Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/o3oS-Cpd6hLM26W9RqhKC-6UNQI.roa
File: o3oS-Cpd6hLM26W9RqhKC-6UNQI.roa (raw, json)
Hash identifier: +QoJKQbEANsg1ji6mJAwSmg2z3OtIbMUgNip08KGNFA=
Subject key identifier: A3:7A:12:F8:2A:5D:EA:12:CC:DB:A5:BD:46:A8:4A:0B:EE:94:35:02
Certificate issuer: /CN=54914541fd1b95e7c0afc875fbef78794f55386b
Certificate serial: 0183B1803BDEEF32CAFC4755C55B3861D3B9
Authority key identifier: 54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/o3oS-Cpd6hLM26W9RqhKC-6UNQI.roa
Signing time: Fri 07 Oct 2022 08:11:54 +0000
ROA not before: Fri 07 Oct 2022 08:11:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212817
IP address blocks: 2a06:a005:1330::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:b1:80:3b:de:ef:32:ca:fc:47:55:c5:5b:38:61:d3:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54914541fd1b95e7c0afc875fbef78794f55386b
Validity
Not Before: Oct 7 08:11:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a37a12f82a5dea12ccdba5bd46a84a0bee943502
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:ad:54:a6:43:49:42:51:61:67:93:25:4c:36:
58:bf:40:cb:eb:34:96:ff:20:b6:d4:4d:d5:23:6b:
3b:53:ca:b3:fa:5a:4e:28:1a:af:e4:92:61:fd:1f:
c1:ac:80:29:05:7c:b1:42:51:7b:f3:5a:9d:aa:94:
c7:79:0d:5f:d2:fd:2a:43:5e:bb:ed:6d:2b:f5:5d:
09:70:f2:79:ac:16:d7:be:34:b1:6b:5c:40:33:ad:
9f:3a:9c:ef:02:8c:b5:eb:f1:bc:ea:51:e7:04:7b:
a6:a8:95:da:67:7b:04:9e:43:20:90:8a:96:8c:99:
ae:c2:14:ed:78:4a:ca:ba:81:62:94:f8:2c:96:4f:
d3:d1:b2:76:ca:34:0b:69:28:eb:5f:d2:1c:8e:b1:
07:71:a8:0d:a0:ae:b9:dc:a6:62:d9:7d:e7:3f:ab:
9f:a1:ed:8d:22:dc:e5:11:ba:c2:b3:d2:02:80:59:
10:95:58:16:cc:2b:51:5d:7e:9d:0a:a2:e6:5e:31:
7f:da:c8:25:22:2a:04:33:f3:1e:7a:d9:c7:4d:b3:
a5:55:65:b8:b8:8b:8d:dc:08:2e:9a:b4:e1:4f:91:
51:3d:0b:dd:25:37:04:d7:4b:49:13:51:5b:ad:49:
9d:61:82:30:f9:c3:96:f5:05:62:f2:9e:27:24:fb:
57:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:7A:12:F8:2A:5D:EA:12:CC:DB:A5:BD:46:A8:4A:0B:EE:94:35:02
X509v3 Authority Key Identifier:
keyid:54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/o3oS-Cpd6hLM26W9RqhKC-6UNQI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/VJFFQf0blefAr8h1--94eU9VOGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:1330::/44
Signature Algorithm: sha256WithRSAEncryption
23:93:de:88:d8:dc:4c:61:00:88:00:65:2e:ed:20:df:04:2a:
d1:ef:bd:e2:d2:57:df:d3:b7:55:e8:9f:53:f7:bc:27:3d:f2:
88:b6:06:ad:c0:50:fa:e0:cd:a5:f3:3a:e3:e4:1a:1a:7a:eb:
96:60:49:41:11:36:ef:a3:d1:0c:f6:37:48:6a:35:1d:5b:e7:
49:46:81:cf:de:fa:22:59:ce:c4:9a:ac:7f:8d:67:d7:6a:6f:
08:b0:ce:1c:03:7c:19:9c:64:16:64:d0:2b:9e:29:65:ef:d5:
05:12:be:0e:d0:42:cb:f6:65:22:ad:0d:9f:f2:20:f7:a5:84:
a7:b0:ae:2c:27:9e:20:c0:21:fe:eb:2f:5a:be:2e:ea:9e:27:
0d:b5:33:00:c3:00:de:b9:b0:3c:f1:06:41:8d:cf:d4:60:a3:
39:7e:dd:62:5e:c1:b6:96:58:f6:cf:62:41:0c:97:c3:34:a9:
84:37:1d:bf:27:ff:7f:d0:ba:dc:63:9f:7e:cf:1d:11:0b:6b:
c6:55:29:58:87:34:b3:fd:2d:ce:a3:bc:98:9b:19:1a:83:89:
32:64:ec:b2:1b:0c:7d:a9:a4:fb:d4:b7:57:98:90:14:b6:74:
e4:36:a8:b1:ee:5e:bc:cb:af:b3:43:53:9c:25:d5:da:01:a4:
60:4d:9f:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 21:58:14 2025 by rpki-client