:4c:4d:52:23:a2:ef:b1:e7:f3:39:18:de:e1:ca:c5:
e7:41:f1:34:3f:be:d1:01:c8:82:76:87:0f:36:18:5a:48:ef:
b7:38:ad:da:bd:ad:9d:21:bb:35:6c:ec:71:78:21:93:df:36:
c1:27:c3:d6:0f:d0:4d:db:b9:22:08:98:53:24:53:37:c3:80:
a1:5a:6f:67:77:2e:46:96:bc:b8:ba:ef:eb:56:ab:b0:93:95:
e4:0d:c8:32:d9:13:b7:00:be:39:4a:c5:6a:24:84:c0:f5:a4:
38:cf:0c:0d:33:6c:a3:61:fe:07:5d:d7:f3:b5:a9:e6:01:ad:
29:25:90:ee:b8:04:a3:1d:f0:42:29:bd:bf:53:4a:1a:9d:0d:
15:fc:7d:78:e6:cd:f1:3b:23:4d:65:bd:d2:90:48:7f:ff:2d:
2e:b7:03:66:72:92:a5:65:06:75:62:6a:0f:dd:28:8e:86:87:
2f:8a:99:2c:ab:3c:2d:e5:7d:c4:42:6f:b3:92:07:54:ea:05:
cc:38:d5:90:f0:4c:e2:7f:6a:af:d9:06:6b:a8:90:d4:b2:4d:
e6:3d:dc:9c:9a:63:c8:ec:32:ba:15:0c:21:b3:a9:d1:6a:f0:
e8:5e:f8:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 21:57:13 2025 by rpki-client