Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/f14e76-cacf-45ce-8080-2c2905c3c83f/1/FCFqR9DXxGRGr0QRc4njdjU_Pqo.roa
File: FCFqR9DXxGRGr0QRc4njdjU_Pqo.roa (raw, json)
Hash identifier: QO9IXiysCIco15KfwFkQLNRYj37WVpdiEBqs7kucyKQ=
Subject key identifier: 14:21:6A:47:D0:D7:C4:64:46:AF:44:11:73:89:E3:76:35:3F:3E:AA
Certificate issuer: /CN=2c256b1d4abb21395d97263a5fa8d3a55391db61
Certificate serial: 01856CAF1E3CECC62CF1468718493DDE7018
Authority key identifier: 2C:25:6B:1D:4A:BB:21:39:5D:97:26:3A:5F:A8:D3:A5:53:91:DB:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LCVrHUq7ITldlyY6X6jTpVOR22E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/f14e76-cacf-45ce-8080-2c2905c3c83f/1/FCFqR9DXxGRGr0QRc4njdjU_Pqo.roa
Signing time: Sun 01 Jan 2023 09:34:53 +0000
ROA not before: Sun 01 Jan 2023 09:34:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35913
IP address blocks: 2a11:6e40::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:af:1e:3c:ec:c6:2c:f1:46:87:18:49:3d:de:70:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2c256b1d4abb21395d97263a5fa8d3a55391db61
Validity
Not Before: Jan 1 09:34:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=14216a47d0d7c46446af44117389e376353f3eaa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:0d:59:40:b7:d8:29:12:a9:3a:b8:e0:b7:69:
fb:5d:36:db:02:dd:07:44:5a:3b:37:ba:84:fb:48:
ef:51:d5:4a:fc:83:a2:51:fe:9e:11:6a:31:b8:7e:
9b:88:c0:8d:34:64:5c:b3:83:90:74:a1:df:7e:8f:
a2:cc:7f:bf:68:93:83:28:fa:24:39:da:59:99:e8:
c4:7a:b1:fe:b4:c8:07:fe:13:dd:74:0a:e4:6d:93:
90:cb:54:97:2b:78:7a:33:b3:82:84:c2:6c:e5:a1:
f6:f9:40:57:d2:bb:c4:e9:55:06:8b:31:df:6e:8c:
f6:f6:dc:af:b9:6d:9f:4d:fe:85:47:f1:a2:d4:cc:
d9:31:8c:0a:b7:ac:78:49:c9:03:3d:ff:83:5d:a0:
cc:f0:0b:e9:17:3d:89:f4:4d:05:43:78:6d:bb:12:
aa:9a:cf:3d:c3:09:8d:ac:d2:e0:f2:13:6c:e0:7a:
7f:57:e2:d5:af:92:72:a8:bf:27:c3:2e:1f:13:13:
b2:81:b2:26:a5:ff:cf:b1:3b:8b:d6:25:7e:2a:54:
4d:0c:a9:37:3b:17:49:71:90:80:3b:ba:64:d5:64:
c2:b4:ef:7d:30:b2:0d:80:0c:ac:74:86:20:87:a0:
a4:99:40:ce:45:ab:f5:9d:ea:74:10:e7:6e:71:b5:
21:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:21:6A:47:D0:D7:C4:64:46:AF:44:11:73:89:E3:76:35:3F:3E:AA
X509v3 Authority Key Identifier:
keyid:2C:25:6B:1D:4A:BB:21:39:5D:97:26:3A:5F:A8:D3:A5:53:91:DB:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LCVrHUq7ITldlyY6X6jTpVOR22E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/f14e76-cacf-45ce-8080-2c2905c3c83f/1/FCFqR9DXxGRGr0QRc4njdjU_Pqo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/f14e76-cacf-45ce-8080-2c2905c3c83f/1/LCVrHUq7ITldlyY6X6jTpVOR22E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:6e40::/32
Signature Algorithm: sha256WithRSAEncryption
0e:ab:bb:69:41:86:36:78:cb:88:9f:3a:1b:7c:40:e2:ba:a5:
b1:00:06:56:b8:87:53:93:3e:67:10:0c:63:d5:d9:a6:44:af:
c4:d2:a9:96:18:78:f5:33:28:5f:13:6e:06:f4:a6:aa:a0:f4:
56:00:72:46:73:8a:01:29:8d:61:94:17:7c:08:74:3a:bd:e7:
b9:05:91:2e:3f:be:00:df:b3:47:ae:1a:6c:b9:d4:79:e2:eb:
d4:ca:b8:2a:47:27:7c:ee:40:dc:50:44:6c:78:f2:f4:b3:e8:
94:4b:b9:1e:14:57:9d:d8:a1:3d:3a:9f:7b:e0:65:70:2b:19:
cb:f8:f2:58:e7:be:81:89:4b:f0:3a:2a:e1:5f:b4:b3:ad:55:
b0:4a:74:db:d4:34:d7:ba:6c:6c:8d:ff:0a:a7:ae:c0:dd:fa:
19:95:43:39:d8:22:fc:17:1f:61:67:0f:eb:d7:a7:93:d4:f1:
ee:8e:ca:40:a1:5d:0b:17:6f:98:7e:78:96:4b:74:68:42:79:
2d:2c:69:16:d1:d2:eb:a7:f3:9d:2a:2a:91:cf:5a:3d:85:78:
e2:60:a1:1b:16:65:bc:96:3b:07:63:5a:c4:5d:c8:fa:a1:ea:
ab:0f:9f:9b:6e:b6:df:59:ae:78:ff:65:ef:9f:9a:70:84:a6:
76:8b:b3:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 03:31:10 2025 by rpki-client