Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/0037eb-5e0b-4c2b-a94c-1dc3b8c61e6c/1/juaLzkk146uKRNECXoCuy_05vr4.roa
File: juaLzkk146uKRNECXoCuy_05vr4.roa (raw, json)
Hash identifier: CBsklMpH50L/CyQYAcOQ0dS2lSB0D35sIe8vyHi9T14=
Subject key identifier: 8E:E6:8B:CE:49:35:E3:AB:8A:44:D1:02:5E:80:AE:CB:FD:39:BE:BE
Certificate issuer: /CN=60b28e2723955a3f63e47b3230317eae9292ff32
Certificate serial: 019423D787C0713B28213A653357A60F7EB2
Authority key identifier: 60:B2:8E:27:23:95:5A:3F:63:E4:7B:32:30:31:7E:AE:92:92:FF:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YLKOJyOVWj9j5HsyMDF-rpKS_zI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/0037eb-5e0b-4c2b-a94c-1dc3b8c61e6c/1/juaLzkk146uKRNECXoCuy_05vr4.roa
Signing time: Wed 01 Jan 2025 21:48:34 +0000
ROA not before: Wed 01 Jan 2025 21:48:34 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212344
IP address blocks: 2001:67c:1b18::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:87:c0:71:3b:28:21:3a:65:33:57:a6:0f:7e:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60b28e2723955a3f63e47b3230317eae9292ff32
Validity
Not Before: Jan 1 21:48:34 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8ee68bce4935e3ab8a44d1025e80aecbfd39bebe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:e2:4f:93:58:34:f4:72:a6:d3:37:5d:4c:bf:
e8:c2:2f:c1:26:d6:82:a8:4f:76:9f:33:dd:c0:79:
cb:66:80:c3:37:3b:40:a9:8f:09:e8:d6:e6:90:cf:
e4:33:be:c2:0d:ad:fc:89:41:ab:b2:ae:ef:00:37:
86:6c:e0:b6:21:e3:38:20:b0:e6:2e:52:28:6a:9d:
13:7d:b8:13:7d:31:8b:e4:53:d5:2d:40:ec:39:8e:
f1:d3:0d:eb:93:27:02:26:9b:38:46:9a:2e:d3:ec:
cc:59:00:18:08:63:2b:10:a1:30:94:c1:c5:1d:eb:
d0:2d:2a:e7:ae:de:39:0e:ad:6d:6e:4f:c0:24:93:
e2:90:d5:b5:11:fb:85:a0:7e:30:13:c0:9b:43:ff:
f9:5a:08:d2:e3:c0:34:89:11:80:cf:93:bb:33:c9:
3b:b9:f9:08:7c:81:2e:0c:29:1f:04:ce:02:bf:b7:
ab:4a:af:a8:e9:79:25:7d:e5:b8:93:9e:18:e3:6f:
6a:0c:c6:96:d3:5a:f8:8f:06:70:af:72:6b:2e:25:
55:c6:f7:bb:29:60:0f:7a:96:b6:63:03:c2:91:af:
5f:7d:81:03:bd:65:ed:c1:f3:96:1d:3e:2d:a3:c2:
c4:fd:38:20:7d:10:af:d4:99:7c:9f:7f:2d:36:af:
87:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:E6:8B:CE:49:35:E3:AB:8A:44:D1:02:5E:80:AE:CB:FD:39:BE:BE
X509v3 Authority Key Identifier:
keyid:60:B2:8E:27:23:95:5A:3F:63:E4:7B:32:30:31:7E:AE:92:92:FF:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YLKOJyOVWj9j5HsyMDF-rpKS_zI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/0037eb-5e0b-4c2b-a94c-1dc3b8c61e6c/1/juaLzkk146uKRNECXoCuy_05vr4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/0037eb-5e0b-4c2b-a94c-1dc3b8c61e6c/1/YLKOJyOVWj9j5HsyMDF-rpKS_zI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:1b18::/48
Signature Algorithm: sha256WithRSAEncryption
c2:96:16:20:90:6a:b9:cb:2a:23:fe:6d:4e:2e:f9:5e:dc:56:
06:da:8b:6d:7f:53:6b:81:5b:8d:b1:a7:84:98:62:46:96:24:
fc:5b:14:50:26:46:06:06:d9:1d:c0:2c:57:0b:43:50:5a:11:
e8:07:e5:e3:7c:9a:0a:22:2e:67:fd:dd:aa:21:cc:b5:95:ab:
e7:85:27:d4:48:3d:c2:b4:f8:ed:cb:8f:08:ec:dc:cf:19:88:
8b:fa:25:46:2e:fe:2f:f8:a5:70:98:f3:e7:f6:d1:c2:59:48:
28:a7:69:40:27:df:a1:38:8a:fe:bc:ce:c0:4a:d2:16:be:f8:
b6:48:ca:bd:99:c4:01:0f:ce:9e:79:f7:8f:e4:7f:48:87:9d:
1f:5a:41:c3:88:60:2c:70:1c:e7:ba:2a:cc:93:3c:f4:b4:c3:
42:ea:d4:f9:99:af:00:8f:05:89:af:bd:4a:ed:b6:e6:02:d4:
07:d9:d6:cd:e2:7a:c8:09:f3:81:d8:61:a5:75:f5:bb:36:e4:
a1:63:e7:92:4f:c8:c7:18:20:cc:23:f9:bf:8b:96:26:41:af:
f9:a5:19:79:9f:0a:7e:7a:cc:76:50:dd:ae:d2:96:aa:be:85:
2a:e7:26:da:c2:40:56:c7:4d:ca:aa:ca:a4:4d:be:7b:d6:9d:
d3:98:3e:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:55:53 2025 by rpki-client