Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/Tuo-tPPyrAZUS4IFY9khhaDBXQI.roa
File: Tuo-tPPyrAZUS4IFY9khhaDBXQI.roa (raw, json)
Hash identifier: KTqZUt2fY2VdMDxxbXYNbvWhn5fZaQGY7EJTCprNjlA=
Subject key identifier: 4E:EA:3E:B4:F3:F2:AC:06:54:4B:82:05:63:D9:21:85:A0:C1:5D:02
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 019352427F80C5A9ECCA53AF8515A4B79109
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/Tuo-tPPyrAZUS4IFY9khhaDBXQI.roa
Signing time: Fri 22 Nov 2024 05:05:09 +0000
ROA not before: Fri 22 Nov 2024 05:05:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:193:5241:d0aa/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:52:42:7f:80:c5:a9:ec:ca:53:af:85:15:a4:b7:91:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Nov 22 05:05:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4eea3eb4f3f2ac06544b820563d92185a0c15d02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:99:d0:3a:92:13:4e:7a:63:03:86:39:aa:f9:
a8:3c:77:7e:df:15:11:c6:d3:2d:dc:ce:91:0f:a2:
d4:f7:aa:5d:f6:60:05:b9:d9:26:ff:e5:9f:d1:ff:
1a:27:0b:a4:06:ef:aa:15:0c:15:6a:ed:79:e6:d7:
ef:bd:fe:a7:41:6a:31:0b:ba:48:53:f8:76:f2:51:
40:5e:75:5b:dc:c0:00:3b:af:4d:f1:6d:fa:fa:4b:
3e:cc:09:4e:88:48:44:55:76:3f:a8:43:5a:39:17:
5e:b1:e1:44:c1:2b:da:98:c4:50:7e:84:fa:5d:67:
49:cb:d9:16:c2:a6:47:85:c2:09:4c:e3:6a:cf:8e:
a0:61:47:91:97:53:92:12:12:4d:9f:9b:26:56:32:
02:a9:a0:d1:0b:da:fc:25:46:b9:35:92:5b:81:17:
81:8b:90:54:c6:8f:e4:86:af:49:25:72:83:92:e3:
7b:a9:dd:b7:f6:b0:71:57:ea:a8:68:f3:bf:5f:4b:
15:8b:b3:96:e0:a3:7f:4f:8b:5d:74:81:e8:f4:47:
2e:fd:d4:7d:89:78:44:47:15:13:ec:e1:b8:81:08:
90:44:77:08:70:91:b1:d3:3f:6f:93:9c:00:85:ac:
80:51:8c:0a:59:f3:02:cf:a4:9a:ff:56:08:d3:75:
3b:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:EA:3E:B4:F3:F2:AC:06:54:4B:82:05:63:D9:21:85:A0:C1:5D:02
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/Tuo-tPPyrAZUS4IFY9khhaDBXQI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:193:5241:d0aa/128
Signature Algorithm: sha256WithRSAEncryption
69:13:96:f5:35:04:c0:ad:57:88:b7:f0:fc:c4:5f:88:c1:33:
48:fc:27:f2:70:a9:e3:f7:f4:08:6c:9c:3f:ba:35:86:24:80:
90:20:61:1e:ee:15:51:84:cf:3a:30:92:47:e3:73:33:55:b2:
84:eb:00:93:72:cd:b3:93:ef:9e:db:80:97:53:8e:80:20:b9:
d4:05:13:6b:87:15:43:96:cd:ae:11:a9:b4:dc:a4:d5:58:c7:
11:03:29:99:32:62:d1:33:84:cb:2e:d1:65:db:33:71:43:8c:
ad:f4:08:0b:fe:5a:bd:26:a4:d6:81:cd:63:5e:6f:b6:4a:a4:
1c:cd:6f:81:42:57:7a:7a:a5:85:b4:a5:73:72:7a:c9:14:2a:
dc:66:e4:18:e9:13:da:10:f8:48:d7:4d:5f:52:49:27:c4:2e:
ed:d3:fc:8c:33:05:6e:1d:bc:0d:99:57:9d:da:2e:61:fd:ec:
15:7d:16:e5:b6:90:9b:68:09:14:19:8e:df:35:e8:6f:58:5d:
97:78:47:52:39:12:e3:2a:a8:13:ef:8c:96:87:1e:af:53:ee:
94:01:c6:65:43:c8:71:86:bf:71:a9:14:5d:28:85:6f:98:83:
38:ea:be:61:7d:3f:23:33:36:5f:aa:8b:0c:99:52:a8:6d:27:
ed:a4:a4:a2
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun Jun 8 05:11:25 2025 by rpki-client