Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/bcd829-3f3d-4e5a-adaf-03aa5511a75f/1/Oe-lS19T0Kz1jGTaG0s9ZbyATFg.roa
File: Oe-lS19T0Kz1jGTaG0s9ZbyATFg.roa (raw, json)
Hash identifier: mtLfKxZjKKU7JZ/2NxuTWWPPucwcibzGB4Fnk1gnyOM=
Subject key identifier: 39:EF:A5:4B:5F:53:D0:AC:F5:8C:64:DA:1B:4B:3D:65:BC:80:4C:58
Certificate issuer: /CN=6091160984cbc991ebc9ca0a857007d1f2c11a2d
Certificate serial: 0195BF3E5B77D5CA6E5170D106934813B27C
Authority key identifier: 60:91:16:09:84:CB:C9:91:EB:C9:CA:0A:85:70:07:D1:F2:C1:1A:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YJEWCYTLyZHrycoKhXAH0fLBGi0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/bcd829-3f3d-4e5a-adaf-03aa5511a75f/1/Oe-lS19T0Kz1jGTaG0s9ZbyATFg.roa
Signing time: Sat 22 Mar 2025 19:04:49 +0000
ROA not before: Sat 22 Mar 2025 19:04:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:195:bf3d:a651/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:bf:3e:5b:77:d5:ca:6e:51:70:d1:06:93:48:13:b2:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6091160984cbc991ebc9ca0a857007d1f2c11a2d
Validity
Not Before: Mar 22 19:04:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=39efa54b5f53d0acf58c64da1b4b3d65bc804c58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:90:ec:31:fa:b5:e2:19:08:1c:d4:a4:28:cc:
d1:67:47:89:cf:c3:05:5f:2b:38:c9:82:a1:98:1d:
b7:33:b6:5e:00:54:da:02:22:07:89:80:bc:7c:4c:
a4:17:57:86:e4:66:64:31:cb:70:8d:2c:0d:7c:be:
c2:79:3d:f4:9b:95:1b:ea:be:16:b5:3d:eb:0c:3c:
5a:bf:ef:cb:ba:92:13:2c:66:ad:db:60:47:08:7e:
6e:49:cb:3f:39:72:35:29:eb:e7:2a:d0:18:34:79:
21:df:79:6c:d4:fd:d0:d0:fe:03:92:e0:1b:45:8c:
d6:40:7a:27:42:5c:fd:f2:8d:b4:d5:d9:44:09:d7:
d7:d8:80:74:af:5b:9a:08:34:08:37:fa:b7:09:40:
fd:98:f1:b9:86:6b:ab:b9:39:50:85:57:84:12:b3:
92:3b:5e:6b:a3:b9:ee:a1:95:a0:80:26:3c:e3:b0:
5f:36:07:84:93:2c:5e:0f:c4:8a:a1:f1:8a:c6:db:
d0:68:ba:b6:cf:23:65:ce:15:78:63:99:a9:b5:60:
a0:3d:de:00:71:82:9f:f3:4d:07:21:b1:b2:39:53:
68:17:79:ee:17:0d:e7:21:d6:8d:79:90:d4:63:66:
d6:20:b0:b8:49:24:11:65:21:39:07:b6:fd:db:0a:
b5:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:EF:A5:4B:5F:53:D0:AC:F5:8C:64:DA:1B:4B:3D:65:BC:80:4C:58
X509v3 Authority Key Identifier:
keyid:60:91:16:09:84:CB:C9:91:EB:C9:CA:0A:85:70:07:D1:F2:C1:1A:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YJEWCYTLyZHrycoKhXAH0fLBGi0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/bcd829-3f3d-4e5a-adaf-03aa5511a75f/1/Oe-lS19T0Kz1jGTaG0s9ZbyATFg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/bcd829-3f3d-4e5a-adaf-03aa5511a75f/1/YJEWCYTLyZHrycoKhXAH0fLBGi0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:195:bf3d:a651/128
Signature Algorithm: sha256WithRSAEncryption
03:13:c7:5a:71:50:ac:3d:a7:f2:96:a2:ca:c2:4c:43:03:c8:
20:25:da:af:71:2e:1e:b6:49:ff:8c:dc:e3:65:1b:18:f6:95:
bb:84:32:ed:25:34:7a:55:79:f5:ae:09:2a:86:7c:24:47:ba:
b0:d2:f5:51:25:2a:c4:38:43:c9:11:8f:61:90:ca:ad:1e:73:
17:d5:c9:fc:38:36:6f:1c:55:0b:6b:3e:d1:b3:6a:19:3b:ac:
41:f4:e6:be:96:04:6b:21:44:2e:8a:e0:45:3d:5f:df:4e:61:
12:44:dd:96:dc:86:ea:b5:ff:9e:5a:70:05:1c:e8:0d:47:5f:
88:99:c1:e3:5f:d8:f8:9a:f2:34:ed:0b:ad:2a:1e:ae:15:92:
ca:82:26:b7:de:84:21:68:9e:8d:f4:19:75:05:ec:c4:35:0d:
0f:4a:59:42:e1:bb:1b:26:3d:0a:64:01:2c:7a:7d:f7:33:d5:
66:de:a5:58:a4:5b:59:bb:6f:16:6a:94:b4:e8:b4:37:e0:ad:
8a:ac:2a:3a:64:07:ef:46:f2:4a:03:b5:a6:b5:8c:a6:6f:c9:
01:0e:cf:6b:24:cc:59:33:bf:25:fb:a6:09:7f:fd:fd:82:a6:
ef:56:de:35:86:ce:63:f6:29:44:97:78:8a:68:40:81:3e:27:
85:fd:44:6d
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Jun 7 13:44:45 2025 by rpki-client