Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/AdZSp7URbOJaRyCjudh1akxN5Rg.roa
File: AdZSp7URbOJaRyCjudh1akxN5Rg.roa (raw, json)
Hash identifier: QiQhC7LU5apbHOg00Oq6BgpyBDmzNFh4CxyWL3gKJtI=
Subject key identifier: 01:D6:52:A7:B5:11:6C:E2:5A:47:20:A3:B9:D8:75:6A:4C:4D:E5:18
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01910C903BAB62E03637A657505156F1A71D
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/AdZSp7URbOJaRyCjudh1akxN5Rg.roa
Signing time: Thu 01 Aug 2024 06:11:04 +0000
ROA not before: Thu 01 Aug 2024 06:11:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:0c:90:3b:ab:62:e0:36:37:a6:57:50:51:56:f1:a7:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Aug 1 06:11:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=01d652a7b5116ce25a4720a3b9d8756a4c4de518
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:f2:c2:25:c1:29:4c:3a:00:6b:6e:70:ba:e2:
60:49:38:e3:b4:92:02:c7:e8:71:9e:14:ea:72:c5:
e9:a1:0e:cf:d2:03:6f:c4:eb:7d:36:10:71:71:e4:
ab:9d:ef:15:eb:0d:69:57:f9:5a:4f:87:11:71:b4:
ff:dd:7f:7a:7a:a0:62:5f:85:50:f3:59:2f:90:bd:
48:f4:5f:28:35:42:a7:3c:2c:48:17:b2:13:f8:34:
75:78:5e:0a:03:81:01:b8:b2:d5:bb:85:7d:f5:ce:
f4:c9:00:a7:22:05:a9:c1:60:48:2b:21:8e:a2:d6:
0e:0e:d2:46:b1:07:ba:04:08:bb:1c:c3:f9:a8:2f:
db:4f:ad:20:97:15:56:e0:a7:0d:5d:73:2a:d0:00:
ed:2f:f6:18:ea:00:51:d4:57:07:5e:67:6b:84:0c:
fe:da:1b:1c:76:8c:7a:f9:88:0e:9b:df:89:0f:18:
7c:4a:60:ee:c1:46:b1:4c:70:12:36:8b:0e:bf:ce:
83:d5:f6:86:4d:f6:85:98:98:90:e4:eb:df:f2:12:
31:5d:cc:c6:78:fb:9f:70:91:38:8a:f0:61:f9:5d:
2f:00:e5:fb:c5:fc:38:8c:10:84:db:19:27:87:ea:
15:11:74:14:2a:1d:45:93:2c:c9:0e:3e:78:34:bd:
b8:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:D6:52:A7:B5:11:6C:E2:5A:47:20:A3:B9:D8:75:6A:4C:4D:E5:18
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/AdZSp7URbOJaRyCjudh1akxN5Rg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
Signature Algorithm: sha256WithRSAEncryption
3d:44:c3:b8:4c:54:08:9f:24:92:18:86:62:8c:72:e7:d1:9b:
96:1b:12:84:10:16:71:bc:f4:a6:65:8b:71:0c:f4:d0:2e:a2:
c3:3f:6a:c7:f8:f3:c2:f4:04:f0:93:ff:03:07:bf:2e:15:c6:
42:dc:2d:5a:71:26:2c:93:96:7b:1e:17:48:d4:6d:5b:6a:5e:
2f:02:f8:7b:43:e7:9c:bd:0b:e1:f4:7d:2b:30:cf:1b:c6:17:
73:eb:c2:0c:04:13:68:c6:b7:84:d3:22:8d:b1:97:29:7b:fe:
c3:f8:5f:79:d5:d0:b2:74:63:00:2f:73:e3:6b:4b:73:3a:d5:
32:2a:2a:17:f8:07:95:03:9d:6e:e4:93:02:27:b2:83:81:61:
ea:e2:a8:14:af:ca:e9:23:43:a1:6c:ef:ad:db:f0:28:71:7c:
bb:86:ca:ae:2d:5d:db:5f:3d:ff:f2:19:8b:02:76:be:ca:00:
dc:aa:eb:78:00:bb:d9:26:93:06:7a:3b:58:c6:86:f0:99:ba:
f0:06:aa:ee:7a:85:d2:bd:2d:22:49:55:8c:02:d3:b7:20:71:
55:30:85:c0:82:0f:99:0d:13:aa:34:3e:91:84:0b:6b:67:66:
8b:f5:f5:c8:e5:4f:7f:85:4c:77:90:b6:20:f1:2a:88:9e:92:
70:51:e1:47
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Apr 19 16:13:21 2025 by rpki-client