Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/954876-d45c-4669-a1cd-6cbc38d4ea4c/1/OAaJkcc6FR55xcKdryC1mEfykn4.roa
File: OAaJkcc6FR55xcKdryC1mEfykn4.roa (raw, json)
Hash identifier: IfUA/tKiDBVgjfzS1NUzgmgqa3uypop4eLs/kmoghz0=
Subject key identifier: 38:06:89:91:C7:3A:15:1E:79:C5:C2:9D:AF:20:B5:98:47:F2:92:7E
Certificate issuer: /CN=82fd6ce85e919ab9bfad3f32dd9808f614009dc0
Certificate serial: 01D552
Authority key identifier: 82:FD:6C:E8:5E:91:9A:B9:BF:AD:3F:32:DD:98:08:F6:14:00:9D:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gv1s6F6Rmrm_rT8y3ZgI9hQAncA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/954876-d45c-4669-a1cd-6cbc38d4ea4c/1/OAaJkcc6FR55xcKdryC1mEfykn4.roa
Signing time: Fri 27 May 2022 16:49:13 +0000
ROA not before: Fri 27 May 2022 16:49:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211270
IP address blocks: 2a12:fac0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120146 (0x1d552)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82fd6ce85e919ab9bfad3f32dd9808f614009dc0
Validity
Not Before: May 27 16:49:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=38068991c73a151e79c5c29daf20b59847f2927e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:d9:b4:17:d0:8b:14:b8:de:15:33:b0:18:47:
4c:46:16:33:46:2d:04:1f:2d:d7:27:5b:2d:2e:85:
f4:fa:49:6f:03:db:05:a2:80:07:40:a7:3c:ba:ee:
a8:0e:fc:0a:22:04:95:e9:a5:41:f7:62:34:3e:7c:
cc:b5:ca:14:55:cc:7b:c9:82:db:f1:34:30:18:03:
bf:5c:ed:e9:e2:0a:cc:e7:b4:1d:68:56:2b:9f:e5:
1b:cd:18:bd:b2:94:e2:e8:c4:8d:14:24:e8:c9:bf:
5c:e8:30:40:c9:d4:a1:40:8d:22:64:db:01:6d:86:
eb:a3:77:54:b0:d7:53:8e:fc:ff:e3:cb:72:ef:a8:
8e:be:db:fa:c5:e0:10:b4:96:5d:62:de:4b:87:74:
02:75:ec:75:2f:b3:b4:f6:c0:2f:56:b8:85:3b:16:
87:bc:01:2f:28:55:2e:90:07:44:40:d7:19:e0:a3:
01:9c:6c:71:f4:06:14:37:d3:f6:90:c4:9d:28:8e:
9e:01:cc:46:e3:4d:ae:d7:58:b3:9d:f4:98:93:81:
10:ab:b5:29:c4:ef:aa:f1:46:06:0c:a1:5a:36:c5:
4e:b6:0c:eb:02:21:3c:6f:27:9a:f6:c3:df:da:ab:
09:e6:aa:ed:53:ed:f7:39:4b:69:b8:16:db:52:01:
86:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:06:89:91:C7:3A:15:1E:79:C5:C2:9D:AF:20:B5:98:47:F2:92:7E
X509v3 Authority Key Identifier:
keyid:82:FD:6C:E8:5E:91:9A:B9:BF:AD:3F:32:DD:98:08:F6:14:00:9D:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gv1s6F6Rmrm_rT8y3ZgI9hQAncA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/954876-d45c-4669-a1cd-6cbc38d4ea4c/1/OAaJkcc6FR55xcKdryC1mEfykn4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/954876-d45c-4669-a1cd-6cbc38d4ea4c/1/gv1s6F6Rmrm_rT8y3ZgI9hQAncA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:fac0::/32
Signature Algorithm: sha256WithRSAEncryption
8c:fb:ba:bd:62:5b:00:8e:94:f6:b4:01:f7:da:1c:c0:31:2b:
c7:7e:07:54:61:1f:e4:94:92:ec:95:ca:1b:62:c0:96:23:10:
be:18:8b:f0:0d:9f:0f:b5:23:f1:38:77:d2:4f:eb:48:97:9a:
bb:72:c7:ee:13:83:e8:30:85:14:f2:ff:1b:c7:b5:d2:ba:a7:
eb:e7:3b:0d:dc:ba:fe:81:e4:66:3d:6b:70:23:c2:53:e8:75:
89:bc:fa:ab:66:32:99:95:80:4d:bb:be:dd:44:e0:25:8d:e6:
0d:3f:b0:3f:49:f9:52:50:82:bb:e8:e4:bd:aa:eb:5b:a2:07:
11:09:ba:7e:56:ad:19:d0:4e:ac:39:8f:fd:c1:e1:33:8e:6c:
7c:8b:3c:32:fc:86:ce:f5:33:fc:08:f4:6f:a9:57:11:8e:f8:
41:dc:7c:97:f2:c6:68:59:7b:28:f3:e6:9d:1b:b9:83:f0:ac:
18:e9:9d:9c:c4:3e:2c:5a:76:be:ef:bf:f2:71:3f:ca:fb:22:
b9:74:fc:76:34:c5:d6:28:b0:9f:99:5e:2f:ff:d8:46:34:e7:
69:03:39:35:13:7f:9b:ac:27:d8:cd:0e:fc:3b:af:1a:8e:1a:
f8:01:ef:7a:cc:9d:90:16:5e:d9:62:9d:2a:c3:3f:a6:08:fa:
23:20:2e:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 17:51:54 2025 by rpki-client