Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/J3cIEdJrkiqpJ1OfonZ7yT45ZeU.roa
File: J3cIEdJrkiqpJ1OfonZ7yT45ZeU.roa (raw, json)
Hash identifier: zkmCJGaAbXd8UUW9yM0V44D4GSc8PtIyReTI3N52YW4=
Subject key identifier: 27:77:08:11:D2:6B:92:2A:A9:27:53:9F:A2:76:7B:C9:3E:39:65:E5
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01946ED20A14E6A0E49329CD5065C2E0C559
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/J3cIEdJrkiqpJ1OfonZ7yT45ZeU.roa
Signing time: Thu 16 Jan 2025 11:14:06 +0000
ROA not before: Thu 16 Jan 2025 11:14:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:194:2c0d:6680/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:6e:d2:0a:14:e6:a0:e4:93:29:cd:50:65:c2:e0:c5:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jan 16 11:14:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=27770811d26b922aa927539fa2767bc93e3965e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:1e:39:76:2e:a8:78:f1:a2:dd:8b:3b:b8:6b:
bc:21:dd:ab:96:08:b1:d2:67:84:69:cd:19:10:25:
1c:30:45:e0:c1:61:1f:08:f1:c0:59:ca:d0:80:a4:
b8:a2:cf:7a:03:22:1c:39:c1:90:e6:bc:db:bf:91:
88:3f:79:bf:9c:35:eb:ff:ec:f3:af:44:d3:bd:0c:
6f:f4:34:8e:20:5d:c1:13:89:a8:3c:c6:fe:61:e8:
82:6f:a1:b3:1e:8e:be:fd:79:ec:5f:22:ea:1f:04:
01:32:9e:d6:a8:ca:16:93:cb:0f:69:a7:2a:46:f5:
70:a6:0e:0a:20:3c:20:a6:d6:d4:40:8d:f4:ab:bb:
7f:6b:75:8d:31:2f:c6:7a:b0:67:fa:e5:90:2e:82:
2d:47:a5:19:12:5b:7c:d2:a4:2e:7f:04:63:b1:ef:
e3:03:44:f3:51:bf:9e:f1:fd:09:79:55:b6:21:63:
67:81:3c:79:b8:dc:7f:18:b4:9c:95:d2:87:0e:1a:
0b:68:8f:3f:b3:70:1b:2d:67:3e:e6:5d:e8:be:13:
36:aa:83:c1:a7:bb:b8:c0:35:94:f2:a1:77:7f:b3:
23:73:5a:b8:3b:3b:42:07:3b:3c:b1:8c:f6:f7:0f:
9f:88:f0:fc:0c:dd:4e:f7:65:00:5c:d0:e4:c7:6b:
39:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:77:08:11:D2:6B:92:2A:A9:27:53:9F:A2:76:7B:C9:3E:39:65:E5
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/J3cIEdJrkiqpJ1OfonZ7yT45ZeU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:194:2c0d:6680/128
Signature Algorithm: sha256WithRSAEncryption
70:2c:b5:f9:6c:74:89:32:8a:63:2b:5b:38:16:6f:1a:d4:9b:
7c:6a:9a:4c:e8:8f:3c:bc:ec:c0:39:80:78:32:47:0d:19:cf:
21:d3:55:0a:ab:5e:a5:b4:16:3a:d4:ca:64:75:95:26:a6:21:
53:24:4c:aa:b8:37:31:b4:54:f7:57:80:ea:28:c5:dd:33:2a:
d1:79:1f:1f:55:82:07:13:f8:d5:b6:e0:1b:35:5c:79:ac:53:
0c:d9:2c:f1:73:1b:ee:07:4a:24:de:33:49:aa:b9:07:37:03:
f9:a8:1e:ea:de:5a:2f:17:df:93:ba:cf:c7:66:a8:5a:2b:d1:
b7:1d:a4:a8:67:79:ac:13:f4:e0:2d:b6:33:a9:94:b4:e2:11:
9a:c3:a6:bf:17:3e:35:0c:b9:08:53:1a:22:2a:fc:6b:7f:4e:
ca:de:b3:95:8e:da:7e:42:66:f1:70:8a:c2:ac:48:6c:ad:5b:
ab:1a:3f:2a:b3:b2:32:7d:95:fb:1c:06:f9:05:5e:53:4b:86:
c2:18:6e:c8:ae:0d:f0:ae:68:8b:c7:25:85:9e:72:a5:62:d1:
f9:42:d9:af:25:2f:57:18:06:ab:9a:ff:68:90:bb:6b:46:17:
50:0b:82:95:d1:29:e6:77:2c:ca:f0:68:2a:7b:35:f0:ee:41:
56:fe:c7:1a
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun Jun 8 05:11:58 2025 by rpki-client