Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/T-JVud14Z8y27HQ5EmTUf_ipsu4.roa
File: T-JVud14Z8y27HQ5EmTUf_ipsu4.roa (raw, json)
Hash identifier: vgA9kIDxIi5pkoZL5GcKQAjM2ayvIHD/nvWzjZISgxM=
Subject key identifier: 4F:E2:55:B9:DD:78:67:CC:B6:EC:74:39:12:64:D4:7F:F8:A9:B2:EE
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 019437AA0E1B80190ED3CFC7A5176CD8C59C
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/T-JVud14Z8y27HQ5EmTUf_ipsu4.roa
Signing time: Sun 05 Jan 2025 18:11:19 +0000
ROA not before: Sun 05 Jan 2025 18:11:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:194:2c0d:6680/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:37:aa:0e:1b:80:19:0e:d3:cf:c7:a5:17:6c:d8:c5:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jan 5 18:11:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4fe255b9dd7867ccb6ec74391264d47ff8a9b2ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:07:21:f3:d1:fb:75:e7:76:9d:ca:95:11:a5:
b6:3b:ab:43:fb:00:15:6e:6d:76:cc:bb:e1:7f:27:
10:35:f6:d1:e9:57:bc:1d:1e:a1:14:dd:dd:51:0e:
4d:87:51:2c:d9:4b:18:ff:23:ce:e3:20:e0:35:8a:
4f:71:a9:15:28:6d:49:f9:b5:3d:a3:3f:f9:c8:31:
25:01:93:da:9f:53:f8:1b:a6:1f:77:6b:eb:72:a1:
dc:33:ff:f6:8b:1f:6e:9f:39:c1:03:93:30:23:b7:
04:9a:3b:89:3b:e1:35:cc:d1:1a:12:97:10:95:fa:
67:7d:a6:63:2f:62:b4:e0:dc:65:42:3c:6b:32:55:
1e:86:5d:3e:18:58:27:fb:1f:83:ee:41:8f:cf:69:
80:7e:09:d5:a9:0f:c0:f2:ad:9d:a5:77:a5:70:5d:
da:5d:33:5a:7e:b0:cc:8a:0f:2d:9b:64:8b:f0:32:
b5:3e:9f:48:f8:a0:f3:bc:b2:a3:4b:a3:e9:f7:9e:
2c:a2:42:d3:42:81:5b:3b:99:c5:5b:98:dc:e6:02:
06:3c:8d:7e:d3:c0:58:fd:c2:cf:e6:8d:bd:56:75:
c1:ab:84:64:91:44:84:89:c5:06:a1:0c:52:25:b5:
d8:5c:9f:de:8b:1c:bf:64:fc:e9:78:d6:35:61:5e:
97:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:E2:55:B9:DD:78:67:CC:B6:EC:74:39:12:64:D4:7F:F8:A9:B2:EE
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/T-JVud14Z8y27HQ5EmTUf_ipsu4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:194:2c0d:6680/128
Signature Algorithm: sha256WithRSAEncryption
43:a0:00:76:93:af:02:2a:6b:5c:14:47:36:06:75:a3:3a:27:
2f:5e:db:54:ee:25:ce:ca:b6:c8:12:6b:a1:39:9d:f7:d8:31:
c1:e2:62:68:93:d7:22:1d:79:db:d7:a0:ad:49:23:3b:e5:c2:
34:3c:a6:c5:c9:63:d3:d9:34:76:b5:df:76:c7:ff:3d:62:63:
12:7d:7a:40:2e:74:e0:65:b7:10:d3:a4:06:98:0b:56:a1:28:
9c:f3:9c:b5:3c:28:c4:54:75:5c:27:83:53:51:a0:f6:c4:6c:
59:1f:9f:8b:74:57:be:d9:1f:ce:1e:56:02:9c:db:4f:ca:b5:
80:9f:4a:d1:68:90:f4:a8:e3:af:85:46:19:ee:96:9f:b8:c2:
dd:5e:93:68:31:b7:89:7b:9b:12:ec:cf:29:78:84:9a:a3:76:
ec:35:bd:63:0b:67:2a:f0:9e:13:27:88:03:93:eb:59:a3:8e:
a9:7a:0d:f3:d2:5a:2e:1a:42:d6:20:98:25:f0:f5:93:8a:6d:
89:3e:fb:d4:b5:bf:b8:bb:84:4d:4b:6a:79:bb:fa:bd:3f:55:
f5:7f:19:44:a7:03:ee:3b:d9:cb:c9:92:47:eb:7d:b5:dd:12:
bb:54:e0:52:45:4a:32:33:d2:e8:75:6b:98:dc:c8:88:26:44:
ea:47:4d:d9
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun Apr 20 12:11:36 2025 by rpki-client