Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/00a69d-d768-41ac-bd1a-74ce37ebc193/1/uXnNuM7CvCcKH47pOvijwkf-mEk.roa
File: uXnNuM7CvCcKH47pOvijwkf-mEk.roa (raw, json)
Hash identifier: dhfDw/GxtVR3RlwzEFzRkRyjlsra/fuYNCoYPu1qlDQ=
Subject key identifier: B9:79:CD:B8:CE:C2:BC:27:0A:1F:8E:E9:3A:F8:A3:C2:47:FE:98:49
Certificate issuer: /CN=be3d2d631d8c337fb89aceb2ff04a1ada8085265
Certificate serial: 01857255A1B2FF061043052F1D773A65EBCD
Authority key identifier: BE:3D:2D:63:1D:8C:33:7F:B8:9A:CE:B2:FF:04:A1:AD:A8:08:52:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vj0tYx2MM3-4ms6y_wShragIUmU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/00a69d-d768-41ac-bd1a-74ce37ebc193/1/uXnNuM7CvCcKH47pOvijwkf-mEk.roa
Signing time: Mon 02 Jan 2023 11:54:52 +0000
ROA not before: Mon 02 Jan 2023 11:54:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25145
IP address blocks: 2a12:e440::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:55:a1:b2:ff:06:10:43:05:2f:1d:77:3a:65:eb:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be3d2d631d8c337fb89aceb2ff04a1ada8085265
Validity
Not Before: Jan 2 11:54:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b979cdb8cec2bc270a1f8ee93af8a3c247fe9849
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:4f:c3:b1:3b:63:c2:ae:3a:6d:e6:05:92:c6:
9a:07:55:59:6b:31:58:8b:95:fb:34:26:be:61:e2:
13:97:30:15:7b:b9:95:0d:e4:83:5b:26:7b:c3:53:
95:f8:0c:0e:a9:46:0c:02:1f:1a:e8:80:89:49:03:
6a:f5:4b:70:2c:bb:df:55:ba:ee:cc:de:96:2b:7f:
ef:4d:c1:82:5c:fd:2c:51:bf:7b:b9:37:84:3d:a7:
16:57:48:99:f7:f8:0d:60:a3:ce:4b:fd:e5:2b:20:
ce:7d:11:94:dd:4c:93:18:9e:5b:ca:3f:2d:09:aa:
6a:b8:2d:57:04:c4:8f:f0:8b:33:91:57:df:4a:25:
80:d8:f5:77:7a:74:45:2c:f6:30:16:e2:b4:fc:c0:
33:8a:1f:a8:7d:27:b4:ed:d8:dd:a9:74:6b:5d:af:
90:a7:e9:fc:fc:aa:1a:f6:d6:c3:19:58:fc:fe:d7:
7f:0a:5a:67:40:fc:9a:c1:48:76:28:6f:5e:f5:51:
cd:ce:3a:b9:1d:ec:a3:f0:60:53:e0:91:0d:16:39:
6a:aa:ef:c6:6a:7d:2e:21:a9:3e:26:ca:c0:9a:e5:
67:6f:c2:0d:03:90:df:25:4e:8d:e5:f2:1b:96:e2:
2a:72:2b:8c:36:bf:12:11:74:be:83:70:c8:49:58:
ce:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:79:CD:B8:CE:C2:BC:27:0A:1F:8E:E9:3A:F8:A3:C2:47:FE:98:49
X509v3 Authority Key Identifier:
keyid:BE:3D:2D:63:1D:8C:33:7F:B8:9A:CE:B2:FF:04:A1:AD:A8:08:52:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vj0tYx2MM3-4ms6y_wShragIUmU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/00a69d-d768-41ac-bd1a-74ce37ebc193/1/uXnNuM7CvCcKH47pOvijwkf-mEk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/00a69d-d768-41ac-bd1a-74ce37ebc193/1/vj0tYx2MM3-4ms6y_wShragIUmU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:e440::/29
Signature Algorithm: sha256WithRSAEncryption
2d:4c:df:4f:7c:21:92:c1:e0:07:bd:0f:34:83:11:30:bf:1e:
97:77:63:20:29:4a:79:dd:10:95:46:5f:99:62:1f:96:98:67:
82:5f:82:f3:67:1c:88:e5:57:b4:9f:5d:22:ee:35:08:94:c6:
c4:dc:ef:fa:e4:10:b7:23:ef:23:b2:a1:ee:28:4b:70:8b:c6:
7c:da:a3:30:f2:f8:d7:c4:17:f3:15:94:bf:1e:67:61:b8:fb:
ce:1d:bc:4f:79:03:be:74:74:b6:03:94:bf:bf:3a:6b:c9:7f:
b1:c3:4e:82:f9:33:24:88:9a:d7:65:2c:a1:2f:64:ec:3e:39:
bb:8f:09:12:05:2e:24:37:3a:8f:08:3d:e9:6b:10:5d:5e:95:
55:be:b5:b2:a2:04:92:4b:61:10:1b:f8:c7:ef:40:2c:c9:88:
74:d6:cb:e7:45:15:a6:f7:ca:5e:e2:19:9d:46:6c:49:6b:bc:
17:3e:df:c7:00:18:95:4f:0b:d6:19:69:ab:ee:fe:a2:35:3b:
7a:6a:7a:cc:d2:4d:fd:43:58:64:96:df:73:87:44:f5:0b:1a:
9d:16:41:ce:75:ab:b6:08:26:c6:6d:60:87:f8:64:d5:58:2f:
01:da:15:8d:dd:b9:22:16:58:e8:ae:d8:06:8f:03:fb:8d:12:
71:f3:31:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 02:45:43 2025 by rpki-client