Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/8f2093-0318-476c-9e9c-53fc4905629b/1/djt1wnEeMWCGixI9JNMPiTXrt7U.roa
File: djt1wnEeMWCGixI9JNMPiTXrt7U.roa (raw, json)
Hash identifier: fvje1Lm8IIK5mAd7uOyfo0YMgHNd5fDXDiGQLx1jFzE=
Subject key identifier: 76:3B:75:C2:71:1E:31:60:86:8B:12:3D:24:D3:0F:89:35:EB:B7:B5
Certificate issuer: /CN=bde75079618691bae1f47bcbed52314496963891
Certificate serial: 01941FFA7DDD9897DF4E5806EE6DCC9D6823
Authority key identifier: BD:E7:50:79:61:86:91:BA:E1:F4:7B:CB:ED:52:31:44:96:96:38:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vedQeWGGkbrh9HvL7VIxRJaWOJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/8f2093-0318-476c-9e9c-53fc4905629b/1/djt1wnEeMWCGixI9JNMPiTXrt7U.roa
Signing time: Wed 01 Jan 2025 03:48:17 +0000
ROA not before: Wed 01 Jan 2025 03:48:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 39334
IP address blocks: 2001:678:6d8::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:7d:dd:98:97:df:4e:58:06:ee:6d:cc:9d:68:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bde75079618691bae1f47bcbed52314496963891
Validity
Not Before: Jan 1 03:48:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=763b75c2711e3160868b123d24d30f8935ebb7b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:d7:ad:93:f3:aa:25:e9:6b:91:2f:8d:fe:e4:
80:a4:60:d9:46:ec:9b:b5:ff:dc:92:40:8b:9c:4a:
5a:c1:39:d5:ac:ae:ee:c3:06:62:07:9c:df:68:df:
0c:bc:7f:35:3e:c9:21:22:cd:20:22:e1:58:14:21:
62:ea:42:21:05:ad:df:3e:37:bc:9a:8b:c3:15:a3:
47:cf:cb:64:7c:24:d9:9a:10:8a:5f:21:a7:9f:0e:
29:97:b0:84:10:24:e0:72:5d:ab:80:80:37:5e:38:
26:e9:24:e6:dc:e9:a7:48:e2:23:2d:90:ca:1c:50:
e7:ca:a6:51:0a:47:41:89:92:0b:b5:c5:c5:32:2f:
12:f2:a8:a4:c0:50:1d:60:d1:25:79:4c:e3:18:6b:
95:a7:5c:00:52:e7:4c:90:1f:7c:21:8c:94:0d:fb:
80:2e:d5:3a:4c:42:49:21:5c:5f:e6:3a:fe:cc:46:
45:b2:85:21:74:a2:ee:c7:4d:02:f5:79:e2:dd:dc:
65:5a:db:b7:0c:00:46:32:04:a5:a3:c4:a3:db:55:
a2:80:48:8d:e6:f9:77:39:4a:fd:8a:f2:8f:db:ad:
41:ba:dd:d2:d7:4f:91:0a:fb:c2:71:9b:b0:f6:e2:
de:62:f1:c4:f9:15:31:0c:73:d6:71:49:08:7e:a3:
b2:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:3B:75:C2:71:1E:31:60:86:8B:12:3D:24:D3:0F:89:35:EB:B7:B5
X509v3 Authority Key Identifier:
keyid:BD:E7:50:79:61:86:91:BA:E1:F4:7B:CB:ED:52:31:44:96:96:38:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vedQeWGGkbrh9HvL7VIxRJaWOJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/8f2093-0318-476c-9e9c-53fc4905629b/1/djt1wnEeMWCGixI9JNMPiTXrt7U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/8f2093-0318-476c-9e9c-53fc4905629b/1/vedQeWGGkbrh9HvL7VIxRJaWOJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:6d8::/48
Signature Algorithm: sha256WithRSAEncryption
16:ca:79:5a:d7:c3:21:b3:71:66:cb:ca:7d:b6:c0:7a:22:8e:
b2:8b:79:e1:7b:1d:85:3e:15:c3:05:78:28:9a:86:5f:3d:54:
7e:d9:13:5e:07:67:56:69:3c:07:dc:f2:76:57:93:60:fa:92:
78:3a:0b:d2:2c:14:3c:f9:f7:1c:a7:e6:7d:81:63:82:b0:a8:
f9:13:ab:e3:9c:9c:ca:ff:13:61:e7:8f:a3:0d:42:21:7f:73:
2f:9f:5c:f0:9e:07:3b:34:d5:ad:ea:88:fe:c3:49:a4:64:ce:
09:24:95:8e:00:68:e4:5d:4e:23:11:8c:8e:0d:c0:a5:b7:51:
08:98:b9:7c:b5:5e:0d:1d:c2:38:f5:27:73:b0:dc:4a:b1:7e:
43:cb:37:e2:9e:62:a5:bd:4e:dd:e8:d7:1f:af:62:66:9d:b9:
1a:83:b4:c1:8f:1b:de:4d:ed:5b:0d:80:9d:c6:a1:b1:c3:b3:
de:c0:d9:ad:c7:2e:14:09:7a:d6:e0:73:c7:e1:cc:24:e7:2a:
52:b2:64:6d:a8:e9:c2:69:f6:89:a9:b7:63:97:d5:09:96:f2:
00:4e:67:77:cb:3d:c8:f0:2a:ad:de:bf:70:e8:c4:e6:0c:b2:
93:86:25:3a:de:d3:f0:87:11:8b:b1:ee:41:bd:59:9c:a6:54:
41:34:07:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 17:39:38 2025 by rpki-client