Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/0951d7-3f67-4bd4-904d-c94feaa6cb79/1/4JonLPj1VPxp8VNJwAfGRT54HSM.roa
File: 4JonLPj1VPxp8VNJwAfGRT54HSM.roa (raw, json)
Hash identifier: ETtaNcfpSyh5v7dhcE6utVDixCBxRttAHujBWKgiyys=
Subject key identifier: E0:9A:27:2C:F8:F5:54:FC:69:F1:53:49:C0:07:C6:45:3E:78:1D:23
Certificate issuer: /CN=a5295237ab44bce35ddfc2627fd49a8c44612441
Certificate serial: 27F33F95
Authority key identifier: A5:29:52:37:AB:44:BC:E3:5D:DF:C2:62:7F:D4:9A:8C:44:61:24:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pSlSN6tEvONd38Jif9SajERhJEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/0951d7-3f67-4bd4-904d-c94feaa6cb79/1/4JonLPj1VPxp8VNJwAfGRT54HSM.roa
Signing time: Sat 01 Jan 2022 13:00:28 +0000
ROA not before: Sat 01 Jan 2022 13:00:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207807
IP address blocks: 2a00:7180:800c::/46 maxlen: 46
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 670252949 (0x27f33f95)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5295237ab44bce35ddfc2627fd49a8c44612441
Validity
Not Before: Jan 1 13:00:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e09a272cf8f554fc69f15349c007c6453e781d23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:45:15:2d:5c:47:b4:89:b1:ed:74:96:ed:88:
8f:92:a7:99:42:0c:ad:56:24:5a:0d:eb:db:28:df:
ad:22:e0:84:c0:eb:15:6d:b5:66:e2:03:f7:02:14:
3c:1c:3f:bb:b8:23:2f:6e:c0:be:4a:ac:16:21:ad:
c7:f1:75:cf:c9:f2:6d:b2:16:ce:86:6a:0a:a0:cb:
93:5b:bd:22:e7:c1:7f:19:93:ea:80:c7:d1:fc:d9:
c7:e0:2f:7b:7a:19:1b:87:13:13:0a:b7:95:bb:69:
a2:9b:7c:61:e1:fa:48:1d:4a:11:9f:ec:69:8c:8a:
47:a3:9a:88:6d:d0:58:80:50:6c:0b:6d:0f:50:e5:
c5:48:ef:73:69:ee:96:a3:c9:23:fd:03:4c:74:17:
d8:bf:ef:2f:76:61:eb:a5:0f:d7:c3:a9:49:fc:56:
d0:3d:1b:1c:d4:0d:8a:b1:9b:06:b4:50:df:7a:8d:
f7:4a:e1:1e:91:03:a5:85:7f:d6:4a:da:e2:11:88:
0f:1a:2c:fb:db:50:8e:dd:2b:ce:90:ee:3f:46:19:
3f:29:8a:8d:d3:68:73:e5:b5:96:fa:db:e2:db:15:
e9:c6:40:64:6f:11:ec:5c:54:b3:d8:bf:c7:b1:78:
46:50:7a:cf:bc:f2:01:c5:13:b2:29:2a:b0:e6:90:
0a:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:9A:27:2C:F8:F5:54:FC:69:F1:53:49:C0:07:C6:45:3E:78:1D:23
X509v3 Authority Key Identifier:
keyid:A5:29:52:37:AB:44:BC:E3:5D:DF:C2:62:7F:D4:9A:8C:44:61:24:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pSlSN6tEvONd38Jif9SajERhJEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/0951d7-3f67-4bd4-904d-c94feaa6cb79/1/4JonLPj1VPxp8VNJwAfGRT54HSM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/0951d7-3f67-4bd4-904d-c94feaa6cb79/1/pSlSN6tEvONd38Jif9SajERhJEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:7180:800c::/46
Signature Algorithm: sha256WithRSAEncryption
26:43:9f:46:04:c7:29:4f:8d:2d:97:bd:b1:e4:83:ac:02:8b:
24:7a:d1:01:80:e7:b7:81:d5:23:31:f9:bd:2e:d5:58:7c:1a:
0d:32:10:fc:31:ed:23:35:71:19:48:93:4d:eb:f5:1b:ec:99:
c2:01:80:b8:9e:79:43:b2:16:77:27:bc:a7:55:59:25:64:ca:
59:95:65:52:78:10:15:79:2e:13:31:90:90:89:da:b9:91:6a:
5f:97:44:75:f2:7d:21:97:65:74:d6:b3:1b:39:ed:6a:a6:0f:
52:f1:fb:91:51:dd:42:f2:0f:89:b6:36:45:33:93:6e:fd:84:
ff:c8:75:4f:de:53:3b:4b:34:a4:28:24:e6:f5:11:60:c9:7d:
4b:be:5e:62:6a:8d:ad:13:da:f1:5e:00:76:6b:57:f0:88:ab:
9a:f1:41:3e:ff:f6:ea:98:1d:99:34:73:0e:fa:2a:6e:a1:97:
e8:b8:6b:22:81:c5:9f:c4:f0:c0:15:d9:f8:53:cc:8c:44:ce:
1d:10:2e:be:a9:91:09:7b:fe:a8:fc:f5:4b:30:76:cd:59:31:
0a:fa:96:23:92:1e:79:f1:21:d8:4f:e7:5c:d4:3f:08:fa:52:
7b:b0:20:ed:0e:1a:66:4f:16:68:dd:ce:93:d1:43:73:83:70:
e2:2c:4a:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:37:49 2025 by rpki-client