Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/01b0c0-1b87-4d6f-9e90-9281f0d23dbf/1/dnWQJFvh8VovqX-ZW_3OjmXqCdM.roa
File: dnWQJFvh8VovqX-ZW_3OjmXqCdM.roa (raw, json)
Hash identifier: YDFL0RIOKHZxm2CVCgnm9Jc0jri7btWi5/0UvmlJY+o=
Subject key identifier: 76:75:90:24:5B:E1:F1:5A:2F:A9:7F:99:5B:FD:CE:8E:65:EA:09:D3
Certificate issuer: /CN=7021d7528be713a4ba2cb4db5e58d64d882eb555
Certificate serial: 0194266B3201ED7B9E4F762A875C0A940733
Authority key identifier: 70:21:D7:52:8B:E7:13:A4:BA:2C:B4:DB:5E:58:D6:4D:88:2E:B5:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cCHXUovnE6S6LLTbXljWTYgutVU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/01b0c0-1b87-4d6f-9e90-9281f0d23dbf/1/dnWQJFvh8VovqX-ZW_3OjmXqCdM.roa
Signing time: Thu 02 Jan 2025 09:49:06 +0000
ROA not before: Thu 02 Jan 2025 09:49:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 49217
IP address blocks: 2a0f:bf01::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:32:01:ed:7b:9e:4f:76:2a:87:5c:0a:94:07:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7021d7528be713a4ba2cb4db5e58d64d882eb555
Validity
Not Before: Jan 2 09:49:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=767590245be1f15a2fa97f995bfdce8e65ea09d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:1a:6a:f8:62:30:8f:a3:a7:ad:d2:5f:3e:bf:
fe:eb:44:01:4d:96:57:3a:67:e3:3b:cd:0d:5b:9a:
3c:c9:dd:3a:b8:5b:e6:7a:b4:4b:9c:cd:7e:68:76:
1d:85:b5:43:75:bd:17:8a:46:82:00:a8:3e:f7:e4:
81:cf:21:55:1b:1a:a7:37:7d:75:58:75:bb:30:ae:
d9:7a:ef:1e:e1:df:21:df:82:f8:26:d1:a4:f8:5f:
31:f0:23:35:c6:6e:1c:78:2b:6a:11:c4:62:5e:40:
1b:4f:53:ac:22:f7:35:fc:19:65:35:89:2b:39:b9:
b8:8b:d5:23:83:e9:a0:09:08:71:ff:12:f9:27:c1:
d3:43:50:aa:36:63:72:d6:4d:ae:8c:85:a9:8a:f9:
30:b9:ec:63:03:c9:05:e5:96:85:09:8a:0a:0d:f7:
6d:ba:3c:78:77:01:7e:5c:fb:b0:db:c4:25:87:e4:
3e:b6:9e:6a:97:be:2c:4b:87:f4:e5:d3:69:1a:42:
34:bd:84:87:f7:8f:9a:05:74:34:e1:60:17:ce:83:
c7:e2:00:74:1b:41:53:20:96:5d:48:a6:88:5a:aa:
ac:4b:a0:2a:98:ac:0d:1a:47:5d:1d:e0:c8:42:db:
0e:68:bf:86:a6:23:78:94:a1:80:a8:d9:2b:21:ba:
27:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:75:90:24:5B:E1:F1:5A:2F:A9:7F:99:5B:FD:CE:8E:65:EA:09:D3
X509v3 Authority Key Identifier:
keyid:70:21:D7:52:8B:E7:13:A4:BA:2C:B4:DB:5E:58:D6:4D:88:2E:B5:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cCHXUovnE6S6LLTbXljWTYgutVU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/01b0c0-1b87-4d6f-9e90-9281f0d23dbf/1/dnWQJFvh8VovqX-ZW_3OjmXqCdM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/01b0c0-1b87-4d6f-9e90-9281f0d23dbf/1/cCHXUovnE6S6LLTbXljWTYgutVU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:bf01::/32
Signature Algorithm: sha256WithRSAEncryption
5c:1b:bd:81:b3:8f:c3:93:fa:c0:fd:5d:df:45:70:b4:1d:88:
24:e6:1f:2c:0b:f9:b8:db:ac:84:93:f0:c2:bc:e0:6b:db:85:
b9:3e:02:e2:0f:3b:b3:fd:b5:52:63:15:38:8b:0c:a4:ca:63:
c3:64:d7:d3:b5:b7:c8:54:92:e9:c7:77:cb:4d:6d:62:5c:52:
eb:f2:0d:8b:db:ef:e6:f5:59:21:0e:72:c9:b1:4c:91:ba:bd:
b2:06:2d:57:1c:fe:2d:cc:55:93:5b:4c:4b:28:8f:a4:ce:e2:
b9:b6:91:ed:07:93:c4:7a:ad:a3:c5:40:16:c1:c4:e8:ee:b6:
1c:8d:6e:2f:95:ec:4e:d1:0f:a6:88:5d:2e:a8:a9:0c:06:0a:
22:77:07:28:b4:e4:4e:5e:ae:5b:32:7a:ae:a4:76:07:50:d7:
d5:d4:23:b0:eb:9c:d4:21:ab:fb:70:13:9b:26:d3:02:31:99:
4f:22:0f:e0:e1:6f:59:84:b5:cf:2a:45:dd:ef:81:37:8e:e0:
ba:16:4e:26:82:94:d4:af:ba:a6:06:be:18:86:ae:c3:ec:17:
79:a0:6d:e2:af:6a:c0:99:8e:69:87:db:a4:6d:f4:05:b2:45:
4e:de:77:eb:f9:d2:80:fa:b9:3b:e0:3f:d2:f0:a3:2e:82:35:
4b:84:f8:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 13:36:41 2025 by rpki-client