Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/734f48-6755-4fee-bd46-3764beeaa1b2/1/T8T5FyZp-BEmc2X5_Wr8tHYlKsM.roa
File: T8T5FyZp-BEmc2X5_Wr8tHYlKsM.roa (raw, json)
Hash identifier: fCl3NvZkAsCSzaPx34LO7B2GqcOLQCwfVZdQMHDFmVs=
Subject key identifier: 4F:C4:F9:17:26:69:F8:11:26:73:65:F9:FD:6A:FC:B4:76:25:2A:C3
Certificate issuer: /CN=b3fddf701dd74ba99ac1f47b6767ef44f1a81077
Certificate serial: 05E85E13
Authority key identifier: B3:FD:DF:70:1D:D7:4B:A9:9A:C1:F4:7B:67:67:EF:44:F1:A8:10:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s_3fcB3XS6mawfR7Z2fvRPGoEHc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/734f48-6755-4fee-bd46-3764beeaa1b2/1/T8T5FyZp-BEmc2X5_Wr8tHYlKsM.roa
Signing time: Sat 01 Jan 2022 15:58:56 +0000
ROA not before: Sat 01 Jan 2022 15:58:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207341
IP address blocks: 2001:678:c64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99114515 (0x5e85e13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3fddf701dd74ba99ac1f47b6767ef44f1a81077
Validity
Not Before: Jan 1 15:58:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4fc4f9172669f811267365f9fd6afcb476252ac3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:5c:0b:30:83:68:d9:30:f9:0f:ef:ee:fe:de:
a8:ec:4d:9a:3a:c9:27:15:54:51:7d:82:67:43:68:
75:03:5d:60:4b:54:85:b3:a5:6b:34:1b:d3:f3:bf:
c1:dd:8f:7d:27:de:77:d8:16:a6:06:2f:3c:e6:7f:
d0:aa:8c:9e:9f:f0:57:bc:50:e5:81:ad:32:24:5a:
ba:29:31:71:48:95:62:3b:16:76:91:10:bb:a4:68:
1a:07:b0:aa:26:05:5c:79:44:a3:16:31:7a:6e:6d:
73:37:5b:f6:c5:b7:4d:71:89:a1:59:f5:57:59:15:
3e:2a:cb:45:ab:76:26:e6:57:83:08:a1:74:b0:ca:
1f:c5:37:5f:8b:33:42:ba:23:37:0a:6c:ef:23:21:
57:73:75:72:b3:52:fb:81:ab:81:1e:97:c8:cc:5e:
e0:66:12:14:d6:ee:be:f4:2d:94:8d:7c:74:05:a1:
ba:b9:93:fa:01:1b:f4:e8:d1:f1:ce:4f:a4:b2:72:
e0:78:a2:dd:8e:67:e1:d5:33:84:49:38:e1:8e:b3:
06:fd:c0:9d:de:e1:3a:c3:97:01:60:d1:8c:72:e6:
74:77:95:a9:25:2f:3f:88:65:eb:66:45:b7:13:c8:
e5:4e:f9:be:5b:74:4d:eb:54:56:a7:55:3f:98:1d:
b4:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:C4:F9:17:26:69:F8:11:26:73:65:F9:FD:6A:FC:B4:76:25:2A:C3
X509v3 Authority Key Identifier:
keyid:B3:FD:DF:70:1D:D7:4B:A9:9A:C1:F4:7B:67:67:EF:44:F1:A8:10:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s_3fcB3XS6mawfR7Z2fvRPGoEHc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/734f48-6755-4fee-bd46-3764beeaa1b2/1/T8T5FyZp-BEmc2X5_Wr8tHYlKsM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/734f48-6755-4fee-bd46-3764beeaa1b2/1/s_3fcB3XS6mawfR7Z2fvRPGoEHc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:c64::/48
Signature Algorithm: sha256WithRSAEncryption
42:82:40:f3:86:fe:95:07:fe:b4:73:8b:84:85:ca:01:0f:1a:
3f:b5:47:84:af:8e:df:5e:6b:74:7f:3f:0f:a5:d3:88:f2:23:
22:b1:aa:35:80:3e:e4:29:9c:a0:e9:97:01:6b:b0:60:dc:dd:
89:5d:ce:54:9c:3c:9b:a5:73:d9:e6:11:a4:6f:fb:bc:57:ac:
fe:cb:72:f2:d5:64:41:67:0b:39:bf:0e:74:3d:7b:51:17:49:
a9:ec:29:e5:2d:68:43:20:45:da:cd:57:81:0a:cd:f1:46:6f:
13:20:b9:40:bc:b1:dd:7b:26:fa:cc:22:f8:c8:53:6d:12:99:
4b:1c:a5:0c:93:38:82:0f:a4:99:53:be:70:47:67:69:1c:fe:
2e:b6:b6:7e:92:85:3b:6e:c6:dd:2a:64:6a:4d:a0:0e:2e:bf:
2c:48:a6:99:8b:66:4e:da:c1:38:d7:af:84:d7:0a:9a:58:a3:
68:22:1f:9b:af:9e:49:62:61:c2:3d:5e:f5:72:28:6d:f1:fb:
26:c8:25:29:9a:7f:56:36:82:e1:4b:83:39:8e:fb:17:df:31:
7a:b3:67:50:22:c6:19:82:fb:65:46:a4:0c:b5:84:7c:4b:c7:
4a:c2:15:65:04:cb:2d:86:48:74:c1:93:a7:71:5d:be:30:54:
42:57:56:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:40:26 2025 by rpki-client