Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/hoJCPHI3kMFvNyJJekf8HSd0pa8.roa
File: hoJCPHI3kMFvNyJJekf8HSd0pa8.roa (raw, json)
Hash identifier: N89cvCwlx15A0MnySLkXdi8r2pYx7GPiu1HNTh+VXJI=
Subject key identifier: 86:82:42:3C:72:37:90:C1:6F:37:22:49:7A:47:FC:1D:27:74:A5:AF
Certificate issuer: /CN=8e1c11658d2041eaf2502fe5408ed493bbd4f318
Certificate serial: 01946393B3941B0CC4B5396566DD65332F30
Authority key identifier: 8E:1C:11:65:8D:20:41:EA:F2:50:2F:E5:40:8E:D4:93:BB:D4:F3:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jhwRZY0gQeryUC_lQI7Uk7vU8xg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/hoJCPHI3kMFvNyJJekf8HSd0pa8.roa
Signing time: Tue 14 Jan 2025 06:50:11 +0000
ROA not before: Tue 14 Jan 2025 06:50:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206150
IP address blocks: 2a0e:4204::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:63:93:b3:94:1b:0c:c4:b5:39:65:66:dd:65:33:2f:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e1c11658d2041eaf2502fe5408ed493bbd4f318
Validity
Not Before: Jan 14 06:50:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8682423c723790c16f3722497a47fc1d2774a5af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:99:8b:92:c6:09:88:51:c9:dc:09:1a:7f:cd:
f6:26:70:43:1c:da:70:aa:89:5b:fb:fa:6a:04:fd:
39:9e:4e:c6:72:5f:e8:5d:b6:b9:de:33:82:71:f7:
15:d2:3e:d9:05:11:80:fc:25:ce:c5:15:f6:15:7b:
47:25:8f:04:18:19:99:4a:42:e8:a5:b7:9d:86:2b:
0f:2f:d9:d3:66:c9:b0:d4:39:08:d9:c6:35:f1:28:
ff:50:3d:1e:2c:d6:48:95:e9:b1:6c:b8:7f:6a:bb:
49:f4:f4:58:80:c6:35:c0:ba:fb:7f:53:d6:8a:74:
a1:18:a4:68:53:e8:99:97:f6:38:44:98:8d:7e:61:
03:08:1b:b6:19:72:89:a4:16:be:62:56:1a:a6:4e:
77:cf:e8:41:0b:f1:ae:ad:34:01:5b:ad:23:87:ae:
2a:a8:0f:17:41:aa:3d:53:ae:b1:1d:10:fb:88:99:
bb:9f:ce:24:03:56:cf:34:e7:f5:cb:54:64:a4:63:
68:6a:f2:91:2d:d3:3b:6d:ec:15:4f:5b:ef:dd:bd:
6e:80:8a:e0:99:82:d5:d7:9b:b4:99:a6:e3:03:0e:
11:e3:87:ff:0b:40:8a:6c:0c:d4:1e:02:a8:42:40:
86:a5:79:02:4a:89:62:f9:03:9f:fc:e5:a8:8e:55:
c5:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:82:42:3C:72:37:90:C1:6F:37:22:49:7A:47:FC:1D:27:74:A5:AF
X509v3 Authority Key Identifier:
keyid:8E:1C:11:65:8D:20:41:EA:F2:50:2F:E5:40:8E:D4:93:BB:D4:F3:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jhwRZY0gQeryUC_lQI7Uk7vU8xg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/hoJCPHI3kMFvNyJJekf8HSd0pa8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/jhwRZY0gQeryUC_lQI7Uk7vU8xg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:4204::/32
Signature Algorithm: sha256WithRSAEncryption
55:46:ec:4a:e3:04:6e:ed:d7:e0:9e:87:c9:22:9a:43:69:15:
bc:6f:ec:2e:d0:ee:ba:a0:2b:8a:00:a1:24:3b:86:cc:bf:a2:
bc:55:5f:cd:0a:c6:ee:c8:a1:f6:cc:a6:53:52:aa:3b:d9:42:
15:ea:4a:f8:49:24:3a:e4:ce:5e:ea:99:e9:7f:c6:ae:c1:76:
8b:47:93:50:72:cf:12:29:27:82:e9:2b:5c:0e:1e:ec:f9:bb:
6c:da:7e:0e:09:f9:9f:ca:1e:e9:f5:e3:91:27:5e:31:80:60:
a6:9e:04:8a:a1:db:f1:ff:e7:ed:05:a2:4c:13:d8:3c:dd:5c:
fd:6a:3c:f9:84:11:31:d4:e3:91:e1:87:21:b9:1c:ac:69:ca:
72:15:85:ce:e2:eb:5e:9e:a9:d5:75:c4:aa:73:5d:17:6f:eb:
d1:8b:5f:63:1b:76:71:9c:92:d5:53:98:3b:fe:b6:1b:c1:1c:
6b:c5:e6:fe:8f:27:79:63:2c:1b:37:de:db:19:9c:18:6d:00:
0a:46:ad:35:96:5d:25:37:03:b0:67:fd:e1:99:fa:f2:77:f6:
44:11:41:55:4b:68:59:1c:36:04:f9:05:0b:ae:20:3f:29:a3:
4c:10:ca:4b:7e:0e:13:bc:89:d5:a3:ae:ac:75:fd:92:7c:b2:
5f:d9:b7:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:04:01 2025 by rpki-client