Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/HWMoYvq9kD8QCv2uoZC_HudBCEc.roa
File: HWMoYvq9kD8QCv2uoZC_HudBCEc.roa (raw, json)
Hash identifier: nmqeqmkmC+w7sVOMTdg5maoaLMWGP/Siqotiy+NFVXg=
Subject key identifier: 1D:63:28:62:FA:BD:90:3F:10:0A:FD:AE:A1:90:BF:1E:E7:41:08:47
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01946070C79B60022935DFCF84DE9D508F98
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/HWMoYvq9kD8QCv2uoZC_HudBCEc.roa
Signing time: Mon 13 Jan 2025 16:13:11 +0000
ROA not before: Mon 13 Jan 2025 16:13:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:194:2c0d:6680/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:60:70:c7:9b:60:02:29:35:df:cf:84:de:9d:50:8f:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jan 13 16:13:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1d632862fabd903f100afdaea190bf1ee7410847
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:12:cc:ef:e1:32:b3:a3:d1:1d:50:ec:44:1d:
c7:f2:19:97:74:bf:be:bb:36:90:4d:84:3c:2c:f4:
f9:bf:a4:bd:4e:8d:ad:f3:09:49:21:03:18:5c:90:
3c:f5:15:fb:62:0e:d6:e3:5e:a9:c0:dd:a5:d5:c0:
e9:02:bb:44:73:49:91:6d:b9:42:84:ea:2e:cf:19:
5b:ad:8c:be:21:52:7e:1c:00:16:30:58:df:a1:a6:
04:72:57:50:67:f4:51:98:34:49:34:2e:be:55:d0:
6e:20:5a:fb:7b:4e:5e:47:af:06:8c:d8:3a:43:03:
41:6d:30:9c:93:b7:07:3c:9c:04:9a:9f:d2:8b:99:
47:0c:ba:c3:fa:e5:d3:40:78:87:47:50:b2:42:8b:
c4:25:c7:1b:f3:e3:bc:f5:47:43:86:36:9e:4d:a3:
15:17:50:7f:aa:b8:4b:b3:5d:b1:ab:b9:8f:13:a5:
93:ae:c8:23:8e:fb:b1:d5:9a:73:d2:9c:37:0e:85:
07:e6:92:84:54:8e:9e:2e:0c:48:30:d7:26:38:1c:
b8:4d:e4:ec:ff:61:d8:42:d0:5b:9c:77:ed:e6:fb:
39:5a:fb:e0:66:05:0c:4a:8e:2d:b3:3e:25:3d:f8:
37:7e:0a:c8:01:67:a4:c2:1d:13:37:a8:fa:23:27:
a0:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:63:28:62:FA:BD:90:3F:10:0A:FD:AE:A1:90:BF:1E:E7:41:08:47
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/HWMoYvq9kD8QCv2uoZC_HudBCEc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:194:2c0d:6680/128
Signature Algorithm: sha256WithRSAEncryption
55:c5:21:91:4a:c2:b5:bd:c8:e3:a2:d1:16:d5:9a:bb:4f:a0:
7a:0e:66:f1:23:ae:f3:ab:40:0a:bc:fa:32:b4:9c:6a:8d:80:
57:3f:3a:9d:44:2f:ae:68:d9:ee:3f:7b:b9:4f:14:9d:60:ce:
45:0e:51:28:8d:89:87:89:36:b2:0d:03:89:f5:c2:80:05:13:
bc:12:8d:68:1d:86:fb:52:7c:d0:20:a9:75:d4:28:9b:b5:ba:
e4:42:1f:3e:6e:e8:7b:df:5f:38:27:00:c8:41:10:ab:98:05:
f2:54:9f:33:d8:bd:43:55:12:85:6d:68:a9:06:88:ec:15:99:
90:74:0a:a7:72:26:23:e2:b9:20:e6:71:7e:6c:38:68:76:d7:
3a:29:0c:63:2b:78:42:3a:bc:86:b4:19:64:09:22:98:e3:d1:
b7:2a:9d:19:48:4c:6f:a3:ad:aa:8d:52:a3:ad:c2:01:f0:aa:
a7:f9:bf:26:fd:8e:b7:e3:81:a1:e3:52:50:92:13:dd:16:74:
04:0d:2e:4f:13:0c:76:18:fc:eb:99:e4:d3:70:ab:35:ce:b1:
a7:bc:c4:d7:79:14:c2:cb:2c:c0:58:13:3d:c5:f1:5d:9f:b6:
fb:2e:f6:3a:3e:e7:19:5e:89:c4:60:a9:31:be:78:05:be:16:
4c:02:1b:a8
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Apr 19 17:10:34 2025 by rpki-client