Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/72d226-c3b0-41f3-b4db-83fd7382ff13/1/8Rhz4Y6TzteHLWh1WnDpR9f1raw.roa
File: 8Rhz4Y6TzteHLWh1WnDpR9f1raw.roa (raw, json)
Hash identifier: jV3qInmWrhdjwt6m/u6Lo2fbJbMTS9mkoAaV/OXYbWY=
Subject key identifier: F1:18:73:E1:8E:93:CE:D7:87:2D:68:75:5A:70:E9:47:D7:F5:AD:AC
Certificate issuer: /CN=50b90a5e158ba0908fdc83cc4243fe40c6dab423
Certificate serial: 09EB8FC6
Authority key identifier: 50:B9:0A:5E:15:8B:A0:90:8F:DC:83:CC:42:43:FE:40:C6:DA:B4:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ULkKXhWLoJCP3IPMQkP-QMbatCM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/72d226-c3b0-41f3-b4db-83fd7382ff13/1/8Rhz4Y6TzteHLWh1WnDpR9f1raw.roa
Signing time: Sat 01 Jan 2022 09:59:07 +0000
ROA not before: Sat 01 Jan 2022 09:59:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208565
IP address blocks: 2a09:be40:1200::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 166432710 (0x9eb8fc6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50b90a5e158ba0908fdc83cc4243fe40c6dab423
Validity
Not Before: Jan 1 09:59:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f11873e18e93ced7872d68755a70e947d7f5adac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:f0:fc:2e:7e:bb:af:d3:7e:af:ee:4e:08:52:
f5:f7:82:d8:40:26:14:08:9f:bb:2e:c4:2b:46:bc:
14:5f:26:c2:d3:57:2d:6c:e6:78:18:c8:9a:fe:f5:
df:00:f1:66:33:d4:15:29:67:a4:a7:c9:7b:16:1a:
48:ba:c2:7d:c1:c0:bd:6f:ab:5a:bb:bd:73:fa:72:
b5:93:b2:e9:e2:69:2a:4f:93:fc:86:a8:0a:94:d5:
e1:eb:8e:fa:6b:c5:0b:33:fe:c2:ce:f5:ba:51:86:
fb:2f:25:aa:4c:c6:27:3f:96:7c:25:4c:db:2f:09:
da:11:f8:f4:52:53:df:b2:23:ba:c5:ab:6d:ec:46:
8e:ff:b9:0e:6a:22:9f:51:7c:1b:a8:c2:ad:06:73:
ee:0f:26:ce:87:f2:51:d0:08:03:d6:d2:c8:23:dc:
7e:68:bb:42:2b:5f:78:37:cb:54:7e:cd:21:5b:c2:
cb:33:f3:02:37:3b:a8:14:1b:ac:4f:79:f7:13:75:
77:96:cb:c2:bb:1e:db:51:1d:64:40:df:39:66:61:
8d:60:0f:e3:4a:4b:85:73:b9:c8:e5:4f:b5:7e:48:
77:c1:f9:f7:40:24:74:0d:e7:72:55:9e:dd:35:d9:
de:58:6b:77:bd:33:2f:20:e2:98:3e:c1:c0:2d:72:
50:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:18:73:E1:8E:93:CE:D7:87:2D:68:75:5A:70:E9:47:D7:F5:AD:AC
X509v3 Authority Key Identifier:
keyid:50:B9:0A:5E:15:8B:A0:90:8F:DC:83:CC:42:43:FE:40:C6:DA:B4:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ULkKXhWLoJCP3IPMQkP-QMbatCM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/72d226-c3b0-41f3-b4db-83fd7382ff13/1/8Rhz4Y6TzteHLWh1WnDpR9f1raw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/72d226-c3b0-41f3-b4db-83fd7382ff13/1/ULkKXhWLoJCP3IPMQkP-QMbatCM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:be40:1200::/40
Signature Algorithm: sha256WithRSAEncryption
4c:83:e6:45:3d:1f:f3:68:38:b0:fc:09:82:2e:c8:b0:b9:d6:
2c:18:5e:f1:3e:38:6e:73:fb:76:88:6c:d8:b0:3d:c7:00:8c:
c3:f8:36:01:ae:3a:a3:80:b3:29:2c:80:0b:dc:a8:be:fd:b8:
a9:43:bd:45:71:46:e4:2a:96:37:b1:70:91:76:c1:e8:9e:24:
db:94:95:3a:07:77:c6:27:dc:c5:62:f2:18:dd:75:5f:ad:d1:
78:27:a4:94:3a:a6:5c:df:cd:db:34:f5:d7:0c:91:86:45:ac:
e2:61:b5:cf:2e:e7:3d:6e:f2:ec:a0:01:e6:5a:fa:ca:21:93:
86:89:77:e8:62:97:4c:2a:99:d1:c5:a9:c5:17:69:0f:aa:1c:
15:e0:8a:49:74:5c:b1:16:5e:30:22:c8:68:34:df:6a:99:4d:
16:f7:1a:b2:be:99:a9:51:00:b4:38:46:76:24:b4:e4:2a:5d:
ff:5e:bf:24:2b:f6:bb:dd:6a:62:87:9a:b2:70:9d:c2:20:0d:
a4:70:85:43:ce:63:b6:98:da:1a:61:a7:9c:b0:d6:8c:09:53:
9d:96:8d:ea:45:7b:e0:80:47:65:f9:fa:f7:cd:5d:94:05:5e:
08:95:91:16:f2:fd:83:56:a7:cb:96:d1:bc:a6:27:63:00:13:
c8:b0:6e:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 12:14:53 2025 by rpki-client