Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/4uqjDycHr0oYv0hwj2r2g830RwM.roa
File: 4uqjDycHr0oYv0hwj2r2g830RwM.roa (raw, json)
Hash identifier: I5D7xru8ZsQuh51X6pqCssWt9gP/Ui+HK04k7UJXlaM=
Subject key identifier: E2:EA:A3:0F:27:07:AF:4A:18:BF:48:70:8F:6A:F6:83:CD:F4:47:03
Certificate issuer: /CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Certificate serial: 019427B5A3A07F46587558789FF4A7C8141B
Authority key identifier: EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/4uqjDycHr0oYv0hwj2r2g830RwM.roa
Signing time: Thu 02 Jan 2025 15:50:02 +0000
ROA not before: Thu 02 Jan 2025 15:50:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44812
IP address blocks: 5.8.64.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:a3:a0:7f:46:58:75:58:78:9f:f4:a7:c8:14:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Validity
Not Before: Jan 2 15:50:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e2eaa30f2707af4a18bf48708f6af683cdf44703
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:1f:17:9e:36:50:02:e8:7b:d8:d4:e8:6a:24:
7b:fb:24:40:cb:96:22:b1:d1:cd:e3:9e:f9:fc:c3:
65:ff:ed:b6:7f:53:ed:ac:aa:79:0e:cb:cf:e2:61:
78:e9:8d:a3:2f:87:62:5f:69:42:46:90:5b:59:73:
ec:ad:8e:76:f2:b9:d5:4f:0d:76:31:ed:ef:e9:16:
19:9d:40:7b:3c:d3:24:d7:15:cc:99:95:e3:2a:ae:
d5:cc:42:cf:f5:22:17:cc:c0:c4:4b:ff:25:c6:4e:
90:79:31:58:dd:d1:1b:fa:2e:b1:2e:72:a7:c7:e2:
93:9d:ef:ed:1f:69:09:08:1c:12:a7:47:a1:66:a4:
b1:1b:c7:1c:9f:b1:9d:b2:ac:83:02:41:41:ff:49:
33:0d:ff:e1:8e:e9:9b:bb:38:82:d5:87:fa:cb:9b:
e0:f2:24:2e:42:b1:96:b0:d2:22:a5:d6:22:a9:2d:
77:75:fd:cb:95:bf:5f:38:a9:30:5c:7c:25:2f:13:
a3:40:1b:32:d2:fb:6c:90:5b:fc:a5:1c:20:12:c6:
4a:63:16:bc:d1:00:27:c9:ee:e7:4e:92:30:3e:a9:
57:ed:41:21:27:c7:9d:00:70:7a:12:2b:dc:b1:35:
30:d6:1b:f5:ba:88:65:a8:88:f6:f8:6a:5b:59:39:
02:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:EA:A3:0F:27:07:AF:4A:18:BF:48:70:8F:6A:F6:83:CD:F4:47:03
X509v3 Authority Key Identifier:
keyid:EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/4uqjDycHr0oYv0hwj2r2g830RwM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.8.64.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:eb:7c:f4:0b:74:98:f2:00:e3:cb:55:b9:81:65:f6:39:22:
c0:d5:95:64:09:4b:18:e2:bf:2d:f1:14:ec:96:5a:83:2f:a2:
9f:d9:ae:f2:7c:29:90:f3:88:c0:da:94:fb:3e:4f:1b:eb:83:
34:ea:1f:55:a5:66:62:0a:f4:66:e4:ba:ae:96:13:27:9c:81:
11:b3:4f:e7:3e:5a:21:6b:4f:67:78:75:d2:cb:01:0e:ff:8a:
a8:b5:58:4a:2e:9d:07:e0:7b:31:a1:ee:14:03:d8:5b:de:36:
93:dd:00:90:c8:47:98:fd:a6:77:03:a4:ed:06:10:46:1f:d2:
a8:93:0e:c1:a5:0d:0f:cf:c2:9b:db:97:01:22:2e:8c:93:e1:
f4:2d:f2:28:67:fe:bd:bb:4b:61:34:84:21:49:51:a9:58:1d:
c9:64:02:30:d7:34:02:5c:88:da:b5:6c:e2:40:e2:2c:b2:74:
ad:34:06:31:12:e9:86:c8:4d:59:37:5f:67:c8:4f:4c:3b:9e:
fb:1a:10:78:96:1d:e5:ee:20:77:8c:19:7f:e7:93:59:8b:93:
a7:a8:6a:2c:fe:67:b2:bc:f0:ac:4f:d2:a6:fc:78:51:41:46:
c6:8d:8a:e2:a7:3f:ad:1f:05:ac:85:97:d7:07:b0:c4:d0:10:
30:99:ca:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 10:36:51 2025 by rpki-client