Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/ByfNjgJjrY29klyckMhZDJh2dIk.roa
File: ByfNjgJjrY29klyckMhZDJh2dIk.roa (raw, json)
Hash identifier: N1GKtFqAqmeGpFdT/VisP/yc+1pwGzNVgrdUNiWh55E=
Subject key identifier: 07:27:CD:8E:02:63:AD:8D:BD:92:5C:9C:90:C8:59:0C:98:76:74:89
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0190E7D96DE3925EF8A10784481452AD837D
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/ByfNjgJjrY29klyckMhZDJh2dIk.roa
Signing time: Thu 25 Jul 2024 03:05:04 +0000
ROA not before: Thu 25 Jul 2024 03:05:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:e7d8:d244/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:e7:d9:6d:e3:92:5e:f8:a1:07:84:48:14:52:ad:83:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jul 25 03:05:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0727cd8e0263ad8dbd925c9c90c8590c98767489
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:d4:dc:91:11:35:76:ef:eb:94:d9:76:37:e7:
1f:cf:d0:e1:a7:8b:12:25:21:26:ae:99:ef:55:13:
41:fd:dc:75:31:8c:af:7e:7f:84:14:3b:87:16:2e:
fc:ef:fb:58:1a:04:a1:ee:35:83:4d:31:9a:1b:87:
6d:af:ad:6d:8c:fd:c5:b1:d3:51:c0:77:8c:95:b3:
a0:17:bc:6e:76:17:a4:8c:74:73:7f:63:03:63:72:
8c:6c:1f:c9:04:1d:1c:84:79:5f:8e:d1:b9:b9:a8:
9d:ab:61:94:78:a2:ee:39:8f:d6:29:76:17:e0:9a:
e3:8f:d9:3a:2b:66:c7:ea:74:05:4e:1c:08:41:84:
55:69:37:f3:15:74:cc:ee:f3:56:97:98:4c:31:a1:
3d:85:1d:64:b6:60:1f:2d:4a:52:82:3d:a3:5a:05:
08:3a:77:10:d7:6d:62:8f:a9:19:ae:25:84:26:2b:
4a:4d:e1:b5:ec:ef:78:34:90:24:4d:30:19:45:58:
d8:24:e6:2b:8f:c7:48:0c:68:37:bf:9d:19:ec:63:
c0:60:1e:4c:68:6d:4c:14:f5:cf:6e:ad:2b:66:92:
14:06:cf:0a:9a:2f:2d:2a:b5:db:dc:69:32:be:df:
7f:8b:ad:41:00:02:6b:0a:a7:65:f9:ab:6d:ea:e2:
db:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:27:CD:8E:02:63:AD:8D:BD:92:5C:9C:90:C8:59:0C:98:76:74:89
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/ByfNjgJjrY29klyckMhZDJh2dIk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:e7d8:d244/128
Signature Algorithm: sha256WithRSAEncryption
43:a7:c2:ea:46:1a:4e:f1:dc:f7:ed:3d:db:51:e0:86:f4:5b:
6d:b2:67:85:ea:42:52:18:21:f7:12:8e:83:2e:c3:ef:d1:3d:
ff:3f:77:47:75:12:f3:5b:ce:5a:95:1b:c7:55:69:83:93:a4:
53:73:5d:01:ad:6e:14:df:1b:16:79:07:cd:06:d2:b6:8d:ff:
f7:ba:70:64:8c:9c:7c:9e:27:69:67:56:cc:56:a1:1d:ac:9b:
7e:fa:41:47:18:a2:7c:d5:f3:d5:03:c1:eb:cd:fe:0e:0d:1d:
08:5f:8f:7f:54:db:f6:5a:23:e9:8a:df:b8:8d:28:b3:4a:d0:
38:59:96:51:42:4d:d0:6b:53:72:ea:dc:26:53:85:a5:2a:14:
34:db:0d:19:06:45:ca:47:c5:fc:1a:43:ad:28:7d:4e:48:78:
16:fd:26:bd:53:3d:77:c8:e0:0f:4b:1b:c7:94:d4:bf:d3:d6:
9f:d8:f3:17:9e:8a:81:1c:77:35:02:ae:e7:6c:82:5c:30:e6:
d4:4c:ec:94:52:4e:9e:5c:7d:0d:c1:3e:ac:4b:0e:de:3c:50:
6e:db:dd:4c:1d:43:0c:e0:4c:b6:76:9a:bd:dc:ed:f0:00:2f:
c8:47:06:a2:64:35:d3:5b:0c:77:8d:98:a5:f3:ca:08:7f:07:
bc:46:62:75
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun Jun 8 03:28:24 2025 by rpki-client