Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/6POlps7ZbvxwpwdP1Altn_EsGaw.roa
File: 6POlps7ZbvxwpwdP1Altn_EsGaw.roa (raw, json)
Hash identifier: miIvba8nGT/hRYEPnvfhN0tCPoZjLhvVJBpCF4IoYYE=
Subject key identifier: E8:F3:A5:A6:CE:D9:6E:FC:70:A7:07:4F:D4:09:6D:9F:F1:2C:19:AC
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01943A75FF29E3A729A7CF39BE624962D14F
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/6POlps7ZbvxwpwdP1Altn_EsGaw.roa
Signing time: Mon 06 Jan 2025 07:13:18 +0000
ROA not before: Mon 06 Jan 2025 07:13:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:194:2c0d:6680/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:3a:75:ff:29:e3:a7:29:a7:cf:39:be:62:49:62:d1:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jan 6 07:13:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e8f3a5a6ced96efc70a7074fd4096d9ff12c19ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:7c:9f:71:74:8a:3e:57:50:35:c5:68:7f:1c:
71:cc:58:cc:48:e4:6d:8e:66:11:23:a9:30:4e:d3:
ea:93:6f:54:34:48:85:3a:00:76:e6:ac:af:8d:5f:
fd:2f:f5:43:dd:dd:01:67:f3:b0:9c:cc:a7:06:05:
99:ee:62:02:e4:bf:05:19:2b:ba:91:09:20:6c:35:
a4:6c:18:92:1f:6c:cb:fb:c3:3a:95:e5:9b:02:f8:
5b:52:4e:bf:eb:83:1c:e1:4f:46:7f:78:d3:bc:94:
82:ee:9f:5a:71:51:15:44:e8:62:8d:ca:1d:a6:d4:
eb:68:19:c8:40:6c:4e:3b:3b:8d:1c:ac:15:db:4c:
50:b7:7c:85:88:bd:2c:a2:9e:a9:ff:c4:00:44:81:
80:e2:31:72:4c:db:d8:c2:94:d6:68:29:32:f3:59:
0e:89:f4:c8:6e:65:8d:87:4f:49:92:fb:12:84:f3:
05:0c:16:e4:e0:00:04:c3:53:49:4b:92:c2:4a:ad:
d1:39:4d:7c:57:04:ff:fa:d8:f9:c7:e9:dc:79:1c:
7b:ea:b4:ec:67:89:c4:78:7a:be:e5:5e:28:15:e4:
d4:87:6e:24:80:c5:da:d4:b9:15:78:49:b6:a1:e1:
c9:87:c0:d8:69:00:3d:6d:0b:25:bc:d1:98:4f:ee:
79:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:F3:A5:A6:CE:D9:6E:FC:70:A7:07:4F:D4:09:6D:9F:F1:2C:19:AC
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/6POlps7ZbvxwpwdP1Altn_EsGaw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:194:2c0d:6680/128
Signature Algorithm: sha256WithRSAEncryption
26:30:ae:03:ae:14:65:c8:1f:f8:f8:a8:42:dd:05:fe:1e:bf:
89:3e:18:f8:fa:65:98:7e:e8:cf:e4:ba:b9:e0:72:1f:ed:42:
b3:ca:c9:d5:b6:8b:fe:f5:a7:c9:97:8e:63:08:49:0a:c5:7d:
76:1f:28:18:f9:5e:f5:5c:d5:44:46:7f:8e:8c:8e:98:34:01:
c7:86:f0:b8:43:be:b9:d5:46:d1:f2:4c:6a:50:b7:df:92:04:
26:a3:c9:f6:af:e0:be:fc:2d:de:86:34:cd:f5:7e:f7:da:1a:
93:73:eb:2c:2f:62:e9:d2:12:be:9e:c8:db:94:77:d9:64:47:
ef:9d:fd:78:30:40:46:91:ad:e2:0d:2b:93:33:02:d1:4a:9a:
08:4c:cc:01:f9:4b:00:cd:67:24:4a:84:a5:e9:f4:fd:c6:fa:
13:1a:d9:60:14:fa:eb:fc:f5:63:ab:95:90:45:0e:b9:7a:c0:
cb:3c:97:4e:c8:a3:af:93:fb:89:a1:bf:0d:55:38:5b:a7:2f:
8b:a8:6d:61:e7:df:9e:86:fc:8f:36:23:ca:ca:82:0e:50:3f:
eb:43:8a:eb:9f:8f:cf:ce:11:4d:4a:c0:5f:0a:02:05:7e:1d:
0b:37:e9:3a:e1:69:17:12:ff:90:a3:aa:76:ea:e5:76:53:8a:
59:21:52:83
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun Jun 8 05:17:43 2025 by rpki-client