Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/6990e9-c3c0-478a-9997-95b08e3660cf/1/mmOXhsG-18M3nr5SpQKtRSuUy5U.roa
File: mmOXhsG-18M3nr5SpQKtRSuUy5U.roa (raw, json)
Hash identifier: PbkY3kKCYRCDF19EPFstWA1M1Eiv582C0hK+3hR+W+8=
Subject key identifier: 9A:63:97:86:C1:BE:D7:C3:37:9E:BE:52:A5:02:AD:45:2B:94:CB:95
Certificate issuer: /CN=922208b47b6a864d9d1ff33e06aa81d13819a74e
Certificate serial: 018A3A82B5D58566F9577951493E61310564
Authority key identifier: 92:22:08:B4:7B:6A:86:4D:9D:1F:F3:3E:06:AA:81:D1:38:19:A7:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kiIItHtqhk2dH_M-BqqB0TgZp04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/6990e9-c3c0-478a-9997-95b08e3660cf/1/mmOXhsG-18M3nr5SpQKtRSuUy5U.roa
Signing time: Mon 28 Aug 2023 04:59:19 +0000
ROA not before: Mon 28 Aug 2023 04:59:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 46516
IP address blocks: 2a06:2700::/29 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:3a:82:b5:d5:85:66:f9:57:79:51:49:3e:61:31:05:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=922208b47b6a864d9d1ff33e06aa81d13819a74e
Validity
Not Before: Aug 28 04:59:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9a639786c1bed7c3379ebe52a502ad452b94cb95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:16:32:4c:8e:d3:ee:cc:e8:f4:09:06:dc:42:
7c:61:98:f2:b0:d9:66:4b:89:ba:1c:da:03:49:7f:
ca:48:fe:21:b6:fb:cb:b0:24:57:04:a4:38:48:14:
92:3b:0f:de:be:4e:13:94:13:9c:06:a7:0e:e6:e2:
43:a5:8e:a5:af:5a:37:59:cf:4d:1c:b2:4e:13:eb:
c1:79:c5:2f:dc:08:ad:c1:fa:be:0d:76:ba:47:71:
f7:63:25:4b:5f:bc:98:39:66:b9:30:94:86:09:61:
5b:62:ef:b9:72:a0:e1:28:ea:b8:7b:ec:9c:bd:76:
2d:e8:3e:a5:40:2b:1a:0a:4f:e2:0c:6f:e8:88:40:
5a:6b:91:74:35:9a:9e:58:33:6d:48:2a:08:4e:c4:
f0:bd:50:a9:c0:f0:d3:0e:80:18:34:a1:67:1d:d2:
ff:b8:5e:a4:01:00:c8:62:82:65:31:a3:6e:49:a9:
60:4b:88:c0:bf:b9:68:d5:d8:35:0c:a0:49:10:16:
f6:76:27:26:fc:12:31:bc:c4:ad:bd:49:81:a0:6c:
77:0c:85:85:3e:21:03:98:b1:c1:66:3a:22:09:6e:
c1:33:24:61:65:3f:8c:bb:c1:a9:1b:66:a1:d7:a8:
c3:b2:e4:8d:97:96:19:eb:ec:8c:58:8d:17:95:ec:
00:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:63:97:86:C1:BE:D7:C3:37:9E:BE:52:A5:02:AD:45:2B:94:CB:95
X509v3 Authority Key Identifier:
keyid:92:22:08:B4:7B:6A:86:4D:9D:1F:F3:3E:06:AA:81:D1:38:19:A7:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kiIItHtqhk2dH_M-BqqB0TgZp04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/6990e9-c3c0-478a-9997-95b08e3660cf/1/mmOXhsG-18M3nr5SpQKtRSuUy5U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/6990e9-c3c0-478a-9997-95b08e3660cf/1/kiIItHtqhk2dH_M-BqqB0TgZp04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:2700::/29
Signature Algorithm: sha256WithRSAEncryption
5c:36:d5:2c:00:de:bc:0a:eb:9e:e8:43:f2:72:fc:0a:a7:b5:
66:a6:fa:f5:0b:cd:ea:e6:4e:93:43:c6:21:9c:de:bd:c8:7e:
cf:ac:73:26:ba:06:c9:d7:12:7e:90:a5:2d:5c:10:ad:a5:c0:
68:54:b6:64:ac:de:cc:f1:f1:12:d3:fe:1e:e9:2e:cb:48:74:
33:ea:48:f1:9b:59:1c:d9:54:49:0c:ee:fa:12:fd:63:91:bc:
fb:53:34:f6:da:01:99:28:71:2f:f3:53:72:cb:40:fe:08:14:
aa:bd:9d:f0:b0:f0:0f:d3:b8:1d:78:67:cc:5a:46:3f:b2:2b:
92:8a:ed:7d:aa:20:f9:5d:5a:32:84:fd:f4:00:2b:8b:87:58:
37:6b:ca:0f:0e:eb:ed:06:4e:33:46:d2:00:e2:1e:b7:74:61:
36:70:f6:e2:c5:b9:c2:21:99:eb:df:6e:7f:b7:99:0f:95:b2:
e6:85:29:8b:18:54:52:da:f1:7e:74:e5:46:bb:e0:0d:b5:bf:
8e:82:ca:b4:29:f6:0b:dd:0d:20:bd:0e:17:7d:cb:47:44:c2:
0d:08:4d:e1:40:8d:c8:cf:ab:1d:3f:d7:c0:82:f4:5e:b8:92:
b2:a8:d9:bc:4a:97:37:fc:21:3b:30:e3:c6:33:1d:0e:5c:1b:
8d:68:36:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 17:27:28 2025 by rpki-client