Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/lpO2gtExEgZg6I3tA7u83UORPzg.roa
File: lpO2gtExEgZg6I3tA7u83UORPzg.roa (raw, json)
Hash identifier: Ys3yOY1uG9OwiIw12Nxl74Yju3LXIYbXWusRGboq5uA=
Subject key identifier: 96:93:B6:82:D1:31:12:06:60:E8:8D:ED:03:BB:BC:DD:43:91:3F:38
Certificate issuer: /CN=73c69d04583500c5ef81136831237593e0bb86ce
Certificate serial: 019427462C98C530CA5543898D1B43C35F6D
Authority key identifier: 73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/lpO2gtExEgZg6I3tA7u83UORPzg.roa
Signing time: Thu 02 Jan 2025 13:48:17 +0000
ROA not before: Thu 02 Jan 2025 13:48:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 60326
IP address blocks: 2a0c:e642::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:46:2c:98:c5:30:ca:55:43:89:8d:1b:43:c3:5f:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73c69d04583500c5ef81136831237593e0bb86ce
Validity
Not Before: Jan 2 13:48:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9693b682d131120660e88ded03bbbcdd43913f38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ca:08:4e:3b:d7:d9:8d:1e:15:cf:3d:f1:14:
bb:5b:ec:86:92:1a:58:15:79:6e:d9:fc:ab:c5:25:
24:2c:b0:96:0a:94:34:0a:4d:c7:27:16:da:c4:43:
9d:09:56:46:5d:c6:37:86:90:e3:e2:ae:de:df:80:
cd:05:d9:ca:8d:e7:17:30:7c:db:02:b4:92:5a:1b:
5c:54:eb:e6:2f:96:7a:9a:a4:d9:6a:c3:b7:97:d8:
95:48:69:ba:fa:6a:88:21:62:dd:02:76:11:bd:bf:
69:85:53:52:96:1c:1f:03:2a:01:42:36:c2:bd:13:
96:31:e1:e6:30:68:ee:50:9a:49:1f:98:1e:4c:df:
50:41:12:87:27:8d:42:2f:83:27:86:f9:9e:64:4d:
f5:39:88:e9:2f:61:c6:13:00:e0:0a:45:9c:d2:23:
b3:ef:03:45:5c:a7:bd:11:e9:06:13:15:8d:59:77:
47:27:8e:f3:40:c4:fb:55:af:cc:e3:1e:39:5a:75:
f8:c2:b7:ab:eb:ae:77:c9:bc:37:70:fa:35:c5:dc:
ec:05:36:2e:21:81:6d:a8:a7:45:0e:33:6c:e8:ca:
89:9c:e5:fe:4b:65:5d:9d:da:07:5e:eb:b5:b8:87:
0c:eb:b0:75:5d:3b:b5:3d:e1:cb:15:7b:fa:8e:3d:
d8:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:93:B6:82:D1:31:12:06:60:E8:8D:ED:03:BB:BC:DD:43:91:3F:38
X509v3 Authority Key Identifier:
keyid:73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/lpO2gtExEgZg6I3tA7u83UORPzg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:e642::/32
Signature Algorithm: sha256WithRSAEncryption
bc:91:b3:e6:a0:ec:f9:fe:20:ab:77:f3:c3:0a:3c:83:4d:05:
eb:93:0c:5b:57:0c:c8:17:35:d4:98:1f:0c:98:42:b2:f2:b4:
0a:22:a0:c4:5a:ee:f2:2d:cc:d6:d7:51:91:35:97:f9:fd:5c:
1b:e5:3f:f8:99:9d:31:e1:f2:06:72:96:67:41:f7:c8:b6:18:
43:dc:9c:99:fe:f7:84:27:c9:1a:8e:67:9b:46:cd:23:67:5f:
51:17:96:cb:56:a8:94:80:49:b2:18:0d:18:7c:73:6d:d4:2e:
bb:f0:76:72:02:04:e1:4f:45:11:3b:fa:70:bf:4e:79:c6:12:
02:16:5e:3d:b7:bb:d2:72:2e:44:39:20:7e:14:62:a3:c4:72:
c2:9b:f8:8f:81:fc:8d:5c:0b:02:28:de:0e:c1:4a:29:b0:13:
d2:3a:3b:ad:92:40:a3:e8:a8:78:b1:8a:7f:40:0e:2b:37:8d:
36:63:69:80:0a:73:c6:e7:7e:e5:6d:e6:16:88:84:3c:84:db:
d3:37:d2:2e:51:03:4f:24:d8:62:b6:03:dd:92:d0:35:d1:3f:
b0:07:dd:01:c0:b0:6b:95:69:52:06:89:31:2d:23:07:e2:fa:
8a:d4:16:96:64:41:ee:58:cb:7b:c5:4d:4b:c5:ba:8f:d2:b1:
ca:bd:e8:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 14:30:07 2025 by rpki-client