Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/LeBlOXmm0nV0jlhI7_98RXX9GXg.roa
File: LeBlOXmm0nV0jlhI7_98RXX9GXg.roa (raw, json)
Hash identifier: DNM+m9kCaDbfLivZ8mI/bnfTHSU3kgdhzpW1dtB8X94=
Subject key identifier: 2D:E0:65:39:79:A6:D2:75:74:8E:58:48:EF:FF:7C:45:75:FD:19:78
Certificate issuer: /CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Certificate serial: 019425FCAE7B85AC6D0E17519D85C5EEE246
Authority key identifier: 68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/LeBlOXmm0nV0jlhI7_98RXX9GXg.roa
Signing time: Thu 02 Jan 2025 07:48:24 +0000
ROA not before: Thu 02 Jan 2025 07:48:24 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 51373
IP address blocks: 2001:1a68:14::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fc:ae:7b:85:ac:6d:0e:17:51:9d:85:c5:ee:e2:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Validity
Not Before: Jan 2 07:48:24 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2de0653979a6d275748e5848efff7c4575fd1978
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:2e:04:5d:d1:44:66:b8:9b:cf:b7:20:57:02:
57:04:53:38:a6:c3:dc:42:04:08:41:0a:e4:de:58:
11:33:05:8e:cc:37:48:f2:f1:85:a5:db:2f:23:3c:
8a:da:7a:6b:54:ce:a1:55:7e:9d:88:b4:f8:7c:0f:
1c:52:1e:34:9d:fd:0f:d5:3a:c5:b0:c4:62:57:a6:
7c:dd:f6:78:e5:ec:8a:38:be:7a:5b:bc:5c:91:f6:
c7:88:4c:ce:4d:2e:ef:b7:2f:0c:86:0e:d1:39:bf:
26:4a:a9:35:08:5b:79:b3:df:62:03:c5:03:11:21:
fc:f9:1c:a5:e7:2b:32:26:c1:e3:a9:7f:f3:1d:85:
55:2b:a3:b8:c3:e6:8a:a9:90:b3:97:d4:eb:93:ca:
ff:57:01:92:ca:b8:a5:d2:49:43:e2:96:44:7c:ec:
fb:ee:d8:05:be:82:7c:41:31:cd:9f:b0:06:0a:5c:
e2:b9:c0:69:cc:b9:31:85:62:97:c1:38:3d:29:60:
fb:72:d1:2c:f0:95:1d:64:c4:00:ab:4c:ad:87:77:
18:3e:f2:62:5c:42:f7:25:94:40:75:ac:54:f1:4d:
ca:d3:ba:57:63:f7:6b:d6:82:c5:37:90:c3:03:95:
cd:ff:b9:6e:fa:5c:7b:07:92:b0:d2:bf:20:09:8d:
04:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:E0:65:39:79:A6:D2:75:74:8E:58:48:EF:FF:7C:45:75:FD:19:78
X509v3 Authority Key Identifier:
keyid:68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/LeBlOXmm0nV0jlhI7_98RXX9GXg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:1a68:14::/48
Signature Algorithm: sha256WithRSAEncryption
bc:2f:49:15:8f:c0:83:43:cb:ed:ec:39:94:d9:be:ee:ad:70:
e3:ed:da:bc:36:47:2f:4b:c6:b1:0f:d7:15:18:46:b6:27:b9:
f9:24:6f:c7:8b:da:e5:92:6e:4c:9e:75:66:2f:aa:61:61:0d:
c6:00:80:29:80:9c:94:16:00:dc:f0:03:ad:d8:2b:3d:83:7e:
a0:ab:54:2e:90:ea:77:2b:d3:51:41:50:c5:55:93:6f:69:4f:
f3:6f:21:35:59:3b:8e:08:a2:2e:58:5d:95:0c:73:59:fb:02:
96:ae:e6:01:4e:2d:6b:6b:86:cb:42:bb:82:02:96:16:5d:d2:
40:16:d2:6c:34:0d:e2:78:d4:bc:c1:8f:c9:a0:8a:f5:e2:ab:
55:b6:7a:0b:3a:6c:96:ea:cd:41:d7:bd:3a:1c:61:12:e7:ac:
f2:8d:14:93:40:ef:40:ff:7f:b7:ec:03:35:f1:06:76:84:98:
16:97:c9:ab:fc:bd:72:33:c3:5f:09:56:70:e1:1b:be:2d:1d:
0b:35:ca:0b:f7:e8:b4:ad:48:15:28:22:0d:30:05:93:4e:e4:
b6:a0:0b:81:5b:2a:bd:32:3f:11:20:25:9f:a7:25:cc:13:b5:
a2:2c:c9:38:d4:f9:6e:af:57:25:e6:de:4d:41:ef:97:e3:e3:
f1:ea:1c:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:42:31 2025 by rpki-client