Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/1_gjCmPI_27QuoIl-q4ZvdnBwC0.roa
File: 1_gjCmPI_27QuoIl-q4ZvdnBwC0.roa (raw, json)
Hash identifier: C1r9ajTGo7W/mRhAm1O4azDd5HXEFyA0UMsS4E3uBSE=
Subject key identifier: D7:F8:23:0A:63:C8:FF:6E:D0:BA:82:25:FA:AE:19:BD:D9:C1:C0:2D
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01919F1FF53C8C98BF257C8B8093F7731A4D
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/1_gjCmPI_27QuoIl-q4ZvdnBwC0.roa
Signing time: Thu 29 Aug 2024 17:12:37 +0000
ROA not before: Thu 29 Aug 2024 17:12:37 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:9f:1f:f5:3c:8c:98:bf:25:7c:8b:80:93:f7:73:1a:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Aug 29 17:12:37 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d7f8230a63c8ff6ed0ba8225faae19bdd9c1c02d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:06:5a:e5:9a:52:51:0b:18:04:59:b6:ab:4d:
64:02:07:6d:da:5d:88:00:47:5f:bf:6e:28:37:bc:
22:3d:b0:d3:c3:3f:18:c2:73:78:80:cf:b1:87:74:
ad:b8:b3:83:4a:bc:49:bd:6e:cc:55:49:3b:77:8e:
41:04:18:23:69:dd:d8:d2:3b:71:41:5f:4f:9c:c8:
9d:be:c3:6a:10:dc:af:83:ed:e8:4b:61:f1:83:1f:
9d:7b:d1:d9:69:0c:98:03:78:39:dd:a9:62:aa:9c:
31:d4:f8:0e:9b:03:48:13:86:83:88:ac:a2:db:8c:
96:93:63:9b:e6:2b:28:be:14:c6:d7:77:73:24:3b:
88:ba:58:36:7e:a1:74:6d:6b:c9:2f:77:01:23:97:
73:79:85:01:09:34:4d:05:b5:7f:fb:cc:c7:8b:c1:
68:05:92:b9:03:e3:b5:91:24:8a:0a:10:e7:1d:e0:
a2:05:a4:fa:8c:80:2f:c8:39:15:aa:ec:1d:cf:25:
41:46:ca:93:ae:8e:20:9b:06:fa:84:ed:07:51:4e:
c6:41:86:83:ee:29:f8:a4:5f:50:eb:67:aa:9f:25:
ee:b2:5a:44:a4:61:de:cb:45:a6:8c:17:90:19:e7:
bf:ef:bb:69:4f:31:df:f9:d9:0b:9f:db:aa:d3:31:
de:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:F8:23:0A:63:C8:FF:6E:D0:BA:82:25:FA:AE:19:BD:D9:C1:C0:2D
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/1_gjCmPI_27QuoIl-q4ZvdnBwC0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
Signature Algorithm: sha256WithRSAEncryption
25:fa:2b:f5:13:af:fb:cd:15:df:fc:10:fe:5e:d0:4d:59:a0:
fd:31:ad:bb:72:90:2d:1f:4e:1c:a0:f4:f2:be:f6:d9:53:c5:
25:f2:9c:30:05:14:32:08:e7:76:2b:27:57:2d:c3:68:31:3c:
ca:35:6b:03:e9:21:d0:a9:66:48:6a:f3:f9:3a:25:b9:e1:27:
54:8a:be:37:bb:02:9a:16:ad:fc:9a:29:bf:d8:f7:8f:13:08:
7a:cc:a5:54:34:11:73:95:c2:d8:40:d9:eb:65:04:95:2e:51:
6a:c2:8f:de:36:9c:f5:06:e5:af:09:04:90:f1:c8:80:77:8f:
ca:08:21:72:66:6e:d2:3a:d4:5a:f5:00:8a:80:02:30:26:b2:
65:91:86:6e:65:dc:6c:94:aa:47:f8:7f:8a:e3:d5:07:b4:6e:
e4:b6:e0:a8:26:12:71:d5:93:8b:34:36:71:ce:05:8a:42:01:
bf:dd:73:3c:36:f2:95:66:24:ba:85:c3:dd:a8:1a:92:00:29:
5e:2c:93:f1:88:11:d2:fb:ce:ca:2b:5a:6b:65:01:a4:f0:60:
b3:12:14:1c:ef:20:81:c9:f9:02:da:f3:d9:4d:90:6c:0c:1d:
dc:4b:44:14:db:f1:37:58:e2:28:9a:a3:af:4f:99:c2:8c:73:
2c:3b:95:c9
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Apr 19 12:04:25 2025 by rpki-client