Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/4089e8-bf78-4653-a5dd-08b4eb909f49/1/SVOa22NCKJ8VM3qI6gcV24Dzr68.roa
File: SVOa22NCKJ8VM3qI6gcV24Dzr68.roa (raw, json)
Hash identifier: JG3ByD2Roa4yCzBROfKw0ByduH6dnATx7weilMiLT5w=
Subject key identifier: 49:53:9A:DB:63:42:28:9F:15:33:7A:88:EA:07:15:DB:80:F3:AF:AF
Certificate issuer: /CN=51a4a49050350a8a8d4321c8850654529b78f8bf
Certificate serial: 018CC26D240311CE0B3A8DED7A797A6AF2C7
Authority key identifier: 51:A4:A4:90:50:35:0A:8A:8D:43:21:C8:85:06:54:52:9B:78:F8:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UaSkkFA1CoqNQyHIhQZUUpt4-L8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/4089e8-bf78-4653-a5dd-08b4eb909f49/1/SVOa22NCKJ8VM3qI6gcV24Dzr68.roa
Signing time: Mon 01 Jan 2024 00:29:41 +0000
ROA not before: Mon 01 Jan 2024 00:29:41 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 52212
IP address blocks: 2a07:f880::/29 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:24:03:11:ce:0b:3a:8d:ed:7a:79:7a:6a:f2:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=51a4a49050350a8a8d4321c8850654529b78f8bf
Validity
Not Before: Jan 1 00:29:41 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=49539adb6342289f15337a88ea0715db80f3afaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:9c:d5:1e:3c:3d:a9:65:63:a2:3c:bf:00:11:
c5:a3:50:eb:f4:70:be:44:6d:36:f5:5f:fc:2a:85:
44:5c:23:43:39:48:13:71:fe:b1:e6:cb:1e:1e:d8:
c0:10:e0:e4:b3:c9:cc:0a:9c:c3:40:56:b4:de:b3:
4c:4b:30:f3:f0:00:81:57:79:59:6d:1a:0f:bd:0b:
de:1f:8d:06:5f:97:73:7c:3a:5a:6b:b3:b6:4e:77:
40:d8:bc:54:d6:b8:9a:37:66:47:af:df:75:0d:b6:
03:42:90:57:3f:22:89:90:69:6d:15:1e:6e:06:a8:
fe:5f:47:20:1d:a0:0f:e9:a6:d8:2c:51:f9:4c:53:
67:5e:1e:b2:a8:ec:08:d7:e7:8e:84:80:61:d0:2d:
2f:3e:48:e3:c0:ce:0e:25:86:b7:42:6e:c9:4c:db:
e5:19:ac:b9:7d:f0:69:c7:36:c6:13:14:9b:7c:52:
43:e0:80:ac:71:ae:5c:68:03:9d:23:2a:e9:8b:ff:
d9:e0:be:4b:a2:1d:d7:be:1c:ce:f6:41:86:35:71:
d3:2b:c7:54:fd:83:9f:0c:b0:a1:bf:bf:a7:00:33:
f4:89:41:e9:4c:76:6e:c7:a0:06:7a:db:61:59:5b:
4a:7e:ad:0c:e3:24:fc:dc:55:97:84:0b:9d:18:75:
88:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:53:9A:DB:63:42:28:9F:15:33:7A:88:EA:07:15:DB:80:F3:AF:AF
X509v3 Authority Key Identifier:
keyid:51:A4:A4:90:50:35:0A:8A:8D:43:21:C8:85:06:54:52:9B:78:F8:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UaSkkFA1CoqNQyHIhQZUUpt4-L8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/4089e8-bf78-4653-a5dd-08b4eb909f49/1/SVOa22NCKJ8VM3qI6gcV24Dzr68.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/4089e8-bf78-4653-a5dd-08b4eb909f49/1/UaSkkFA1CoqNQyHIhQZUUpt4-L8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:f880::/29
Signature Algorithm: sha256WithRSAEncryption
21:5c:05:18:5c:37:79:fa:f9:2b:21:0b:9f:6f:c4:b8:dc:8e:
8e:e8:06:24:89:3c:02:e0:4e:52:f4:0e:87:4c:ce:c4:fd:a2:
7b:84:1f:fc:f6:c4:f4:97:32:4a:ea:e7:38:be:9c:76:8d:59:
b4:52:84:d6:38:c5:84:8b:cc:b0:9d:54:9d:ab:f7:1d:59:12:
f6:e1:1e:32:b1:2e:56:81:b3:86:b4:b7:24:94:ba:23:1b:47:
56:d7:12:c2:dd:d3:2c:c6:3a:cb:b9:2b:af:33:77:0e:40:80:
dd:15:17:85:29:79:b3:8d:9c:a6:2d:3d:ae:e8:12:29:49:a3:
b5:a3:2b:e0:cb:30:eb:13:86:56:b4:92:9f:c6:4a:55:41:09:
db:8b:01:54:5c:2d:26:f9:31:da:5f:22:98:15:84:10:28:d9:
6e:01:3e:64:92:08:0f:b3:37:56:cd:fc:d5:de:80:e2:5e:22:
b4:af:8e:38:6a:7e:ce:a4:d2:72:3f:63:53:0c:90:1b:f4:9f:
e7:fd:46:0c:aa:ee:a4:b5:bd:ef:a0:06:30:5d:af:b8:76:54:
0b:b8:f4:e1:27:81:13:41:a2:e5:fa:cd:b3:cd:a7:9b:18:a9:
23:10:d3:b4:15:04:78:f3:5c:3e:86:d6:27:35:79:70:d9:a3:
5e:4e:64:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 05:02:06 2025 by rpki-client