Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/52dc3d-5c57-4c38-a439-2516c7e19674/1/dlPkyof4ApNub8Vn8DnNSzZ8BCw.roa
File: dlPkyof4ApNub8Vn8DnNSzZ8BCw.roa (raw, json)
Hash identifier: S/R8o56A31EqTLEk7FWeKKCvtBaNjSRyeEIs/ah/2r8=
Subject key identifier: 76:53:E4:CA:87:F8:02:93:6E:6F:C5:67:F0:39:CD:4B:36:7C:04:2C
Certificate issuer: /CN=2ac77e8001f0d4a213837b9c65ad9a1f33dd8bcd
Certificate serial: 01856CB832E5B0243A5187370351595DD959
Authority key identifier: 2A:C7:7E:80:01:F0:D4:A2:13:83:7B:9C:65:AD:9A:1F:33:DD:8B:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ksd-gAHw1KITg3ucZa2aHzPdi80.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/52dc3d-5c57-4c38-a439-2516c7e19674/1/dlPkyof4ApNub8Vn8DnNSzZ8BCw.roa
Signing time: Sun 01 Jan 2023 09:44:49 +0000
ROA not before: Sun 01 Jan 2023 09:44:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209616
IP address blocks: 2001:678:15c::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:b8:32:e5:b0:24:3a:51:87:37:03:51:59:5d:d9:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac77e8001f0d4a213837b9c65ad9a1f33dd8bcd
Validity
Not Before: Jan 1 09:44:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7653e4ca87f802936e6fc567f039cd4b367c042c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:b8:00:1b:60:cc:c6:a8:ee:fa:ce:d1:84:fc:
7f:a4:08:30:ab:e6:09:26:68:97:0b:29:ce:2c:76:
11:4b:f4:c6:ed:f4:e4:b3:8f:68:df:42:25:69:3b:
31:0d:eb:68:72:11:e3:03:52:5b:33:9d:03:b3:35:
21:de:44:5f:0e:22:ce:62:4e:05:d3:4a:2d:19:47:
fd:b9:69:03:7c:65:c6:b3:53:9d:0b:a0:b7:b2:fb:
0d:57:47:96:4c:d4:b0:fc:8c:75:07:da:a0:8a:9b:
23:33:c4:37:92:d0:f0:e9:04:08:74:ae:67:80:30:
95:3a:0f:4f:0a:d8:c1:6c:ef:0c:f4:3f:33:bc:e8:
78:3a:7d:40:48:e3:35:d0:cb:4a:e8:cc:89:07:87:
dd:72:52:49:a4:9e:1c:85:4b:cf:0e:86:b3:59:8b:
a7:d6:b6:49:69:08:44:19:e1:1b:6f:69:61:87:ec:
ed:9f:f8:03:96:64:70:7c:4f:b8:1b:fb:da:5e:8f:
d6:f7:71:af:a0:97:ae:49:54:c6:89:b7:67:16:b1:
19:62:0a:95:5b:49:64:a4:d6:01:5f:d7:ec:be:6d:
10:be:5c:9b:16:3b:c9:19:6e:87:e4:be:0d:16:bf:
0a:b8:f7:4b:04:04:d4:ac:e3:6b:7d:20:0e:81:54:
21:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:53:E4:CA:87:F8:02:93:6E:6F:C5:67:F0:39:CD:4B:36:7C:04:2C
X509v3 Authority Key Identifier:
keyid:2A:C7:7E:80:01:F0:D4:A2:13:83:7B:9C:65:AD:9A:1F:33:DD:8B:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ksd-gAHw1KITg3ucZa2aHzPdi80.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/52dc3d-5c57-4c38-a439-2516c7e19674/1/dlPkyof4ApNub8Vn8DnNSzZ8BCw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/52dc3d-5c57-4c38-a439-2516c7e19674/1/Ksd-gAHw1KITg3ucZa2aHzPdi80.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:15c::/48
Signature Algorithm: sha256WithRSAEncryption
2e:66:f5:4a:02:a9:39:61:be:34:2b:96:32:e2:c8:96:70:c6:
77:87:4a:8d:55:c6:d0:38:c9:20:dc:b0:8d:99:4d:e7:12:55:
61:75:9d:11:47:ff:ed:ad:f7:d7:f6:02:65:eb:cf:97:2a:15:
be:b2:a2:2e:d7:7a:8b:20:de:99:f2:65:7f:a5:1c:99:6f:0c:
bc:4a:a3:57:d1:af:1e:38:60:74:60:4c:8b:bd:7b:70:95:ad:
68:29:f2:83:4b:80:5a:ab:e7:21:ca:2b:be:6d:40:f3:e9:18:
d8:40:7c:15:13:3f:c9:8c:e7:f5:41:bf:20:bf:a5:9d:16:90:
58:95:8a:af:36:9a:48:5a:f9:4d:f0:13:84:3c:52:33:dc:3b:
4d:82:83:bf:f6:50:7a:6f:83:2b:83:85:5c:e9:96:18:25:15:
cd:4d:76:78:99:47:50:24:62:d6:83:f9:fe:5f:f6:e6:20:c5:
81:af:0b:8b:d1:c7:98:7d:ee:6b:3b:0c:63:1c:41:38:fb:6b:
2a:00:91:dc:6e:b7:ec:79:6e:d6:55:ac:2c:85:e7:86:79:d2:
0d:ff:98:41:01:53:ac:44:02:bf:93:e5:ed:6f:44:09:f4:07:
c0:b2:ee:9b:01:96:e2:02:3b:6f:fd:e8:dc:7f:31:17:5a:63:
7d:18:73:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 02:34:09 2025 by rpki-client