Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/6e5f4c-2eae-48a0-8550-29ac45e2ecff/1/LMr4qJtoQiNuzRtdrPseYJWhmNQ.roa
File: LMr4qJtoQiNuzRtdrPseYJWhmNQ.roa (raw, json)
Hash identifier: HjlHZSPbMqdny8RRGC9Ay5m+qCJBqQwRwFr/X+SmBKc=
Subject key identifier: 2C:CA:F8:A8:9B:68:42:23:6E:CD:1B:5D:AC:FB:1E:60:95:A1:98:D4
Certificate issuer: /CN=40f75d327761b90c0899638f430eb614c87c3106
Certificate serial: 01942823738709FD468267354CF6A695AE2D
Authority key identifier: 40:F7:5D:32:77:61:B9:0C:08:99:63:8F:43:0E:B6:14:C8:7C:31:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QPddMndhuQwImWOPQw62FMh8MQY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/6e5f4c-2eae-48a0-8550-29ac45e2ecff/1/LMr4qJtoQiNuzRtdrPseYJWhmNQ.roa
Signing time: Thu 02 Jan 2025 17:49:59 +0000
ROA not before: Thu 02 Jan 2025 17:49:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 12488
IP address blocks: 2001:678:2cc::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:23:73:87:09:fd:46:82:67:35:4c:f6:a6:95:ae:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40f75d327761b90c0899638f430eb614c87c3106
Validity
Not Before: Jan 2 17:49:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2ccaf8a89b6842236ecd1b5dacfb1e6095a198d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:e6:10:b3:37:b2:76:2c:5f:4b:c7:b2:0a:d8:
f8:ae:f0:c9:3d:79:83:46:56:3f:9b:e6:c8:00:2a:
45:cd:c6:ce:e3:62:82:bb:f4:cc:05:70:3c:47:f2:
11:18:71:26:57:37:2a:24:98:88:d3:43:18:83:92:
cb:53:cc:25:c1:3b:cc:cc:a6:54:45:b2:6e:fb:5c:
66:f7:59:5a:93:df:e4:77:e4:ce:b5:52:78:97:a5:
87:94:2f:ed:93:89:b3:10:47:7e:93:80:a6:54:c2:
18:04:3a:c8:0e:60:05:64:34:38:d0:d9:d9:22:6f:
87:e1:6b:b2:79:7a:36:35:36:2e:f2:b5:70:08:ce:
c6:40:03:8b:97:f4:ae:e6:56:71:ec:a8:ac:a4:d4:
e8:5f:73:51:0f:c0:d6:6d:1d:30:1e:f1:5c:91:16:
56:87:1b:d4:fc:d2:a8:f8:ea:77:75:34:73:d8:82:
02:08:b6:5d:6e:86:4c:93:7f:ad:b3:3b:ac:d5:e2:
d6:22:f9:0f:a8:ea:a0:bf:06:47:33:a3:2e:45:42:
68:b6:9e:18:b3:70:e2:f0:90:c9:7d:6c:f6:36:3c:
c1:5a:8e:69:12:02:a2:f3:93:b3:00:76:83:b5:37:
ce:f8:32:0b:74:ad:9b:85:71:9e:e0:45:31:ea:a6:
16:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:CA:F8:A8:9B:68:42:23:6E:CD:1B:5D:AC:FB:1E:60:95:A1:98:D4
X509v3 Authority Key Identifier:
keyid:40:F7:5D:32:77:61:B9:0C:08:99:63:8F:43:0E:B6:14:C8:7C:31:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QPddMndhuQwImWOPQw62FMh8MQY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/6e5f4c-2eae-48a0-8550-29ac45e2ecff/1/LMr4qJtoQiNuzRtdrPseYJWhmNQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/6e5f4c-2eae-48a0-8550-29ac45e2ecff/1/QPddMndhuQwImWOPQw62FMh8MQY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:2cc::/48
