Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/J0stVQKANHwDLWoemGmRAB8y8lo.roa
File: J0stVQKANHwDLWoemGmRAB8y8lo.roa (raw, json)
Hash identifier: aw5X1rb4Quig5xQAxZmxM7ZaZ+SDgyWhoLTz/vSDSI8=
Subject key identifier: 27:4B:2D:55:02:80:34:7C:03:2D:6A:1E:98:69:91:00:1F:32:F2:5A
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0191D599F769000AA0240ADA46F2169AEC67
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/J0stVQKANHwDLWoemGmRAB8y8lo.roa
Signing time: Mon 09 Sep 2024 07:05:22 +0000
ROA not before: Mon 09 Sep 2024 07:05:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
2001:67c:64:ffff:0:191:d599:1708/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:d5:99:f7:69:00:0a:a0:24:0a:da:46:f2:16:9a:ec:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Sep 9 07:05:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=274b2d550280347c032d6a1e986991001f32f25a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:bc:f0:a7:80:f3:f9:8a:3b:3e:95:2b:52:7d:
b3:dd:53:1d:ac:7a:68:ed:27:51:97:ee:db:fc:99:
ed:01:59:e3:39:85:4e:46:ab:38:b5:64:34:c2:85:
02:8a:a1:91:33:89:f4:17:e1:6f:2d:1c:c8:e6:e7:
cb:1a:8d:b5:2f:63:54:f3:d9:62:1c:60:6f:50:89:
24:56:3f:45:db:32:4b:75:bc:3d:22:8e:a8:e0:a8:
f7:e8:fa:7f:b2:11:7f:c8:10:8b:5b:54:34:07:a1:
82:bf:06:83:e0:c9:6d:f6:49:c2:ab:70:af:a4:95:
0b:33:ff:d6:2c:3b:ed:7f:2b:16:0d:f1:d7:9d:89:
c5:12:4b:9a:c4:8a:ad:a8:34:c1:84:db:33:31:58:
4f:d4:1f:91:92:a0:73:4f:1e:11:c1:65:bb:90:2d:
00:fd:cd:ea:91:cf:fd:8b:d8:29:47:0f:82:51:8c:
97:46:1e:f3:db:d7:ba:87:ec:51:c7:41:54:99:7e:
83:0b:e5:cb:73:5c:15:e4:1d:f3:a9:b5:d1:bc:03:
b1:d5:db:e7:27:91:e8:7b:1c:c5:cd:b2:e3:ea:27:
d8:c4:34:5e:fa:bc:d8:49:f4:30:14:80:93:f1:c3:
05:a1:95:3f:89:a8:89:b3:37:f7:08:5e:2c:55:ca:
fe:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:4B:2D:55:02:80:34:7C:03:2D:6A:1E:98:69:91:00:1F:32:F2:5A
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/J0stVQKANHwDLWoemGmRAB8y8lo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
2001:67c:64:ffff:0:191:d599:1708/128
Signature Algorithm: sha256WithRSAEncryption
5d:e8:9a:cc:8b:62:b0:44:71:a0:79:0e:ad:13:90:e0:07:46:
01:26:da:3b:5c:0e:41:e3:37:ba:3d:93:ff:33:64:35:b3:61:
8d:40:ec:81:59:ac:41:e3:2d:22:d5:e8:93:73:a9:08:0f:11:
ac:e0:6b:de:eb:71:80:b4:3f:03:70:25:35:17:5e:12:c5:0e:
51:63:61:37:99:e6:dd:fb:67:fc:57:4c:c0:e6:ad:1a:c9:06:
54:f7:57:c1:7c:42:e3:76:2f:73:db:af:68:b3:8c:60:51:9e:
fb:29:86:3e:11:8b:d6:26:19:b7:11:b6:36:a9:16:93:89:79:
a2:00:56:f6:4d:70:b6:c0:f1:2b:1d:25:7c:1e:0c:97:b8:90:
ec:a9:7c:6e:8b:1a:af:e6:a5:40:54:08:70:e8:72:6a:57:5c:
17:41:86:07:b5:ea:5d:ff:2e:bb:11:51:7c:49:4d:24:a4:63:
87:d7:74:5a:42:55:e1:61:e4:dd:59:41:be:e2:bb:51:92:15:
6a:1f:2f:60:48:03:23:12:df:84:2b:25:84:14:f0:8d:e2:f1:
e3:17:ff:5d:09:c3:9e:2c:ec:a7:65:d5:79:63:b1:8f:81:e8:
ed:de:a1:e4:db:37:12:61:d6:19:02:89:9a:43:e2:a8:47:15:
b3:72:6c:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 15:12:08 2025 by rpki-client