Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/t4vEfXwTYf4kmGdah0b3g9pbics.roa
File: t4vEfXwTYf4kmGdah0b3g9pbics.roa (raw, json)
Hash identifier: 4UHQN64kPwT141JbMR46O4odXh6WRplgOZzdfiMEq2k=
Subject key identifier: B7:8B:C4:7D:7C:13:61:FE:24:98:67:5A:87:46:F7:83:DA:5B:89:CB
Certificate issuer: /CN=cfcead390625edba1408108df57cea47160d70e5
Certificate serial: 0188DEA6D954AEDFD3B759C7570984CE72C0
Authority key identifier: CF:CE:AD:39:06:25:ED:BA:14:08:10:8D:F5:7C:EA:47:16:0D:70:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z86tOQYl7boUCBCN9XzqRxYNcOU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/t4vEfXwTYf4kmGdah0b3g9pbics.roa
Signing time: Wed 21 Jun 2023 15:50:56 +0000
ROA not before: Wed 21 Jun 2023 15:50:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200827
IP address blocks: 2a0f:7802:f000::/36 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:de:a6:d9:54:ae:df:d3:b7:59:c7:57:09:84:ce:72:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfcead390625edba1408108df57cea47160d70e5
Validity
Not Before: Jun 21 15:50:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b78bc47d7c1361fe2498675a8746f783da5b89cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:5e:67:d6:5d:20:1a:b1:2d:82:71:66:71:40:
26:6c:ff:cd:72:17:0c:3f:c1:f1:5d:2f:88:86:86:
35:aa:f5:e5:c3:82:eb:e6:00:b5:1d:fc:34:fb:a0:
79:47:6f:38:f2:0c:c5:d5:03:60:4c:92:30:f1:fc:
ae:8b:a5:e4:34:f2:73:ec:4c:46:b9:41:6e:63:82:
5e:a8:04:59:12:fa:3b:ba:fd:3e:83:f4:bf:79:fc:
be:21:dc:c0:44:3f:f5:17:9a:28:87:4c:ca:0c:92:
66:e8:11:81:40:63:0c:f0:e7:40:e5:5b:dd:23:1a:
1a:fa:76:7f:ca:96:49:37:68:e3:c9:84:fa:9a:a4:
53:46:d7:80:75:ad:e2:8f:02:e1:ce:ee:84:22:72:
2c:da:bb:21:df:cf:cb:e1:37:83:a7:a2:43:02:e4:
29:76:b5:48:06:e9:3f:34:7f:9a:6e:a0:46:6f:b9:
c8:91:0c:7b:7c:c3:a2:08:77:f3:ef:80:41:92:7a:
52:f6:8e:38:7e:54:5d:10:87:72:1c:01:26:b0:71:
f3:ce:56:3e:c3:fd:05:a6:2d:00:f4:b7:54:b6:fc:
26:eb:ad:44:0e:6c:53:8d:91:2e:98:9f:83:a6:ec:
dc:64:0e:32:e7:dd:87:ff:31:fb:84:74:2d:02:23:
36:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:8B:C4:7D:7C:13:61:FE:24:98:67:5A:87:46:F7:83:DA:5B:89:CB
X509v3 Authority Key Identifier:
keyid:CF:CE:AD:39:06:25:ED:BA:14:08:10:8D:F5:7C:EA:47:16:0D:70:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z86tOQYl7boUCBCN9XzqRxYNcOU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/t4vEfXwTYf4kmGdah0b3g9pbics.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/z86tOQYl7boUCBCN9XzqRxYNcOU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:7802:f000::/36
Signature Algorithm: sha256WithRSAEncryption
52:77:86:a1:94:d1:a9:a5:fd:27:ad:d3:23:81:64:7e:78:a8:
f1:18:5c:ea:90:05:a6:92:df:d5:13:dc:23:de:28:a7:a6:65:
e4:4f:48:58:56:62:6c:f6:59:7d:77:14:ee:85:7a:ca:1a:c0:
78:41:7d:64:12:db:1c:09:95:40:60:16:95:c5:91:69:02:fb:
dd:3d:01:07:78:91:2e:fa:5b:42:4d:15:ff:9c:6b:f4:e0:dd:
f1:34:e0:fc:f7:2b:db:cc:03:cc:c8:20:9b:08:64:04:5a:9d:
00:07:b3:dc:1d:45:fc:c5:d5:ed:bf:84:2c:7b:0c:77:e6:65:
fc:a1:01:75:df:bd:e3:df:e4:6f:29:8b:d8:f2:ee:9a:e4:a2:
01:96:44:3c:4e:2c:f3:19:f5:d2:ce:a5:ab:a6:36:1a:c2:f3:
50:c2:6e:94:49:8a:ef:66:7c:dc:e5:d0:03:3d:4a:d9:35:13:
fb:b3:64:6a:aa:09:f6:e3:1e:e3:a8:24:36:a0:1a:59:dd:45:
db:1d:9b:c6:84:be:57:72:5b:84:6f:bc:86:7b:28:32:2b:9d:
c9:fa:33:f1:a0:c0:08:43:f8:95:0f:0c:27:b1:fd:ab:fe:92:
1d:43:fe:ab:02:78:d3:a1:41:79:6d:32:99:ac:fa:be:35:76:
a9:c0:70:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:42:06 2025 by rpki-client