Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/c454f5-4aa6-4fca-8ce0-d0a0e129cbbc/1/HZaePHU_6Lf-8PhYx4mjsXRtDOo.roa
File: HZaePHU_6Lf-8PhYx4mjsXRtDOo.roa (raw, json)
Hash identifier: 3+Kb6KpkNBr4jNPoAG7caeTknlNCsi3VU3xHenlEm/c=
Subject key identifier: 1D:96:9E:3C:75:3F:E8:B7:FE:F0:F8:58:C7:89:A3:B1:74:6D:0C:EA
Certificate issuer: /CN=48dc0992867cb43b2833d5151e42bc41f57e73ad
Certificate serial: 01821A6109CFB37F6BEF62DC919E9B9C3E32
Authority key identifier: 48:DC:09:92:86:7C:B4:3B:28:33:D5:15:1E:42:BC:41:F5:7E:73:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SNwJkoZ8tDsoM9UVHkK8QfV-c60.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/c454f5-4aa6-4fca-8ce0-d0a0e129cbbc/1/HZaePHU_6Lf-8PhYx4mjsXRtDOo.roa
Signing time: Wed 20 Jul 2022 06:52:23 +0000
ROA not before: Wed 20 Jul 2022 06:52:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205955
IP address blocks: 2001:678:42c::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:1a:61:09:cf:b3:7f:6b:ef:62:dc:91:9e:9b:9c:3e:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=48dc0992867cb43b2833d5151e42bc41f57e73ad
Validity
Not Before: Jul 20 06:52:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1d969e3c753fe8b7fef0f858c789a3b1746d0cea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:6a:05:b7:11:9b:16:9e:e6:a2:37:76:43:10:
c6:3a:79:58:9c:ec:be:0d:b5:10:85:84:5e:b7:78:
99:64:26:24:a4:d7:d1:07:26:96:83:4b:ad:0a:4e:
f2:da:d1:67:91:b0:ed:e4:ab:52:9d:a3:57:71:87:
11:a4:0d:91:58:7e:b1:b2:54:37:b0:c4:31:c5:95:
05:6d:1f:65:35:15:f4:72:8c:c8:ed:5c:3c:75:60:
be:8c:14:11:36:2a:d4:3a:27:30:a4:ae:41:89:7f:
f0:1d:81:b1:41:01:d8:8a:15:b4:fa:e5:31:0c:1d:
62:5c:bb:8f:6c:50:7d:e3:3e:f9:73:38:9a:74:d3:
11:99:6b:5f:34:e7:74:4f:e2:b2:b3:28:d7:05:25:
fd:52:39:a6:8e:c6:15:75:a1:3a:f8:77:d2:44:ae:
d3:b0:51:ba:90:32:82:89:b8:8d:ae:4b:e0:bd:46:
c3:31:2a:05:c6:b2:7b:59:de:9b:e6:fe:bf:6b:6b:
c7:ab:b6:6c:07:61:45:d3:b0:4d:02:b4:91:19:0c:
39:06:74:91:a8:82:b1:f5:a9:6f:00:3d:e6:96:98:
d1:73:91:b5:df:77:b0:eb:3b:3e:24:3e:e3:6f:88:
fa:2d:94:db:11:9f:9b:57:cd:d8:f7:d3:2c:f8:a4:
8d:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:96:9E:3C:75:3F:E8:B7:FE:F0:F8:58:C7:89:A3:B1:74:6D:0C:EA
X509v3 Authority Key Identifier:
keyid:48:DC:09:92:86:7C:B4:3B:28:33:D5:15:1E:42:BC:41:F5:7E:73:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SNwJkoZ8tDsoM9UVHkK8QfV-c60.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/c454f5-4aa6-4fca-8ce0-d0a0e129cbbc/1/HZaePHU_6Lf-8PhYx4mjsXRtDOo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/c454f5-4aa6-4fca-8ce0-d0a0e129cbbc/1/SNwJkoZ8tDsoM9UVHkK8QfV-c60.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:42c::/48
Signature Algorithm: sha256WithRSAEncryption
be:ca:b2:e4:6e:7c:58:ad:cd:83:56:44:1c:80:7b:15:3d:d8:
2e:ed:9e:98:8a:28:fc:03:c5:45:58:6f:a7:78:7c:24:34:16:
cb:62:41:1c:9e:a6:d6:12:2e:c3:49:11:3e:8c:87:29:5b:4a:
fe:0d:5e:7f:68:4b:c2:8d:d0:51:ce:ef:b1:27:4f:96:2e:26:
40:a3:ae:89:6f:61:eb:45:0b:6b:05:da:de:69:7e:5a:52:12:
5e:43:ca:c3:10:8c:88:bd:10:b5:f0:4f:9a:ba:a5:69:23:48:
8b:40:d7:5a:da:87:41:98:01:19:a4:c0:8b:3b:0a:7a:62:76:
a5:61:15:45:1e:d2:32:ea:8f:ae:93:6d:96:ae:2a:61:b1:da:
5f:36:2b:e1:7d:c3:63:65:9d:19:6d:3d:f6:cf:df:20:81:84:
5e:dc:9e:72:84:85:e4:ee:a3:1e:5c:69:07:d2:2a:11:86:19:
98:c6:1b:c3:49:07:17:d0:7b:88:82:77:4f:6b:25:96:4d:14:
2a:d7:60:8f:5b:cb:b3:da:80:96:a5:ce:ca:7f:52:99:a9:7d:
bd:f9:59:e9:33:37:f8:5e:d2:40:40:44:d7:a6:81:57:64:3d:
e3:7e:4f:19:ff:e4:0b:e3:cf:0d:e2:25:a4:5a:6d:f3:b5:81:
88:dd:1e:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 12:17:11 2025 by rpki-client