Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/2ed4d1-0705-43e5-a60a-be100907f106/1/Cw00MeDjF4Z01eqmRHPztpuO-10.roa
File: Cw00MeDjF4Z01eqmRHPztpuO-10.roa (raw, json)
Hash identifier: DUUvyZm8Yl2/UFAMQ0mas5EstZmaYw6V/lQFjlGVM0A=
Subject key identifier: 0B:0D:34:31:E0:E3:17:86:74:D5:EA:A6:44:73:F3:B6:9B:8E:FB:5D
Certificate issuer: /CN=1eb3528d61f2cf02baab2b40d0cc33255b4006f4
Certificate serial: 0183214D17258AB48F4AB87839A2BAA2BC45
Authority key identifier: 1E:B3:52:8D:61:F2:CF:02:BA:AB:2B:40:D0:CC:33:25:5B:40:06:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HrNSjWHyzwK6qytA0MwzJVtABvQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/2ed4d1-0705-43e5-a60a-be100907f106/1/Cw00MeDjF4Z01eqmRHPztpuO-10.roa
Signing time: Fri 09 Sep 2022 08:10:43 +0000
ROA not before: Fri 09 Sep 2022 08:10:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206613
IP address blocks: 2001:678:320::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:21:4d:17:25:8a:b4:8f:4a:b8:78:39:a2:ba:a2:bc:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1eb3528d61f2cf02baab2b40d0cc33255b4006f4
Validity
Not Before: Sep 9 08:10:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0b0d3431e0e3178674d5eaa64473f3b69b8efb5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:fa:69:e1:83:c8:84:04:5e:4c:61:1c:05:f2:
63:8d:16:8f:ee:1b:78:ee:f5:bf:a5:4f:e4:7a:cc:
24:48:5e:68:03:83:2d:4a:7b:bc:1a:ce:78:9b:c4:
ab:a6:c1:d3:d7:14:d7:5f:ae:5e:d5:b5:0e:49:12:
e1:1c:2e:0a:b4:5e:d8:57:4a:72:0f:79:72:82:e8:
6f:b5:5c:3d:86:db:e5:9c:55:37:f7:81:56:72:3a:
3e:cf:0c:1d:82:8d:71:51:d2:c7:2d:e2:21:0b:9d:
fe:26:27:9f:3d:61:b3:2d:f3:fe:2e:3d:46:b3:1a:
38:a0:9c:32:62:b7:25:a4:07:8f:94:b4:26:f0:1d:
61:ee:23:3e:82:19:51:c1:9c:5d:ca:8d:df:60:3a:
7e:e4:16:be:aa:94:e7:dd:83:b2:5f:9c:c7:d3:3d:
ea:96:64:4f:80:2f:77:2a:6c:e5:76:5f:f1:39:6a:
2a:24:ac:1b:d8:bb:3e:82:70:42:bd:35:4f:95:06:
8a:63:55:6d:8f:50:0a:1c:42:75:c7:b2:a4:9b:5a:
97:60:c0:a4:3a:ba:1b:89:0a:a6:fc:ba:39:98:b3:
5a:1e:cc:a4:f3:03:db:92:05:d0:57:2b:57:a6:cf:
50:66:ca:52:c3:2a:98:da:64:7a:49:d4:ab:79:7a:
36:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:0D:34:31:E0:E3:17:86:74:D5:EA:A6:44:73:F3:B6:9B:8E:FB:5D
X509v3 Authority Key Identifier:
keyid:1E:B3:52:8D:61:F2:CF:02:BA:AB:2B:40:D0:CC:33:25:5B:40:06:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HrNSjWHyzwK6qytA0MwzJVtABvQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/2ed4d1-0705-43e5-a60a-be100907f106/1/Cw00MeDjF4Z01eqmRHPztpuO-10.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/2ed4d1-0705-43e5-a60a-be100907f106/1/HrNSjWHyzwK6qytA0MwzJVtABvQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:320::/48
Signature Algorithm: sha256WithRSAEncryption
21:a2:83:8a:8a:e7:e2:50:fe:64:03:f8:ac:6c:ca:83:30:e1:
e9:9c:b1:23:fb:67:72:74:45:69:5e:44:33:cd:bd:bd:34:c8:
1d:49:84:12:39:45:4f:06:6d:b5:ef:2b:eb:12:42:2e:e9:86:
d8:31:cf:67:b2:c6:40:a5:9b:24:88:e2:ae:b7:79:76:8a:b6:
d2:c0:c3:61:58:85:cc:d9:f0:c4:20:31:d7:ca:71:9e:d6:0e:
57:d1:5c:9b:79:f8:c7:5b:53:41:1f:3a:54:a6:a2:b8:b0:50:
70:16:66:ec:e5:f2:69:0d:7d:5f:f1:a8:31:84:80:11:28:39:
69:84:21:97:5e:b6:bb:ac:5a:8d:d4:0b:57:ed:78:d3:f5:66:
e0:5f:4c:c9:68:52:07:c7:0a:06:0a:c4:41:a0:eb:f2:1b:34:
74:fe:c2:61:db:f5:a3:b4:96:1f:3d:70:c5:f5:ff:57:bd:04:
90:f9:48:20:72:13:f0:07:e3:35:59:fd:c3:42:a7:8e:3c:02:
61:28:94:b5:2f:6c:0c:82:db:42:06:46:c2:d5:92:93:36:93:
2a:6e:22:95:76:45:ff:04:74:3c:86:65:93:ca:77:ba:da:23:
e8:f1:85:4c:37:d8:dd:7e:b2:43:12:df:de:1b:88:a3:3b:48:
92:fc:7d:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 10:36:21 2025 by rpki-client