Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/4bd35c-1e0f-45dc-a419-86014b064a63/1/lJZUYyFr0oiT_KxbubxkFN-SClU.roa
File: lJZUYyFr0oiT_KxbubxkFN-SClU.roa (raw, json)
Hash identifier: JTYFGtxBN7spoLCbjD6EwHCK9wAbPAj1+96qzduElqI=
Subject key identifier: 94:96:54:63:21:6B:D2:88:93:FC:AC:5B:B9:BC:64:14:DF:92:0A:55
Certificate issuer: /CN=672b4a95678d98d408e3788e822f84a74d7738ef
Certificate serial: 026C7FC9
Authority key identifier: 67:2B:4A:95:67:8D:98:D4:08:E3:78:8E:82:2F:84:A7:4D:77:38:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZytKlWeNmNQI43iOgi-Ep013OO8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/4bd35c-1e0f-45dc-a419-86014b064a63/1/lJZUYyFr0oiT_KxbubxkFN-SClU.roa
Signing time: Mon 31 Jan 2022 07:52:26 +0000
ROA not before: Mon 31 Jan 2022 07:52:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200774
IP address blocks: 2a00:58c0::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40665033 (0x26c7fc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=672b4a95678d98d408e3788e822f84a74d7738ef
Validity
Not Before: Jan 31 07:52:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=94965463216bd28893fcac5bb9bc6414df920a55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:fa:6c:06:ac:a3:9d:e0:97:47:50:da:57:3a:
5b:15:41:1a:ac:a5:eb:cc:22:29:27:0a:c1:b7:8e:
f4:c7:24:66:3d:0f:4e:44:bc:e4:1b:da:a6:ae:66:
da:14:c7:31:b4:7d:2d:a1:3b:36:36:a8:03:1c:fc:
f8:1b:89:9f:81:63:45:30:b7:12:72:65:18:83:ae:
d6:2f:84:f3:38:83:04:e9:b6:47:40:89:fb:4f:c7:
dc:4a:00:8f:91:75:99:9a:cc:0a:af:f8:cf:f0:42:
54:0f:32:cd:61:0d:f0:05:28:19:b9:dd:c1:6d:f2:
55:65:47:2a:8a:7d:e8:91:97:14:8f:b0:2e:7a:9e:
c7:92:d9:62:a8:85:76:ca:28:dd:a8:1b:b3:1c:90:
a6:c2:96:b2:35:c3:1f:4d:45:b7:82:bc:82:96:4e:
af:9c:04:3b:62:05:7b:44:ec:3a:b4:dd:eb:57:82:
a8:47:65:72:c6:44:dc:39:43:c0:95:d9:ac:be:0c:
fc:37:59:78:2d:9f:b7:1d:f7:f8:d7:b8:d9:cc:b4:
15:96:85:4c:4e:82:90:37:e2:60:24:52:c9:8d:76:
95:50:26:0c:87:38:25:2e:3c:43:74:f4:86:73:d1:
77:73:a2:e2:0b:57:4f:d3:9d:21:de:48:cc:52:a7:
09:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:96:54:63:21:6B:D2:88:93:FC:AC:5B:B9:BC:64:14:DF:92:0A:55
X509v3 Authority Key Identifier:
keyid:67:2B:4A:95:67:8D:98:D4:08:E3:78:8E:82:2F:84:A7:4D:77:38:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZytKlWeNmNQI43iOgi-Ep013OO8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/4bd35c-1e0f-45dc-a419-86014b064a63/1/lJZUYyFr0oiT_KxbubxkFN-SClU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/4bd35c-1e0f-45dc-a419-86014b064a63/1/ZytKlWeNmNQI43iOgi-Ep013OO8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:58c0::/48
Signature Algorithm: sha256WithRSAEncryption
41:f4:d2:73:00:02:fe:c2:d4:fe:82:a7:18:46:25:bc:0e:c7:
56:60:7f:5d:32:39:10:51:4d:c9:ea:24:b7:b1:9f:94:e2:33:
f9:7a:0a:31:98:52:be:82:b8:b1:31:05:c6:af:2d:d7:da:d6:
1d:a6:90:4e:51:f1:1e:0b:66:8c:1a:69:f6:8e:eb:28:70:6c:
ad:91:07:a6:5f:55:40:8f:26:5c:52:88:c4:c5:b4:10:ce:eb:
e2:e3:10:e6:dc:24:df:2f:e7:4c:3b:52:f5:d2:12:61:37:26:
f0:22:cc:52:17:27:2a:14:77:c8:67:90:d2:b1:40:9d:6d:9c:
13:76:f2:e0:90:ef:cb:bc:ff:c6:07:60:26:f3:05:23:33:3d:
2e:64:64:98:47:97:0f:e8:09:49:3e:af:49:9d:b5:f3:09:28:
ab:24:02:52:ef:9f:ee:41:2d:5b:00:54:1b:86:98:73:e0:6a:
47:b1:0f:5e:ce:09:d1:72:7b:95:4b:93:40:98:c6:6f:75:31:
96:58:fa:08:84:4d:f2:56:c7:91:42:ec:90:d8:47:bc:f4:df:
eb:5b:f7:1a:ed:48:3e:3f:4e:a1:b7:7e:9a:d5:e9:ab:7b:d2:
2f:5c:9d:96:91:03:3c:f1:8b:27:b3:b0:5e:b2:b7:aa:9a:c7:
b9:d2:9f:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:28:55 2025 by rpki-client