Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/1b645c-50e2-408b-be68-4eb383ff13b9/1/Bgx4v1LhphfEVxiPgOOZhtKcYxk.roa
File: Bgx4v1LhphfEVxiPgOOZhtKcYxk.roa (raw, json)
Hash identifier: PMSZWU3KeqqHp7dEdYFCinejkuywjWErsotBlVqvg44=
Subject key identifier: 06:0C:78:BF:52:E1:A6:17:C4:57:18:8F:80:E3:99:86:D2:9C:63:19
Certificate issuer: /CN=f76be99e8be2c5400d010542bf2058bdbb88502d
Certificate serial: 01941F8C8C56CD5BA201598EAFD09560E4B9
Authority key identifier: F7:6B:E9:9E:8B:E2:C5:40:0D:01:05:42:BF:20:58:BD:BB:88:50:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/92vpnovixUANAQVCvyBYvbuIUC0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/1b645c-50e2-408b-be68-4eb383ff13b9/1/Bgx4v1LhphfEVxiPgOOZhtKcYxk.roa
Signing time: Wed 01 Jan 2025 01:48:12 +0000
ROA not before: Wed 01 Jan 2025 01:48:12 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212925
IP address blocks: 2001:67c:8fc::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:8c:56:cd:5b:a2:01:59:8e:af:d0:95:60:e4:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f76be99e8be2c5400d010542bf2058bdbb88502d
Validity
Not Before: Jan 1 01:48:12 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=060c78bf52e1a617c457188f80e39986d29c6319
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:f4:b6:f9:f1:28:7d:d7:74:74:5e:b1:a9:75:
f1:00:ed:eb:45:7c:9d:0b:23:6e:ca:f2:f7:ac:ca:
91:d5:84:88:6b:e6:a7:19:7a:3b:f1:c3:f4:64:e1:
74:b1:e9:51:79:4c:5a:a7:8d:3d:71:3b:35:30:84:
b9:4b:ff:51:d6:26:14:22:cd:57:ed:73:88:d0:80:
db:78:77:56:83:bc:b1:84:22:52:7f:c1:0a:bd:46:
a4:eb:40:d3:86:68:58:7e:3f:70:0c:88:42:ec:81:
f6:91:dd:b5:56:3f:58:1a:aa:19:ba:58:85:87:6a:
6d:91:25:ec:4c:88:d1:59:a8:2f:cb:ac:10:7d:2e:
9d:c5:2e:18:f2:b8:b2:c6:fa:79:b3:2f:ca:4b:f8:
bf:13:7e:c9:77:c9:7d:7a:82:eb:86:4f:a8:87:af:
01:c5:b9:7b:08:10:6b:0d:02:74:74:89:19:1e:5e:
7e:86:06:69:43:19:f4:b2:87:b9:a0:a4:ad:0e:20:
68:01:97:f5:8f:0d:84:d5:df:38:93:c2:f1:88:58:
06:9f:6f:70:af:e6:a5:86:a3:43:a5:68:99:f1:41:
be:91:8e:5b:a8:a0:50:e8:ba:05:33:0c:ed:18:49:
2c:15:a8:da:c2:e3:db:ac:23:6e:05:2a:86:27:e4:
51:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:0C:78:BF:52:E1:A6:17:C4:57:18:8F:80:E3:99:86:D2:9C:63:19
X509v3 Authority Key Identifier:
keyid:F7:6B:E9:9E:8B:E2:C5:40:0D:01:05:42:BF:20:58:BD:BB:88:50:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/92vpnovixUANAQVCvyBYvbuIUC0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/1b645c-50e2-408b-be68-4eb383ff13b9/1/Bgx4v1LhphfEVxiPgOOZhtKcYxk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/1b645c-50e2-408b-be68-4eb383ff13b9/1/92vpnovixUANAQVCvyBYvbuIUC0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:8fc::/48
Signature Algorithm: sha256WithRSAEncryption
8c:d2:37:15:df:76:a1:51:d6:2f:2b:d4:11:d6:ea:0a:77:82:
c9:be:e9:82:41:c0:c8:0d:e9:53:80:86:a5:81:d9:bb:af:65:
09:bf:eb:26:36:13:34:0e:14:a9:ba:4d:49:f4:b0:d1:2e:e1:
bc:44:53:77:a2:3e:5f:c7:e5:a1:6e:0c:c8:e9:f2:6c:bb:33:
99:96:d5:d5:04:c1:e8:40:38:29:c7:4f:6d:c8:f3:69:0d:1b:
aa:58:48:05:20:3f:fb:e4:9c:6c:0b:69:8b:f2:b2:08:71:3f:
b2:72:33:77:cc:08:65:85:85:df:ad:69:a1:77:6e:ee:58:c7:
9a:ef:41:88:81:65:91:4d:01:31:b9:6c:ac:c4:c8:f4:b1:d5:
aa:82:dd:a6:df:9d:05:45:30:b8:ba:a2:e6:b7:3c:94:3f:d3:
81:39:a7:74:89:20:85:e1:f9:e6:b8:13:63:aa:bf:83:66:87:
c5:b9:e7:58:52:61:24:27:c3:36:d0:00:31:58:e4:8d:ed:c3:
21:db:a7:0f:f8:16:79:fa:35:68:b7:50:45:24:43:a8:56:45:
b8:d6:4d:ff:71:1c:66:a0:7b:34:c8:61:de:ce:9f:27:18:60:
50:21:a4:98:1d:60:5f:58:15:ce:24:6e:fb:17:92:ce:5d:ab:
2a:e1:16:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 02:05:29 2025 by rpki-client