Signature Algorithm: sha256WithRSAEncryption
44:0f:fa:35:e0:84:34:01:c1:bd:56:cf:6e:6c:0e:76:bd:a9:
6f:b8:90:57:01:e5:aa:86:d4:2d:24:c8:4b:35:f9:21:07:64:
b1:9b:23:66:bb:e4:57:e9:95:c2:23:c8:dc:36:56:d4:df:79:
2f:18:0e:24:04:ae:8b:b4:ea:71:47:a8:8e:c6:77:25:ce:6e:
5b:5b:75:77:ef:8e:fa:16:c0:87:47:49:ee:8e:c0:7f:02:7f:
31:02:c9:f5:fe:5a:e7:d6:5b:ba:5f:fe:0d:f8:90:b5:98:a0:
84:07:9c:ca:20:11:79:74:fe:78:fe:bb:df:f5:33:ce:bb:e9:
08:a8:68:94:89:30:d4:1b:89:18:90:c2:a3:e2:30:cd:43:26:
84:3d:a4:9f:52:0e:05:49:57:fa:07:8a:17:d7:d1:1f:e6:98:
02:f3:eb:61:26:0d:55:ad:50:46:a2:16:1d:a1:bd:9e:4f:d3:
c0:bb:3f:e0:ce:73:cd:04:ba:92:cd:04:41:07:e1:68:2f:fe:
4e:03:b6:ff:c3:dc:0b:c7:82:19:d3:89:12:ac:74:f7:58:54:
8d:17:3f:94:da:e2:68:b9:6f:79:50:dc:e9:bb:19:eb:80:13:
39:1b:77:d5:99:fa:f2:71:c3:80:89:d1:da:69:6d:08:2a:44:
af:e8:5c:01
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAZQoI3OHCf1Ggmc1TPamla4tMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwZjc1ZDMyNzc2MWI5MGMwODk5NjM4ZjQzMGViNjE0Yzg3
YzMxMDYwHhcNMjUwMTAyMTc0OTU5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyY2NhZjhhODliNjg0MjIzNmVjZDFiNWRhY2ZiMWU2MDk1YTE5OGQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAweYQszeydixfS8eyCtj4rvDJPXmD
RlY/m+bIACpFzcbO42KCu/TMBXA8R/IRGHEmVzcqJJiI00MYg5LLU8wlwTvMzKZU
RbJu+1xm91lak9/kd+TOtVJ4l6WHlC/tk4mzEEd+k4CmVMIYBDrIDmAFZDQ40NnZ
Im+H4WuyeXo2NTYu8rVwCM7GQAOLl/Su5lZx7KispNToX3NRD8DWbR0wHvFckRZW
hxvU/NKo+Op3dTRz2IICCLZdboZMk3+tszus1eLWIvkPqOqgvwZHM6MuRUJotp4Y
s3Di8JDJfWz2NjzBWo5pEgKi85OzAHaDtTfO+DILdK2bhXGe4EUx6qYWYQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFCzK+KibaEIjbs0bXaz7HmCVoZjUMB8GA1UdIwQY
MBaAFED3XTJ3YbkMCJljj0MOthTIfDEGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUVBkZE1uZGh1UXdJbVdPUFF3NjJGTWg4TVFZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OS82ZTVmNGMtMmVhZS00OGEwLTg1NTAt
MjlhYzQ1ZTJlY2ZmLzEvTE1yNHFKdG9RaU51elJ0ZHJQc2VZSldobU5RLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OS82ZTVmNGMtMmVhZS00OGEwLTg1NTAtMjlhYzQ1ZTJlY2Zm
LzEvUVBkZE1uZGh1UXdJbVdPUFF3NjJGTWg4TVFZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeALM
MA0GCSqGSIb3DQEBCwUAA4IBAQBED/o14IQ0AcG9Vs9ubA52valvuJBXAeWqhtQt
JMhLNfkhB2SxmyNmu+RX6ZXCI8jcNlbU33kvGA4kBK6LtOpxR6iOxnclzm5bW3V3
7476FsCHR0nujsB/An8xAsn1/lrn1lu6X/4N+JC1mKCEB5zKIBF5dP54/rvf9TPO
u+kIqGiUiTDUG4kYkMKj4jDNQyaEPaSfUg4FSVf6B4oX19Ef5pgC8+thJg1VrVBG
ohYdob2eT9PAuz/gznPNBLqSzQRBB+FoL/5OA7b/w9wLx4IZ04kSrHT3WFSNFz+U
2uJouW95UNzpuxnrgBM5G3fVmfryccOAidHaaW0IKkSv6FwB
-----END CERTIFICATE-----
Generated at Sun Apr 6 05:22:10 2025 by rpki-client