Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/00a69d-d768-41ac-bd1a-74ce37ebc193/1/0YOsmUqliGdvLVppMLnJIUpPkt0.roa
File: 0YOsmUqliGdvLVppMLnJIUpPkt0.roa (raw, json)
Hash identifier: XWEDFNbstoXxH7A4BIZUmV0C+ICjdGmj6Xy/gMkYuJI=
Subject key identifier: D1:83:AC:99:4A:A5:88:67:6F:2D:5A:69:30:B9:C9:21:4A:4F:92:DD
Certificate issuer: /CN=be3d2d631d8c337fb89aceb2ff04a1ada8085265
Certificate serial: 0181DD1A64D3C1465F71FA795E1ADE18F745
Authority key identifier: BE:3D:2D:63:1D:8C:33:7F:B8:9A:CE:B2:FF:04:A1:AD:A8:08:52:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vj0tYx2MM3-4ms6y_wShragIUmU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/00a69d-d768-41ac-bd1a-74ce37ebc193/1/0YOsmUqliGdvLVppMLnJIUpPkt0.roa
Signing time: Fri 08 Jul 2022 09:18:23 +0000
ROA not before: Fri 08 Jul 2022 09:18:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25145
IP address blocks: 2a12:e440::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:dd:1a:64:d3:c1:46:5f:71:fa:79:5e:1a:de:18:f7:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be3d2d631d8c337fb89aceb2ff04a1ada8085265
Validity
Not Before: Jul 8 09:18:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d183ac994aa588676f2d5a6930b9c9214a4f92dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:bf:c8:84:23:01:43:c5:87:08:d0:36:6a:3f:
69:d6:10:57:a2:9d:72:45:db:64:c6:69:fd:bd:06:
14:28:aa:f8:f7:f2:a0:78:3c:0b:16:69:85:62:77:
e6:4e:5e:39:05:d3:f0:5d:66:17:33:4e:ad:d9:8f:
9a:f8:be:d6:a7:72:79:20:1c:0b:f9:43:03:37:6c:
a6:5e:ea:09:34:32:8d:a2:2e:7c:c4:38:46:80:6c:
de:e7:aa:01:fa:f9:5a:fd:19:fe:d4:26:25:1f:fd:
3a:29:65:7e:b8:24:fc:76:ee:38:fd:06:27:d2:0d:
28:7c:58:86:c9:be:f1:55:16:93:47:0e:c4:93:a9:
c7:61:2c:5f:ec:0d:76:d8:04:4d:21:94:e1:68:32:
80:d3:28:eb:3a:d7:61:f9:f1:03:78:28:5b:d8:80:
d9:47:58:0e:73:60:86:c8:9e:8f:f6:74:cd:95:4e:
0f:aa:85:d1:e9:74:cc:dd:50:18:f5:01:ec:40:be:
48:54:45:f2:36:af:be:59:41:91:f4:5a:e1:84:c7:
85:12:f3:01:9a:07:18:53:5a:49:96:11:02:98:c0:
4c:0b:42:0b:08:8a:f1:d1:c4:62:b8:d9:36:ce:80:
52:9e:1b:71:21:cb:da:ab:95:72:d8:7e:0e:43:1c:
26:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:83:AC:99:4A:A5:88:67:6F:2D:5A:69:30:B9:C9:21:4A:4F:92:DD
X509v3 Authority Key Identifier:
keyid:BE:3D:2D:63:1D:8C:33:7F:B8:9A:CE:B2:FF:04:A1:AD:A8:08:52:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vj0tYx2MM3-4ms6y_wShragIUmU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/00a69d-d768-41ac-bd1a-74ce37ebc193/1/0YOsmUqliGdvLVppMLnJIUpPkt0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/00a69d-d768-41ac-bd1a-74ce37ebc193/1/vj0tYx2MM3-4ms6y_wShragIUmU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:e440::/29
Signature Algorithm: sha256WithRSAEncryption
12:5f:5f:db:df:9e:1f:03:48:58:97:b2:e9:55:5c:c6:84:25:
ad:5c:04:be:d4:e6:46:68:7a:dc:07:cc:a4:83:29:41:de:2a:
3a:d4:45:24:2e:e0:6a:66:b0:87:46:47:5f:72:a0:32:fb:2a:
a8:bb:a0:61:57:15:7d:2a:d2:00:b8:48:78:d5:2e:dc:52:9a:
d8:21:b6:4c:e7:2c:eb:61:75:55:c1:86:7b:c3:30:1c:94:24:
44:49:26:80:a8:78:fd:4e:81:87:e4:95:6c:0b:97:d8:a8:46:
c6:36:7f:d3:48:52:2c:2a:58:d3:de:71:ee:22:6a:09:5b:56:
0f:9a:98:df:5a:b9:45:c8:53:41:8f:36:15:52:3d:8d:c2:d6:
2e:af:9e:63:9b:81:17:b8:81:81:54:ce:6c:53:20:4d:3e:f5:
bb:6b:c7:d7:dd:b7:71:55:68:28:44:e7:0e:3a:82:ef:9d:50:
db:d3:3e:ea:8c:2a:f6:cf:d1:11:cc:ed:46:98:6f:a3:ef:3b:
a3:7b:22:75:19:77:e6:cf:30:15:13:df:1a:27:f9:1f:cb:08:
4f:ef:dd:c4:b4:86:60:c8:7d:11:bb:1b:2b:2b:13:56:cf:58:
ff:5c:21:73:c8:43:2c:e5:29:0d:32:45:f9:14:a9:93:74:f0:
8a:07:18:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 18:24:28 2025 by rpki-client