Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/f33dff-8270-4894-ba8a-bbf2e37438d5/1/XeHg9PxA-L21FK8v0FJb7MYvMFg.roa
File: XeHg9PxA-L21FK8v0FJb7MYvMFg.roa (raw, json)
Hash identifier: UbyeNY8nGmjJz7TfyyctV5vj3zNaPCUFUvNfdNqc1Ts=
Subject key identifier: 5D:E1:E0:F4:FC:40:F8:BD:B5:14:AF:2F:D0:52:5B:EC:C6:2F:30:58
Certificate issuer: /CN=d7475ecb0f680a56d20f581bbdce521cfb7eb46d
Certificate serial: 018675CF2CC0F5AE71F86A48397DB01A4F10
Authority key identifier: D7:47:5E:CB:0F:68:0A:56:D2:0F:58:1B:BD:CE:52:1C:FB:7E:B4:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10deyw9oClbSD1gbvc5SHPt-tG0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/f33dff-8270-4894-ba8a-bbf2e37438d5/1/XeHg9PxA-L21FK8v0FJb7MYvMFg.roa
Signing time: Tue 21 Feb 2023 21:09:17 +0000
ROA not before: Tue 21 Feb 2023 21:09:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210761
IP address blocks: 2001:67c:b90::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:75:cf:2c:c0:f5:ae:71:f8:6a:48:39:7d:b0:1a:4f:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d7475ecb0f680a56d20f581bbdce521cfb7eb46d
Validity
Not Before: Feb 21 21:09:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5de1e0f4fc40f8bdb514af2fd0525becc62f3058
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:80:2f:87:dd:5e:21:1f:8f:f1:8d:2a:26:fb:
f4:28:d2:04:98:e3:53:5f:ea:87:63:51:86:76:63:
28:99:cb:b4:24:91:cb:fc:96:ec:dd:1c:9b:41:f6:
88:15:0c:f4:0f:d2:2e:92:08:d0:46:29:a2:01:84:
e1:2d:43:1b:c7:c2:49:11:b3:2a:22:d0:54:6a:25:
f7:99:0d:79:84:af:7d:16:01:af:6b:3d:e5:d1:b5:
96:93:45:99:99:17:9f:c0:80:b8:da:04:d0:fe:bc:
78:b3:81:66:be:cd:30:ff:75:c9:81:3e:40:2b:67:
70:7b:fa:f7:db:87:c6:40:5f:2d:ce:3a:0c:38:70:
c1:85:3c:60:3b:3d:4c:43:cf:9f:4c:c2:10:f0:a8:
27:b2:9e:28:b0:99:b8:e3:47:2c:3e:f4:0c:3c:7a:
7b:c5:a7:b5:69:5e:6b:28:b5:ee:12:4f:f0:25:d2:
21:b5:0b:4b:84:f0:cc:d3:6f:58:a5:0a:27:2b:77:
06:cf:76:f5:33:e3:8a:34:50:06:3b:18:74:a7:f8:
fb:f6:4a:0e:e4:06:8d:1c:58:82:24:d8:46:63:17:
d8:4b:10:4f:91:26:ba:fd:0b:5a:f9:40:be:e6:95:
f4:ff:c0:ba:8f:12:de:c7:d6:dc:9e:5a:ef:7d:e0:
ee:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:E1:E0:F4:FC:40:F8:BD:B5:14:AF:2F:D0:52:5B:EC:C6:2F:30:58
X509v3 Authority Key Identifier:
keyid:D7:47:5E:CB:0F:68:0A:56:D2:0F:58:1B:BD:CE:52:1C:FB:7E:B4:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10deyw9oClbSD1gbvc5SHPt-tG0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/f33dff-8270-4894-ba8a-bbf2e37438d5/1/XeHg9PxA-L21FK8v0FJb7MYvMFg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/f33dff-8270-4894-ba8a-bbf2e37438d5/1/10deyw9oClbSD1gbvc5SHPt-tG0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:b90::/48
Signature Algorithm: sha256WithRSAEncryption
34:58:72:de:46:eb:0d:a3:eb:1f:4f:64:b4:4d:3b:b2:ef:a8:
ef:43:1e:1c:38:18:48:9e:0f:39:2f:a5:58:22:17:26:97:a1:
d4:69:90:46:cc:e2:3d:a2:57:4b:ba:d4:78:c3:8f:a7:db:0c:
9b:38:ba:94:24:8f:12:92:5a:b0:6f:5a:a0:81:0b:0d:47:b4:
26:ce:cd:2a:2c:0e:0b:02:7a:67:f8:f4:24:9b:8a:43:3d:12:
ea:98:e3:16:51:73:2a:bc:9b:4e:a3:f4:b1:e3:8e:31:13:a0:
c3:f5:db:80:72:f8:0b:81:c3:f1:42:06:19:bd:32:d1:1f:f3:
94:df:60:fc:eb:d4:28:f5:d6:3d:ce:62:52:bf:99:05:11:4b:
3e:2b:03:b9:a8:51:6b:b3:64:32:9f:3e:e2:36:cb:e6:c5:22:
d8:de:40:0e:ae:e9:39:69:61:1e:09:e1:1f:ec:f8:be:84:03:
7d:ae:49:de:31:d1:e0:f4:ea:56:7f:b7:0e:06:ca:28:a0:e1:
af:a1:41:fd:07:2f:92:be:5f:af:41:a2:ea:90:d3:06:be:70:
64:6f:b1:d3:82:ee:21:4d:50:45:5f:8e:fc:72:73:11:f0:ea:
df:07:58:1b:f4:29:35:ff:6b:98:17:93:87:ad:4d:8d:3b:c4:
f1:fb:42:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:19:39 2025 by rpki-client