Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/65f882-ca21-4b73-b8e9-f09209b478cf/1/FL9-zivTIRZers2yIBBJIAbM5Ic.roa
File: FL9-zivTIRZers2yIBBJIAbM5Ic.roa (raw, json)
Hash identifier: w3qNtFLvYCXMgvdVay96sUDKSxlLN+zatVVc74nvNSo=
Subject key identifier: 14:BF:7E:CE:2B:D3:21:16:5E:AE:CD:B2:20:10:49:20:06:CC:E4:87
Certificate issuer: /CN=6f6b8950484b9ef43fbf98d39fe9f8ac5e837b78
Certificate serial: 01856E8B44C929D0EDE64F16B19C1AB65690
Authority key identifier: 6F:6B:89:50:48:4B:9E:F4:3F:BF:98:D3:9F:E9:F8:AC:5E:83:7B:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b2uJUEhLnvQ_v5jTn-n4rF6De3g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/65f882-ca21-4b73-b8e9-f09209b478cf/1/FL9-zivTIRZers2yIBBJIAbM5Ic.roa
Signing time: Sun 01 Jan 2023 18:14:58 +0000
ROA not before: Sun 01 Jan 2023 18:14:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208812
IP address blocks: 2001:67c:2bbc::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:8b:44:c9:29:d0:ed:e6:4f:16:b1:9c:1a:b6:56:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f6b8950484b9ef43fbf98d39fe9f8ac5e837b78
Validity
Not Before: Jan 1 18:14:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=14bf7ece2bd321165eaecdb22010492006cce487
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:92:f5:5a:9f:14:50:57:4f:e4:37:47:bc:f7:
92:9d:99:e5:ac:3c:0d:26:90:c9:fe:ed:9f:57:c3:
53:43:42:9b:23:74:2a:51:e1:69:38:5a:d5:2b:9f:
22:7d:d5:6d:e2:64:39:fe:08:e4:ab:4d:63:c1:63:
d1:3f:41:cc:54:c5:a0:4b:77:50:4f:43:bc:32:ff:
29:40:69:f1:30:8e:56:ff:d8:d1:e7:49:e4:b4:df:
38:9b:00:59:f1:ba:90:36:2d:50:08:7a:c9:27:f8:
bb:a3:48:66:ee:7a:08:c0:21:73:85:07:c5:6a:59:
7c:72:fb:51:95:79:bf:17:f3:77:77:3d:d3:c8:a2:
e4:34:a5:5d:21:ca:a5:bc:f9:cb:59:e0:49:dc:5a:
14:ff:a8:25:42:aa:c8:c9:2b:df:23:7a:f7:3f:bd:
73:dd:c1:d3:a0:63:cf:d4:5f:eb:2c:a4:aa:0d:96:
5c:60:e3:ae:00:be:8e:99:94:cd:f0:20:17:ba:c5:
48:32:95:2a:6a:a2:c1:c0:4f:22:e0:e4:f1:2d:32:
d5:77:7f:12:e7:c4:56:57:0a:a3:25:aa:23:e1:9c:
cf:c3:a1:21:d0:77:e8:ef:18:83:7b:75:fb:04:ba:
82:9f:21:b4:c1:cf:3a:44:26:5f:ad:b2:b6:09:90:
69:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:BF:7E:CE:2B:D3:21:16:5E:AE:CD:B2:20:10:49:20:06:CC:E4:87
X509v3 Authority Key Identifier:
keyid:6F:6B:89:50:48:4B:9E:F4:3F:BF:98:D3:9F:E9:F8:AC:5E:83:7B:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2uJUEhLnvQ_v5jTn-n4rF6De3g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/65f882-ca21-4b73-b8e9-f09209b478cf/1/FL9-zivTIRZers2yIBBJIAbM5Ic.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/65f882-ca21-4b73-b8e9-f09209b478cf/1/b2uJUEhLnvQ_v5jTn-n4rF6De3g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2bbc::/48
Signature Algorithm: sha256WithRSAEncryption
8a:67:c5:8d:f7:31:7a:08:82:37:98:45:b1:ed:a2:80:89:2c:
2c:24:37:1d:07:36:dc:21:95:60:5c:b0:02:3a:4d:66:45:06:
26:3b:8c:5e:07:3a:a3:a4:bc:8a:48:78:10:d1:ec:60:dd:87:
78:9a:50:e8:71:6a:ad:4a:81:91:db:05:e4:af:6d:b3:47:88:
c8:f1:7e:fe:cf:9c:56:3d:94:66:c1:73:26:64:83:0a:90:3e:
ca:44:1e:ea:03:17:a5:c1:3c:2d:67:42:8c:e5:80:91:81:1c:
9e:0a:26:11:46:fe:f8:7f:53:1a:ac:fc:e5:12:d8:4b:77:f2:
21:02:6f:aa:9c:d4:f1:0e:80:33:ee:77:92:5c:c6:69:89:9d:
47:29:6d:a2:14:76:e5:64:7f:b2:a4:ae:14:26:3c:c8:fa:06:
6f:12:9c:53:ac:48:3d:2b:eb:52:91:25:ca:c2:f4:d1:78:92:
cd:76:37:48:61:db:c8:45:17:82:33:53:84:2e:29:13:40:f5:
07:f1:08:d5:a3:69:a8:47:6f:25:a3:9b:4c:23:c3:43:50:58:
58:93:6f:e7:c2:86:66:25:88:05:22:9a:c2:dc:a3:e5:65:d1:
2e:f1:38:ae:22:4d:dc:a9:a6:d4:fd:cb:6d:6c:df:07:c6:d0:
6e:d4:48:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 20:06:26 2025 by rpki-client