Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/1iJLP4aJrI2hjWxk12iuKYzmb_M.roa
File: 1iJLP4aJrI2hjWxk12iuKYzmb_M.roa (raw, json)
Hash identifier: tusbi3tkNeAGUvn3o+Sa67gPeJ7Zq/94QL8VPCaghdw=
Subject key identifier: D6:22:4B:3F:86:89:AC:8D:A1:8D:6C:64:D7:68:AE:29:8C:E6:6F:F3
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0191D1BC46A83BA71EEDF7C9BAC40CD717A0
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/1iJLP4aJrI2hjWxk12iuKYzmb_M.roa
Signing time: Sun 08 Sep 2024 13:04:22 +0000
ROA not before: Sun 08 Sep 2024 13:04:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
2001:67c:64:ffff:0:191:d1bc:1fa1/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:d1:bc:46:a8:3b:a7:1e:ed:f7:c9:ba:c4:0c:d7:17:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Sep 8 13:04:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d6224b3f8689ac8da18d6c64d768ae298ce66ff3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:13:8b:7c:2e:79:60:44:00:f8:85:b9:5e:07:
27:d0:3f:5e:e4:05:9b:61:a3:eb:a7:67:db:d6:30:
84:f3:a7:99:5a:87:cc:18:27:24:56:e0:9b:99:8a:
7d:23:1e:72:8f:cc:31:3a:3c:a5:a5:63:28:f2:97:
64:ca:ec:cb:26:54:41:36:f3:00:87:88:56:28:07:
5d:9b:7d:1e:52:1d:96:c1:68:51:50:b2:a2:13:dc:
d3:8d:44:24:50:e9:1c:9c:4d:4a:d7:07:f8:0b:e6:
73:83:54:e8:40:98:69:b8:d7:3a:a5:29:51:2c:b5:
a4:c7:a7:d5:d8:a5:84:6c:f3:b2:c4:a5:c2:bd:4d:
f7:96:57:76:ae:f9:8b:97:a9:bd:bf:f4:94:9a:d8:
be:03:83:42:03:26:c1:ef:2d:2c:2d:d4:76:fc:f4:
bf:60:15:2c:c7:9a:1f:51:29:9d:ce:ad:c8:3c:6f:
da:32:0d:cd:d5:0f:df:3e:a8:95:8b:fa:48:7e:44:
99:4e:e9:ac:8c:4e:a3:3a:0a:79:27:eb:76:81:ea:
c1:7d:95:ee:38:f5:4d:00:fa:d6:ce:0a:66:37:12:
9f:5c:46:f5:ac:b3:34:2d:a4:89:4f:ca:c6:76:d5:
a8:22:c0:f5:05:1f:e7:72:8f:6c:3a:30:9e:4f:8e:
ca:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:22:4B:3F:86:89:AC:8D:A1:8D:6C:64:D7:68:AE:29:8C:E6:6F:F3
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/1iJLP4aJrI2hjWxk12iuKYzmb_M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
2001:67c:64:ffff:0:191:d1bc:1fa1/128
Signature Algorithm: sha256WithRSAEncryption
0a:54:60:b7:b7:c8:9a:b6:e8:3b:21:49:ad:8e:98:a7:d0:6b:
98:50:0c:76:ac:6d:fe:ab:e5:47:27:db:e5:ed:38:2a:6e:28:
f8:f3:57:66:fc:6f:bf:6a:45:8b:6c:f0:6e:56:ed:d7:7d:77:
ba:80:89:3e:88:c5:cb:bf:34:ec:4d:1e:9b:4f:9f:46:74:88:
ed:a3:de:3a:1b:94:9a:75:0a:93:a5:b8:98:4f:6f:ff:d7:fe:
ae:5e:97:8e:c3:40:53:df:7e:1d:3b:f8:ae:b4:34:28:4f:85:
4c:f8:9b:82:77:85:c0:75:d4:ad:45:e0:27:be:d5:03:31:48:
e8:53:87:3c:3b:0c:29:66:11:2c:2c:c0:69:72:8d:7f:9a:d1:
c2:82:c8:01:41:88:ba:88:8c:97:7e:67:78:c4:3c:4e:01:9f:
4f:5a:65:fc:14:84:2e:3b:13:31:fa:eb:6e:62:98:ef:bb:35:
46:de:e2:47:3e:d4:8d:be:38:0b:50:5c:97:48:ac:9b:cc:9c:
67:fb:c6:7e:d8:f1:a4:fc:dc:69:ed:43:02:8a:46:55:24:ed:
f4:ea:9c:56:87:25:b7:0a:0b:ca:0a:16:73:6b:26:9a:48:89:
35:ba:02:47:8e:da:ce:72:38:f7:af:de:84:75:52:56:96:01:
be:9d:69:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 05:18:09 2025 by rpki-client