Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/f66ca9-3bdc-4294-ad62-7bcefa9f59e8/1/nj2c3MBEPq93KOGGwWoqV9JtmMA.roa
File: nj2c3MBEPq93KOGGwWoqV9JtmMA.roa (raw, json)
Hash identifier: aehu0m3Q5Z195OPnNAWHR8DPZTlkptiSt7pWjlRxV10=
Subject key identifier: 9E:3D:9C:DC:C0:44:3E:AF:77:28:E1:86:C1:6A:2A:57:D2:6D:98:C0
Certificate issuer: /CN=5f0fd90d987297cb5dd4e07be840d280d1e2cc4a
Certificate serial: 018959F714BEF5649CB0A94B8891FD25A83F
Authority key identifier: 5F:0F:D9:0D:98:72:97:CB:5D:D4:E0:7B:E8:40:D2:80:D1:E2:CC:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xw_ZDZhyl8td1OB76EDSgNHizEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/f66ca9-3bdc-4294-ad62-7bcefa9f59e8/1/nj2c3MBEPq93KOGGwWoqV9JtmMA.roa
Signing time: Sat 15 Jul 2023 14:31:52 +0000
ROA not before: Sat 15 Jul 2023 14:31:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58057
IP address blocks: 2001:67c:bd4::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:59:f7:14:be:f5:64:9c:b0:a9:4b:88:91:fd:25:a8:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f0fd90d987297cb5dd4e07be840d280d1e2cc4a
Validity
Not Before: Jul 15 14:31:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9e3d9cdcc0443eaf7728e186c16a2a57d26d98c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:35:fd:97:5c:2d:25:77:c9:b3:39:f0:32:69:
7f:46:10:73:b6:3f:0a:7e:7d:b4:7a:ed:19:ec:68:
5d:cd:85:9a:22:f5:31:89:ce:db:95:03:57:21:ae:
4a:7b:8e:dc:42:5b:4e:8a:65:22:fa:32:87:a2:90:
4c:47:15:0c:04:aa:d6:7a:e5:3a:c8:82:36:e5:da:
a1:b4:ac:3d:52:79:d2:80:7e:72:5e:06:d6:c5:42:
b5:78:17:46:da:51:89:20:e9:b2:53:df:07:df:03:
10:e0:19:39:3f:4d:ae:6e:41:bc:f1:a4:58:00:80:
30:9b:90:37:66:02:a8:b6:84:f4:21:35:3b:3b:ce:
8f:72:08:d2:8d:80:c6:7c:7c:84:5c:de:19:d4:38:
df:e5:27:d8:33:8c:23:03:ad:00:3c:86:a9:3e:2e:
54:bc:01:a8:5d:30:ac:c0:0b:9b:c7:ba:c4:4a:c2:
17:44:65:86:9a:fc:d1:cf:ae:c0:e1:a7:02:58:e6:
e1:34:4d:3f:f9:00:d8:4d:df:4f:51:50:04:bf:b9:
42:16:5e:5c:50:80:45:99:73:2a:77:d7:9f:75:7d:
40:81:1e:7a:47:63:b1:78:f4:88:c9:80:e4:e9:6a:
82:2d:96:9e:07:16:bf:79:1a:68:5b:b9:b4:c4:55:
ba:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:3D:9C:DC:C0:44:3E:AF:77:28:E1:86:C1:6A:2A:57:D2:6D:98:C0
X509v3 Authority Key Identifier:
keyid:5F:0F:D9:0D:98:72:97:CB:5D:D4:E0:7B:E8:40:D2:80:D1:E2:CC:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xw_ZDZhyl8td1OB76EDSgNHizEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/f66ca9-3bdc-4294-ad62-7bcefa9f59e8/1/nj2c3MBEPq93KOGGwWoqV9JtmMA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/f66ca9-3bdc-4294-ad62-7bcefa9f59e8/1/Xw_ZDZhyl8td1OB76EDSgNHizEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:bd4::/48
Signature Algorithm: sha256WithRSAEncryption
92:d0:16:11:36:0c:d8:ec:ce:68:a3:08:e7:12:ad:fe:0f:46:
12:a0:af:87:8a:e9:21:1c:05:5e:42:f0:7b:86:e2:f8:ad:59:
a1:2b:e2:11:4b:3b:1e:40:a1:c9:fb:0a:ff:b9:ed:fc:f4:9f:
d3:02:7a:4c:4d:90:a7:a3:50:9f:43:99:49:e6:76:5a:e3:fa:
0b:1f:3a:40:0e:81:17:97:f5:41:8b:9b:a4:8e:3f:58:c6:0a:
a1:30:f2:ab:d8:6a:ce:7c:35:8c:7c:19:e6:7a:75:da:c4:73:
bd:7a:c1:97:87:12:b1:ea:73:a0:7b:d2:16:0c:14:19:e8:67:
72:e3:5c:89:26:7f:f4:97:4e:44:63:aa:16:9f:cf:bd:64:24:
c7:99:c6:6d:63:6e:97:b2:b7:59:1d:d7:1e:87:24:8f:50:6c:
5c:d7:fc:0c:ba:96:d3:ac:ab:dc:20:cb:ae:47:28:f1:c0:36:
f5:ad:72:77:fa:92:92:07:5a:55:6c:3e:d8:91:b2:22:cb:a6:
0f:a8:fa:75:bb:43:7c:6f:d1:77:95:7c:95:e6:37:04:47:cd:
4f:bf:3b:35:46:c6:f6:70:10:c8:98:b9:34:c4:cd:0d:5a:2a:
c6:03:c9:5a:26:51:54:8a:f1:47:f5:60:06:9e:5e:ee:c3:e0:
fc:bc:98:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 21:27:11 2025 by rpki-client