Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/f678bd-4fe0-4ae0-80d7-53f0788e1a1b/1/t5k6XKGrCrHrELHVDqGidUUoaAk.roa
File: t5k6XKGrCrHrELHVDqGidUUoaAk.roa (raw, json)
Hash identifier: R46iKUbBrC6mhjL+r/gQ5xIPXGhabF3GNcrQQuZipAA=
Subject key identifier: B7:99:3A:5C:A1:AB:0A:B1:EB:10:B1:D5:0E:A1:A2:75:45:28:68:09
Certificate issuer: /CN=dfd703b60ac6873256e6b4826ba27a9deeca2f0a
Certificate serial: C74E6D
Authority key identifier: DF:D7:03:B6:0A:C6:87:32:56:E6:B4:82:6B:A2:7A:9D:EE:CA:2F:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/39cDtgrGhzJW5rSCa6J6ne7KLwo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/f678bd-4fe0-4ae0-80d7-53f0788e1a1b/1/t5k6XKGrCrHrELHVDqGidUUoaAk.roa
Signing time: Sat 01 Jan 2022 13:07:41 +0000
ROA not before: Sat 01 Jan 2022 13:07:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47869
IP address blocks: 2a0e:1c80:4::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13061741 (0xc74e6d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dfd703b60ac6873256e6b4826ba27a9deeca2f0a
Validity
Not Before: Jan 1 13:07:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b7993a5ca1ab0ab1eb10b1d50ea1a27545286809
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:2a:8f:1e:c7:cb:0f:71:fa:d1:75:ff:f8:5d:
e8:cc:6f:de:92:ce:47:03:67:b1:8d:40:f0:ee:91:
54:ef:9a:4e:e2:52:b2:25:cb:f0:a1:69:69:ab:2e:
d1:78:96:de:c1:6b:13:16:bc:a9:ac:0e:89:10:e1:
f5:f2:d9:38:9e:d3:df:63:72:f7:fa:65:95:cb:e7:
af:95:98:9b:2e:0c:77:0f:60:e8:9d:e8:94:6f:3d:
44:91:b9:7b:cb:05:1f:7f:3a:db:7c:09:fd:c2:13:
49:9a:6e:57:1d:b5:95:cf:1e:e1:6c:2f:3f:d2:8c:
3c:e3:e1:db:95:25:b8:ed:59:48:82:a2:0f:0e:73:
03:fb:1a:ef:50:3e:3a:41:29:fb:97:37:f2:f9:6f:
59:55:e2:ec:be:a1:33:3f:8c:1d:a8:5c:02:a1:54:
ae:e1:23:32:f8:4c:84:3f:d2:5d:39:a1:90:ab:f2:
7b:2e:79:37:eb:a1:ff:94:a8:25:54:1b:82:07:0e:
03:86:b5:32:c8:74:d1:f6:c3:ca:17:96:4d:90:9c:
3c:98:f9:9b:c7:6b:ad:70:5c:70:cb:09:19:eb:7b:
41:b0:51:67:9b:96:fd:e4:24:d1:48:d8:08:29:77:
23:60:e3:3b:ee:67:a1:6e:cd:c9:88:00:6b:a5:e0:
be:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:99:3A:5C:A1:AB:0A:B1:EB:10:B1:D5:0E:A1:A2:75:45:28:68:09
X509v3 Authority Key Identifier:
keyid:DF:D7:03:B6:0A:C6:87:32:56:E6:B4:82:6B:A2:7A:9D:EE:CA:2F:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/39cDtgrGhzJW5rSCa6J6ne7KLwo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/f678bd-4fe0-4ae0-80d7-53f0788e1a1b/1/t5k6XKGrCrHrELHVDqGidUUoaAk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/f678bd-4fe0-4ae0-80d7-53f0788e1a1b/1/39cDtgrGhzJW5rSCa6J6ne7KLwo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:1c80:4::/48
Signature Algorithm: sha256WithRSAEncryption
4b:31:0a:27:e3:ca:7b:02:55:62:6c:fa:04:55:9c:02:65:f0:
e7:dd:0d:7b:fc:b6:19:17:30:ef:58:f4:bb:5b:5c:e2:d4:3b:
0b:59:07:54:41:11:4c:c5:d0:12:a7:81:41:9c:90:7d:77:65:
8f:29:6f:ba:3a:0b:28:1c:a3:7f:51:ac:9e:05:25:d2:81:da:
5a:d9:05:b7:c8:17:ec:a1:11:02:c0:2c:1c:52:e7:22:0e:3e:
9d:cd:e5:ad:b6:1e:3e:70:49:3b:57:56:a8:f7:73:9f:9e:c4:
31:da:f5:13:4a:c9:b5:11:98:21:7c:49:78:b9:fb:b2:e2:27:
3b:4c:db:4a:91:31:3c:fa:6f:62:63:38:1f:58:0c:d9:9c:61:
ce:40:28:4b:a6:6b:c3:52:56:86:0b:e5:77:54:77:ee:92:59:
f5:0d:14:4d:65:e3:c6:ea:ef:db:87:b4:49:96:12:94:95:2d:
2c:75:80:fb:53:e4:97:83:b9:60:ad:b9:06:64:13:14:c3:bd:
4d:52:a2:e6:8d:20:e8:d9:15:72:e0:77:74:f3:55:3e:c2:39:
22:32:e8:63:df:fa:f9:45:51:4e:39:5e:dc:f2:c8:26:de:a7:
61:d5:be:21:04:0f:91:0f:1b:83:e8:67:94:33:82:8e:e0:ff:
db:72:21:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 09:42:10 2025 by rpki-client