Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/35a6cc-da7f-4e3c-bccb-e73c1244fe68/1/95wvAQ1byyC8kjkA_qlKfk8OXi8.roa
File: 95wvAQ1byyC8kjkA_qlKfk8OXi8.roa (raw, json)
Hash identifier: sBTr+M7TAMqjBTX1Yv9bB8DUGt1zVFuT5Ugo7LKYTdk=
Subject key identifier: F7:9C:2F:01:0D:5B:CB:20:BC:92:39:00:FE:A9:4A:7E:4F:0E:5E:2F
Certificate issuer: /CN=39407123065c955d19d4fae963b0d055f489b215
Certificate serial: 01856F0B74BFE29CB5789B58534278EAEF5A
Authority key identifier: 39:40:71:23:06:5C:95:5D:19:D4:FA:E9:63:B0:D0:55:F4:89:B2:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OUBxIwZclV0Z1PrpY7DQVfSJshU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/35a6cc-da7f-4e3c-bccb-e73c1244fe68/1/95wvAQ1byyC8kjkA_qlKfk8OXi8.roa
Signing time: Sun 01 Jan 2023 20:34:59 +0000
ROA not before: Sun 01 Jan 2023 20:34:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213169
IP address blocks: 2a12:8c00::/36 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:0b:74:bf:e2:9c:b5:78:9b:58:53:42:78:ea:ef:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39407123065c955d19d4fae963b0d055f489b215
Validity
Not Before: Jan 1 20:34:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f79c2f010d5bcb20bc923900fea94a7e4f0e5e2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:f5:18:d2:bf:6d:47:47:71:92:0c:00:31:ee:
d1:cf:25:ee:b9:54:37:20:a0:32:ce:77:71:8c:d8:
4c:0a:27:ee:98:83:d1:ae:93:d4:bb:33:a4:58:68:
82:ce:31:75:1b:9b:31:2e:d3:f0:a5:6c:68:ba:75:
cd:e1:14:94:d0:08:cb:f0:68:6b:e1:e3:4f:9e:b4:
10:fe:6f:a2:72:41:66:4e:42:41:be:2b:ec:71:00:
b2:a7:6f:1a:81:c8:43:6d:d9:a1:b3:0e:54:5e:20:
6f:17:f8:c6:a9:80:b7:ee:45:16:1f:8f:ef:34:90:
4e:86:e6:96:06:10:e7:70:04:c7:ca:fe:0d:21:6b:
ab:87:84:b2:99:d7:ca:69:9f:dd:08:39:97:be:b1:
fd:ce:b7:d0:06:ff:dd:41:55:07:00:b2:25:09:cb:
db:bd:6d:fa:41:60:b4:7c:bb:a9:ed:cb:c3:94:ef:
6c:eb:6d:6f:c2:7b:4c:97:1e:05:06:b7:6a:e9:d7:
ec:57:87:b5:9c:a2:0c:44:94:aa:e4:8c:f0:af:44:
73:77:2a:c7:aa:7b:86:7b:70:b5:9e:81:e1:2e:31:
f6:54:bb:33:a1:bc:03:0e:79:87:fe:c3:50:6c:0d:
b0:29:79:a3:62:7d:ac:a2:d9:f9:ef:7a:93:44:51:
2c:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:9C:2F:01:0D:5B:CB:20:BC:92:39:00:FE:A9:4A:7E:4F:0E:5E:2F
X509v3 Authority Key Identifier:
keyid:39:40:71:23:06:5C:95:5D:19:D4:FA:E9:63:B0:D0:55:F4:89:B2:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OUBxIwZclV0Z1PrpY7DQVfSJshU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/35a6cc-da7f-4e3c-bccb-e73c1244fe68/1/95wvAQ1byyC8kjkA_qlKfk8OXi8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/35a6cc-da7f-4e3c-bccb-e73c1244fe68/1/OUBxIwZclV0Z1PrpY7DQVfSJshU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:8c00::/36
Signature Algorithm: sha256WithRSAEncryption
5c:3a:54:ef:72:8a:b8:d9:73:1e:b2:e2:8d:ca:be:74:65:39:
ec:47:89:d7:e9:62:d2:a3:0c:6c:bc:b7:3e:81:f3:19:21:70:
2a:09:9b:32:50:c1:da:f6:cd:37:03:bb:83:60:b4:08:a0:0b:
1e:df:ab:52:79:eb:cc:a8:da:c4:ea:0d:b3:1c:bd:4c:2c:d7:
c3:75:dd:5d:11:1a:3f:a4:80:f7:04:d5:9d:a2:7a:51:8e:46:
f6:c6:d3:d0:a8:ad:d6:26:41:ca:bf:2e:a3:26:37:fd:64:8a:
6d:c7:16:95:5b:89:ec:89:49:f0:56:1d:b0:97:d2:81:74:de:
43:cb:4b:87:30:62:d3:92:f8:93:e8:47:ea:c9:59:bf:79:65:
1d:8b:01:bc:f7:0f:56:56:e6:42:41:ca:28:a5:2e:38:ac:b6:
ea:96:04:14:e5:46:82:b0:dc:91:35:a4:4e:ff:db:61:8c:99:
71:d7:cf:84:2d:b3:b8:f9:ee:49:8b:31:f9:25:0f:11:ac:f2:
f1:04:c8:cf:82:a8:de:c2:d2:7a:d1:7b:73:15:e1:e9:14:4b:
17:3f:57:d4:09:a8:fa:21:2a:50:52:32:ab:1b:b6:6a:64:de:
05:18:22:31:73:03:f2:33:19:df:20:d8:09:86:95:5e:7b:8f:
28:2c:b9:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 13:26:48 2025 by rpki-client