Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/eeeb85-29d4-46bb-b3f6-ac3b6a4567ba/1/ID7EJVgdGpnmyne0NupoGtnpzek.roa
File: ID7EJVgdGpnmyne0NupoGtnpzek.roa (raw, json)
Hash identifier: ZeCQXddR8S6+kjzcEpoW2z9l/rn9G5gRDRbTRJiZ+0o=
Subject key identifier: 20:3E:C4:25:58:1D:1A:99:E6:CA:77:B4:36:EA:68:1A:D9:E9:CD:E9
Certificate issuer: /CN=a19c643946a059397355420d73bc45f14da2a76b
Certificate serial: 019424B3E9C1E8803247955A864D7F274707
Authority key identifier: A1:9C:64:39:46:A0:59:39:73:55:42:0D:73:BC:45:F1:4D:A2:A7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oZxkOUagWTlzVUINc7xF8U2ip2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/eeeb85-29d4-46bb-b3f6-ac3b6a4567ba/1/ID7EJVgdGpnmyne0NupoGtnpzek.roa
Signing time: Thu 02 Jan 2025 01:49:18 +0000
ROA not before: Thu 02 Jan 2025 01:49:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213364
IP address blocks: 2001:678:d14::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:e9:c1:e8:80:32:47:95:5a:86:4d:7f:27:47:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a19c643946a059397355420d73bc45f14da2a76b
Validity
Not Before: Jan 2 01:49:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=203ec425581d1a99e6ca77b436ea681ad9e9cde9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:bd:f5:a1:b2:f4:b5:36:50:41:01:af:ff:5f:
ce:cc:0f:8b:d5:48:54:f3:d7:81:58:91:28:98:d1:
3a:85:96:db:78:f4:b0:3c:b6:4c:e9:f1:ac:0e:6d:
54:26:61:34:5b:82:7b:6d:4c:f3:b2:37:5e:3a:7a:
22:65:ea:4f:bf:b9:8b:c9:9a:20:6d:82:16:d2:ed:
86:b6:65:f6:d3:3d:b4:87:57:17:1b:54:f6:d7:94:
22:7e:6c:bc:b7:56:0e:cb:be:14:3f:68:23:9a:c9:
ce:4b:4f:27:5b:df:4b:7d:65:8b:69:a2:3e:d4:65:
f2:a1:29:76:33:ff:65:26:f0:eb:53:1f:01:bd:00:
3f:d8:77:42:35:c8:c1:33:2d:90:95:6e:e2:dc:87:
2d:20:bc:ef:31:26:40:6d:fd:04:e5:7b:9c:c1:54:
de:70:79:8b:5f:c3:ec:9d:6b:9b:b3:b9:b6:ba:0e:
9e:4d:31:36:20:5a:82:19:ba:f8:73:17:fc:8d:f7:
a3:50:a7:0b:59:4e:6f:8f:82:4a:ec:09:2a:87:d6:
e3:b6:72:06:02:fc:7f:9b:7e:2a:05:70:64:69:d7:
05:14:29:97:49:75:81:50:90:96:53:2c:79:39:1b:
d4:80:30:86:a6:30:af:6d:47:71:2a:de:a5:31:f8:
c5:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:3E:C4:25:58:1D:1A:99:E6:CA:77:B4:36:EA:68:1A:D9:E9:CD:E9
X509v3 Authority Key Identifier:
keyid:A1:9C:64:39:46:A0:59:39:73:55:42:0D:73:BC:45:F1:4D:A2:A7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oZxkOUagWTlzVUINc7xF8U2ip2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/eeeb85-29d4-46bb-b3f6-ac3b6a4567ba/1/ID7EJVgdGpnmyne0NupoGtnpzek.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/eeeb85-29d4-46bb-b3f6-ac3b6a4567ba/1/oZxkOUagWTlzVUINc7xF8U2ip2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:d14::/48
Signature Algorithm: sha256WithRSAEncryption
6f:34:24:ef:ae:2f:34:8c:a4:8e:a2:22:75:2e:7e:5f:a5:f4:
83:99:5e:74:b4:39:f1:40:06:28:3f:2a:cb:3a:9a:25:7e:83:
78:02:d7:ec:28:68:11:78:f6:58:c9:56:37:c6:b5:24:ad:49:
c7:3c:43:1b:8f:a4:a0:02:3b:0a:d8:ba:7a:f4:19:ca:ae:94:
03:18:8c:fa:d6:a9:44:0f:be:97:67:5c:72:36:52:a4:15:52:
ed:e8:e0:c6:79:4a:60:00:0c:ec:93:19:2a:ba:6e:e4:a0:ea:
ad:30:17:7f:df:df:fa:16:7d:5a:ae:ed:24:cc:7c:a1:de:a4:
3c:ae:81:dc:bc:01:3f:e7:53:59:c6:f8:d1:29:02:53:f8:e9:
b4:c7:5f:62:37:05:8c:ba:be:80:4d:34:64:0c:6f:00:11:44:
f7:41:d8:87:46:a8:f3:21:84:66:02:93:70:15:9e:7d:3d:bc:
d4:40:5f:c3:41:fa:31:14:eb:58:16:72:87:5f:67:a5:2a:ff:
fc:f2:6a:08:c8:96:f4:86:8d:7f:49:85:1c:d6:23:37:a7:93:
48:09:bc:f1:16:79:e7:29:5b:2d:13:d6:ee:15:ec:36:9c:92:
d8:9c:d9:bd:7d:16:d1:0b:d0:a4:5e:03:e2:13:e6:9e:51:51:
30:70:cb:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:38:04 2025 by rpki-client