Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/6H5GdIfVPPhVtmK1l5bCM2Xh3ws.roa
File: 6H5GdIfVPPhVtmK1l5bCM2Xh3ws.roa (raw, json)
Hash identifier: E+/M7RGnPuOBzxV9TcZNYGJsAxzyUSgieVLysq9xAfE=
Subject key identifier: E8:7E:46:74:87:D5:3C:F8:55:B6:62:B5:97:96:C2:33:65:E1:DF:0B
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0191BC4E9524E6596F3C4570DB88F35A859B
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/6H5GdIfVPPhVtmK1l5bCM2Xh3ws.roa
Signing time: Wed 04 Sep 2024 09:12:32 +0000
ROA not before: Wed 04 Sep 2024 09:12:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:bc:4e:95:24:e6:59:6f:3c:45:70:db:88:f3:5a:85:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Sep 4 09:12:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e87e467487d53cf855b662b59796c23365e1df0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:6b:6d:2d:ba:60:e7:97:82:71:3a:30:6f:7a:
4b:8a:52:5a:1a:fe:cb:5a:3b:3a:c4:87:0c:7f:74:
3f:f1:f8:98:f9:fe:ff:12:dd:ed:96:cb:54:d0:bc:
9d:c1:a0:c4:51:28:3e:2f:01:46:28:8e:eb:5a:ff:
74:15:df:30:73:65:21:0f:6b:1c:20:61:54:26:79:
9e:7b:e2:d3:cb:a9:e6:85:24:65:70:c3:97:f1:71:
0b:62:6a:8d:27:3a:d9:c1:87:2c:17:45:c8:ae:ab:
99:3d:ce:de:0e:ba:52:33:fc:2a:70:1a:dd:d4:aa:
99:fc:ee:73:33:82:c5:3b:9b:18:1d:ea:59:ef:9f:
ef:79:ed:c8:1e:33:30:6c:5d:fe:88:d6:97:e4:05:
d8:fa:2a:82:ea:35:dd:ef:0c:24:78:8a:f9:e6:45:
e4:b1:70:68:82:f3:11:8a:a6:b4:51:36:a9:45:cb:
89:32:67:c3:a0:76:d2:02:b5:82:5d:a2:4a:f4:33:
19:b7:a6:3c:96:0b:cf:4f:e0:84:a9:05:b1:32:48:
b4:fd:5d:64:4d:8d:c7:9d:e2:d9:5a:70:0d:eb:1d:
3e:c6:14:1b:95:42:f4:38:f4:30:c4:47:50:1e:82:
37:c1:df:9f:ab:92:15:a3:b1:ed:c0:f6:b6:2a:e5:
6b:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:7E:46:74:87:D5:3C:F8:55:B6:62:B5:97:96:C2:33:65:E1:DF:0B
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/6H5GdIfVPPhVtmK1l5bCM2Xh3ws.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
Signature Algorithm: sha256WithRSAEncryption
4a:fc:56:23:bd:a0:0d:c2:6f:bc:a6:65:c3:96:0d:3a:8e:67:
a3:8e:bc:7b:9c:42:33:18:2e:d9:24:50:99:b3:bf:c7:92:72:
68:d5:30:ab:e2:fa:3f:2a:bf:20:50:87:f1:59:e9:fb:19:b1:
c8:e1:28:c7:9d:a6:a7:ca:29:38:23:28:15:14:a1:88:bf:a6:
22:5e:94:cf:c8:c2:9d:b5:a3:ac:01:05:31:92:09:97:92:ce:
ab:52:0b:78:b8:83:e0:53:48:ee:62:d9:ad:de:24:69:b5:0e:
7b:c1:db:d5:a9:39:62:b6:c4:3d:16:6d:9e:f1:a2:b5:45:ab:
ef:e5:5f:ab:78:e1:78:79:55:60:72:c8:cb:94:b1:44:a6:ee:
18:45:49:2b:39:c0:52:80:46:f8:9f:6d:fb:2c:a8:3e:b1:d8:
c6:0d:49:d7:40:34:c2:98:93:ff:8e:6a:1d:f2:9f:47:0e:76:
3c:af:e1:76:d8:40:85:ee:17:a9:00:01:7c:84:fd:d0:f8:e3:
6a:1c:79:09:e4:3c:08:34:01:08:22:f6:5f:61:91:7d:ed:8a:
53:e3:fc:e3:0d:35:9e:2d:0b:c5:2c:59:49:f5:80:a2:3e:40:
6e:6f:36:d3:d0:b4:5c:1b:1b:30:94:43:67:ef:72:96:96:3f:
cf:5b:97:5b
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Apr 19 18:00:16 2025 by rpki-client