Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/d47f87-b34f-49ce-bf1e-ac8236bdc88c/1/VFfv4bn6SeA1J-g2Q1pbVsKBNy8.roa
File: VFfv4bn6SeA1J-g2Q1pbVsKBNy8.roa (raw, json)
Hash identifier: PwXWOt+5qsERphjGwiqtKzczfTe7nST202lyq1uFFgg=
Subject key identifier: 54:57:EF:E1:B9:FA:49:E0:35:27:E8:36:43:5A:5B:56:C2:81:37:2F
Certificate issuer: /CN=4b7cc1f58bdd258c8d92d342bee6a2ad4ce3f744
Certificate serial: 0171FEC1
Authority key identifier: 4B:7C:C1:F5:8B:DD:25:8C:8D:92:D3:42:BE:E6:A2:AD:4C:E3:F7:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S3zB9YvdJYyNktNCvuairUzj90Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/d47f87-b34f-49ce-bf1e-ac8236bdc88c/1/VFfv4bn6SeA1J-g2Q1pbVsKBNy8.roa
Signing time: Sat 01 Jan 2022 03:01:33 +0000
ROA not before: Sat 01 Jan 2022 03:01:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62240
IP address blocks: 2a09:3704::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24248001 (0x171fec1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b7cc1f58bdd258c8d92d342bee6a2ad4ce3f744
Validity
Not Before: Jan 1 03:01:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5457efe1b9fa49e03527e836435a5b56c281372f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:8b:83:af:c1:9a:a2:c9:de:3d:7a:3f:5f:1b:
25:90:51:de:4f:3c:4d:4a:b1:9f:20:bb:b1:fc:63:
18:39:aa:68:e2:3c:ad:12:05:d2:1d:9d:4a:06:bd:
70:b7:e1:d8:25:0e:f9:c9:56:6e:c2:08:26:5e:5d:
c0:8b:83:4d:77:5a:6c:ff:fc:aa:50:96:42:36:78:
8b:d5:2b:24:40:54:cd:fe:d3:91:44:fb:b1:b3:9d:
e6:57:17:ef:09:b7:8c:33:ce:93:6f:f9:1a:97:00:
95:a7:de:e2:9e:af:28:8e:5c:5f:dd:f0:0b:7f:ed:
e2:35:3c:ab:fe:b3:ac:67:82:69:dc:63:7c:0b:33:
c9:fb:61:d8:2f:7c:2e:6f:1e:e6:bb:55:6b:36:41:
db:3d:aa:02:bf:e5:92:ba:b9:15:6f:a7:c5:b1:76:
51:55:5c:d7:b8:8e:49:0e:22:89:3b:c5:90:f4:4d:
70:5b:c0:06:98:15:a4:02:f0:ea:24:45:4b:bc:14:
75:07:b5:68:bb:82:06:f0:76:ce:a3:4c:e6:8a:72:
2a:5b:73:77:85:ac:f5:e7:d3:ec:77:81:41:63:8e:
27:15:b2:f3:ff:38:c4:ef:19:8f:41:43:a2:2d:5c:
02:84:8d:46:de:20:80:5f:9c:b4:29:52:2d:db:95:
c2:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:57:EF:E1:B9:FA:49:E0:35:27:E8:36:43:5A:5B:56:C2:81:37:2F
X509v3 Authority Key Identifier:
keyid:4B:7C:C1:F5:8B:DD:25:8C:8D:92:D3:42:BE:E6:A2:AD:4C:E3:F7:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S3zB9YvdJYyNktNCvuairUzj90Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/d47f87-b34f-49ce-bf1e-ac8236bdc88c/1/VFfv4bn6SeA1J-g2Q1pbVsKBNy8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/d47f87-b34f-49ce-bf1e-ac8236bdc88c/1/S3zB9YvdJYyNktNCvuairUzj90Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:3704::/32
Signature Algorithm: sha256WithRSAEncryption
41:e4:e7:a6:72:67:ba:65:ab:68:19:56:b4:00:4c:a4:6a:65:
20:f0:35:19:b7:57:7b:fd:2f:73:4f:fa:57:1d:a2:e9:c4:5a:
30:c5:4e:1a:27:20:7e:fa:cd:0b:77:aa:9c:d3:91:8c:9d:04:
44:36:26:b6:de:d7:a3:84:6a:e8:36:f8:f5:41:5c:0e:11:1f:
c2:8a:9f:aa:d4:d4:dd:22:a8:ab:95:01:7e:44:14:f6:9d:f8:
f0:55:17:0e:7b:8b:b8:28:e1:6b:36:12:e1:7a:dc:cf:03:be:
a6:4d:88:ee:a0:3a:78:80:97:ac:a5:b5:c9:11:cd:1c:51:97:
ce:51:53:63:e7:67:e5:0d:96:7f:68:66:cc:75:8d:40:c6:aa:
98:ca:00:cc:2b:e7:9c:3f:9c:01:42:3d:56:3f:e2:ef:7d:eb:
41:72:87:b9:27:e3:21:b6:bb:39:bc:fb:3b:78:13:b8:b3:6c:
d4:df:57:64:e5:69:53:6f:be:19:29:ef:36:b4:3c:0e:af:90:
af:48:6e:f7:c2:91:17:15:dc:09:26:11:f4:2d:dc:5f:12:36:
6f:a2:48:36:1c:c1:a5:c1:7d:8d:26:71:3b:13:29:7c:54:f5:
2c:b7:5d:cb:84:ad:8a:fc:0a:3b:29:0a:24:7d:25:86:97:7a:
4f:d4:0b:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:48:02 2025 by rpki-client