Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/35458e-8fd4-4e8a-92f0-cac8fb8ef99d/1/seRauOQBAgjKGZQwBfLAiIUgLSc.roa
File: seRauOQBAgjKGZQwBfLAiIUgLSc.roa (raw, json)
Hash identifier: lpb9bpfDsrvu/3Vx7RInWJhhdLD44VqEtTyNW4n6KVY=
Subject key identifier: B1:E4:5A:B8:E4:01:02:08:CA:19:94:30:05:F2:C0:88:85:20:2D:27
Certificate issuer: /CN=58720d4ecee34fdac69a42194d015494147b4e43
Certificate serial: 08900914
Authority key identifier: 58:72:0D:4E:CE:E3:4F:DA:C6:9A:42:19:4D:01:54:94:14:7B:4E:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WHINTs7jT9rGmkIZTQFUlBR7TkM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/35458e-8fd4-4e8a-92f0-cac8fb8ef99d/1/seRauOQBAgjKGZQwBfLAiIUgLSc.roa
Signing time: Sat 01 Jan 2022 08:02:17 +0000
ROA not before: Sat 01 Jan 2022 08:02:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43767
IP address blocks: 2a0e:3000::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143657236 (0x8900914)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58720d4ecee34fdac69a42194d015494147b4e43
Validity
Not Before: Jan 1 08:02:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b1e45ab8e4010208ca19943005f2c08885202d27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:fe:25:86:95:fa:32:87:41:df:53:79:0e:79:
6c:d7:e3:be:bc:b4:39:6b:20:d2:c0:a6:15:9f:62:
b4:b3:c0:6b:08:1e:d2:2a:a8:04:c2:64:8e:67:1f:
9c:66:d9:34:d0:fe:ab:7e:f1:bc:1a:4a:f1:4e:b4:
25:51:91:9d:e0:aa:16:6b:9e:37:3f:44:b7:b8:f1:
ea:69:91:64:cf:3e:f7:fe:08:a1:ed:1e:bf:94:f9:
7b:30:02:fb:64:af:22:80:f5:18:6b:da:71:ed:b9:
be:3b:65:42:2f:bb:0d:63:c4:02:0d:e6:80:88:fa:
7a:48:88:99:ca:79:8e:a1:0d:91:e3:9f:f2:25:ec:
69:00:b6:bc:fa:a6:1b:d2:20:a7:90:2c:95:d5:b3:
43:38:74:bb:44:e1:26:ef:e9:14:dc:c2:45:63:15:
aa:d1:c8:db:2c:f1:ff:02:ea:fa:fa:cb:f3:ae:7d:
18:46:4b:db:85:9c:fa:b5:f6:86:d5:cf:c5:22:e5:
69:e0:88:5d:65:10:14:25:3e:a2:f2:39:75:df:25:
cb:7f:27:dd:08:f5:da:c1:de:a5:5f:b0:73:e3:a5:
b3:14:55:75:7e:a2:1a:4c:c6:cc:62:9f:89:6d:a8:
4a:40:cc:45:7b:1f:fd:06:85:11:28:57:a2:54:5c:
bf:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:E4:5A:B8:E4:01:02:08:CA:19:94:30:05:F2:C0:88:85:20:2D:27
X509v3 Authority Key Identifier:
keyid:58:72:0D:4E:CE:E3:4F:DA:C6:9A:42:19:4D:01:54:94:14:7B:4E:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WHINTs7jT9rGmkIZTQFUlBR7TkM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/35458e-8fd4-4e8a-92f0-cac8fb8ef99d/1/seRauOQBAgjKGZQwBfLAiIUgLSc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/35458e-8fd4-4e8a-92f0-cac8fb8ef99d/1/WHINTs7jT9rGmkIZTQFUlBR7TkM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:3000::/29
Signature Algorithm: sha256WithRSAEncryption
7e:4e:0e:83:4b:39:48:bc:cd:7e:60:91:58:8e:7f:a1:53:07:
ee:cc:79:da:2a:6a:37:c2:51:5d:32:f5:f2:88:d2:77:ec:a8:
2c:7f:97:de:3e:10:9d:e1:9b:86:87:85:7d:db:a8:d3:60:42:
48:79:c3:d4:e7:4a:34:1f:c9:37:4f:43:5d:29:7a:40:f2:9d:
f0:1c:0c:42:bc:f2:53:79:b7:12:2b:89:36:61:46:db:97:c8:
bb:78:96:64:89:66:2f:20:ad:d6:9d:ae:9d:00:28:4d:7c:fc:
19:de:ca:21:af:07:ee:80:24:12:8f:03:43:18:34:1e:e9:80:
59:b9:98:e4:6b:5f:da:52:8a:06:fe:80:17:3d:6d:8f:9d:32:
ae:8e:eb:16:56:ec:92:7d:25:ba:ca:35:25:79:4f:f3:42:a7:
ac:98:a5:db:c8:42:63:8a:5d:15:43:d3:9e:a2:82:d7:76:32:
15:b9:38:8b:d5:51:6e:64:3c:4e:3a:59:c8:11:60:a0:c2:6f:
dd:95:79:2f:4c:ae:92:9a:d1:be:ab:8b:94:f4:b7:ff:42:be:
69:7f:05:fe:a9:81:92:69:3d:25:f3:bc:3c:f3:d7:9a:11:5b:
ad:51:96:eb:f9:92:bc:fe:4c:89:50:03:d3:80:e4:e8:00:66:
a5:e7:45:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:44:23 2025 by rpki-client