Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/0301d4-4805-405c-a6e0-a42e1f1f4798/1/qIyPkH6d8yOE9JIuYfktIaBMVoE.roa
File: qIyPkH6d8yOE9JIuYfktIaBMVoE.roa (raw, json)
Hash identifier: Brm+DnvD6c/9swQow2OlTBzQxIGtKXJnusPVEpt2sAQ=
Subject key identifier: A8:8C:8F:90:7E:9D:F3:23:84:F4:92:2E:61:F9:2D:21:A0:4C:56:81
Certificate issuer: /CN=a9b5ffd24d2eb5d5c1e1cfe78b003c4bab5a2f13
Certificate serial: 0192664F573750A4B6464E9B0C6C011ED6C8
Authority key identifier: A9:B5:FF:D2:4D:2E:B5:D5:C1:E1:CF:E7:8B:00:3C:4B:AB:5A:2F:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qbX_0k0utdXB4c_niwA8S6taLxM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/0301d4-4805-405c-a6e0-a42e1f1f4798/1/qIyPkH6d8yOE9JIuYfktIaBMVoE.roa
Signing time: Mon 07 Oct 2024 09:28:48 +0000
ROA not before: Mon 07 Oct 2024 09:28:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50907
IP address blocks: 2a12:bc0:6::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:66:4f:57:37:50:a4:b6:46:4e:9b:0c:6c:01:1e:d6:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9b5ffd24d2eb5d5c1e1cfe78b003c4bab5a2f13
Validity
Not Before: Oct 7 09:28:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a88c8f907e9df32384f4922e61f92d21a04c5681
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:62:22:85:23:72:fd:54:00:b0:0c:3f:c3:ed:
0b:d7:c0:b5:aa:8d:7e:c0:31:82:e9:ea:e5:c1:39:
1f:86:b4:05:40:d7:47:d3:64:ee:cb:a9:65:67:29:
da:50:69:61:23:e7:96:94:97:c7:3b:d1:45:ab:2a:
e9:4f:be:99:1a:1f:c2:e6:ea:96:3c:2c:40:5a:3a:
8b:7e:75:0f:a1:ae:b5:76:47:95:c7:65:cb:80:46:
ba:58:4b:a9:91:9d:69:a1:20:b2:cd:01:3e:4c:c8:
1c:96:87:2d:e2:1a:32:c5:5c:bd:28:61:29:90:b8:
b0:ea:ab:58:f6:75:0d:b1:5c:1b:c9:81:3e:e6:58:
f7:bd:bd:f4:ad:4d:82:0d:0d:3f:26:8d:70:37:11:
38:34:51:d7:e4:3f:82:35:2e:8e:a2:9c:23:78:10:
52:08:fe:98:93:7e:68:b4:0b:80:24:0d:c4:cd:94:
55:d9:64:aa:ac:58:63:5d:97:3a:df:a5:02:e9:e7:
13:37:22:49:0e:9a:d5:9e:ad:64:65:d3:0f:c9:6b:
a6:39:6e:0f:fc:b4:9b:07:cb:d6:a8:27:b9:8e:a3:
46:de:44:3a:38:b3:f1:f4:80:1b:8f:c3:2f:2f:f7:
4c:15:d7:08:c4:c3:87:d4:f4:f6:c8:9a:1a:4b:40:
7f:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:8C:8F:90:7E:9D:F3:23:84:F4:92:2E:61:F9:2D:21:A0:4C:56:81
X509v3 Authority Key Identifier:
keyid:A9:B5:FF:D2:4D:2E:B5:D5:C1:E1:CF:E7:8B:00:3C:4B:AB:5A:2F:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qbX_0k0utdXB4c_niwA8S6taLxM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/0301d4-4805-405c-a6e0-a42e1f1f4798/1/qIyPkH6d8yOE9JIuYfktIaBMVoE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/0301d4-4805-405c-a6e0-a42e1f1f4798/1/qbX_0k0utdXB4c_niwA8S6taLxM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:bc0:6::/48
Signature Algorithm: sha256WithRSAEncryption
42:7a:4a:3c:cf:5b:a1:79:a2:4a:c6:1d:c4:3e:71:7a:6b:c0:
83:74:85:cb:47:91:12:dc:3c:a2:ce:3c:39:fd:2d:a0:90:88:
a4:6f:66:c8:13:57:e2:02:4b:3d:f4:2a:20:26:ea:4e:06:fd:
5a:e2:75:b2:7f:94:f4:2a:7e:82:57:4a:0c:c8:27:99:a8:6d:
af:04:52:ee:85:78:35:44:6b:62:c7:9d:c1:3f:ae:87:72:d3:
b5:6d:b2:7f:9a:68:8b:e5:d7:55:ad:17:c3:27:13:08:40:d0:
6d:88:ad:49:75:aa:42:b1:ac:d3:5e:5a:59:22:09:4f:23:7e:
ef:4a:ac:f1:e8:23:da:6b:24:50:8c:25:20:45:cc:1c:63:12:
93:72:cf:a4:dc:b8:5a:55:0e:c9:88:b3:91:29:2e:cf:42:67:
3c:c4:0b:fd:94:bb:d0:40:79:5b:99:20:27:c2:93:7c:a1:9a:
b8:73:a5:01:86:25:9d:18:91:88:90:e6:20:28:fc:12:bd:e1:
64:47:e1:bd:2e:1d:ec:68:86:06:3d:15:1a:83:19:1a:58:b6:
79:8a:6a:e4:10:74:72:b3:20:89:7a:c2:73:8a:38:50:1f:9d:
6e:95:ae:be:1b:16:41:6f:0e:a8:6e:45:0e:b6:21:df:50:08:
9c:82:27:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 03:41:51 2025 by rpki-client