Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/72d226-c3b0-41f3-b4db-83fd7382ff13/1/P7P8DRIS5L8Q6WuYieSSCLJoVcs.roa
File: P7P8DRIS5L8Q6WuYieSSCLJoVcs.roa (raw, json)
Hash identifier: l7CXbGKeCMHxPMtL3NT+5YtLN0aQvx3MDNkCBhXkY3U=
Subject key identifier: 3F:B3:FC:0D:12:12:E4:BF:10:E9:6B:98:89:E4:92:08:B2:68:55:CB
Certificate issuer: /CN=50b90a5e158ba0908fdc83cc4243fe40c6dab423
Certificate serial: 0B3E3896
Authority key identifier: 50:B9:0A:5E:15:8B:A0:90:8F:DC:83:CC:42:43:FE:40:C6:DA:B4:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ULkKXhWLoJCP3IPMQkP-QMbatCM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/72d226-c3b0-41f3-b4db-83fd7382ff13/1/P7P8DRIS5L8Q6WuYieSSCLJoVcs.roa
Signing time: Tue 17 May 2022 06:14:32 +0000
ROA not before: Tue 17 May 2022 06:14:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41108
IP address blocks: 2a09:be40:3660::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 188627094 (0xb3e3896)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50b90a5e158ba0908fdc83cc4243fe40c6dab423
Validity
Not Before: May 17 06:14:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3fb3fc0d1212e4bf10e96b9889e49208b26855cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:05:10:8f:9e:68:bd:80:cd:dc:12:6b:64:38:
8a:21:76:87:9b:4f:51:01:08:55:6f:a0:61:9a:fa:
22:22:73:8b:11:e7:66:d6:24:5a:a9:06:d6:a8:8a:
6f:72:31:10:a0:77:6d:e2:e9:4d:42:3a:05:5d:e9:
08:d9:da:de:a3:b4:54:21:0b:05:3d:c4:33:42:65:
8a:4f:35:b6:60:32:3d:71:37:a3:d6:c2:cc:7b:22:
b4:a4:65:23:e2:b3:8e:96:fa:0e:c1:6a:2a:00:28:
d4:50:b1:b9:02:39:5b:60:63:9f:bd:4f:d6:ce:5f:
44:26:09:db:01:4d:58:6a:d7:ab:fe:97:c8:f6:74:
38:87:70:60:c2:c0:fe:ac:80:c8:74:bf:a0:ae:32:
4a:0c:2f:2d:57:72:14:77:97:20:32:69:f3:fa:7a:
b6:0b:5b:9e:97:c6:bf:80:7c:68:94:c6:c2:2d:5f:
f8:12:53:32:c3:95:7f:89:f6:bd:94:ec:6e:8c:d2:
a7:fe:10:42:ce:6f:32:76:4d:6d:c5:46:56:64:6f:
4d:95:b4:21:17:ad:a3:9b:77:6c:97:3f:ac:d1:72:
ce:91:71:ee:9b:f5:fa:40:69:81:81:10:ab:83:c0:
e6:86:ed:d7:5c:69:41:58:b8:ba:a7:89:43:0f:58:
9f:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:B3:FC:0D:12:12:E4:BF:10:E9:6B:98:89:E4:92:08:B2:68:55:CB
X509v3 Authority Key Identifier:
keyid:50:B9:0A:5E:15:8B:A0:90:8F:DC:83:CC:42:43:FE:40:C6:DA:B4:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ULkKXhWLoJCP3IPMQkP-QMbatCM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/72d226-c3b0-41f3-b4db-83fd7382ff13/1/P7P8DRIS5L8Q6WuYieSSCLJoVcs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/72d226-c3b0-41f3-b4db-83fd7382ff13/1/ULkKXhWLoJCP3IPMQkP-QMbatCM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:be40:3660::/44
Signature Algorithm: sha256WithRSAEncryption
56:a4:20:2b:74:2e:cc:43:fe:8b:c0:e5:56:d2:10:65:ef:2d:
50:f0:3a:f9:8b:d1:9a:96:4b:30:97:6e:c2:71:9c:f4:f5:da:
6c:df:c5:4e:0c:06:3c:e2:02:7c:d9:83:88:75:5d:b7:6c:63:
26:19:53:39:f3:ee:2b:fd:55:77:87:08:21:fd:b3:db:57:c7:
0a:ed:48:a1:57:92:99:62:81:af:63:f1:91:32:ff:31:3a:c1:
ec:99:0b:55:0c:1a:c4:91:64:0c:99:60:45:45:bd:5f:76:0f:
49:59:f2:dc:6b:13:ba:3b:4e:56:0b:49:5d:93:1a:dc:02:0c:
37:a9:58:4b:76:0b:43:3f:15:8b:b3:71:ae:89:98:8a:12:f2:
9f:ce:85:02:48:fb:25:d8:a8:30:e7:67:6a:dc:7c:cc:6b:4c:
41:ea:2e:aa:a8:ac:a5:d8:65:b1:83:95:73:db:d6:cf:f5:ee:
a0:40:11:59:71:13:3f:45:2a:79:15:67:40:de:75:7c:71:8c:
27:e6:14:8d:98:88:99:85:6f:87:a1:41:9d:7f:e6:a4:49:e3:
09:63:7f:34:cd:47:e4:f8:4c:39:f5:17:8b:a8:ec:4d:27:a9:
e1:31:4a:a4:e9:9c:61:53:95:b8:12:16:43:b1:a5:cb:f1:80:
e3:0e:10:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 13:10:07 2025 by rpki-client