Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UMVDrPssssTWJ_NNU10wSmoOK_4.roa
File: UMVDrPssssTWJ_NNU10wSmoOK_4.roa (raw, json)
Hash identifier: z7AXnplV1BZKKDIL/WZiRd7bWbkJXqSct+YyYBXEB5I=
Subject key identifier: 50:C5:43:AC:FB:2C:B2:C4:D6:27:F3:4D:53:5D:30:4A:6A:0E:2B:FE
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0191D3E95DCAD8E7A61378E40E57EFDCF734
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UMVDrPssssTWJ_NNU10wSmoOK_4.roa
Signing time: Sun 08 Sep 2024 23:12:52 +0000
ROA not before: Sun 08 Sep 2024 23:12:52 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:d3:e9:5d:ca:d8:e7:a6:13:78:e4:0e:57:ef:dc:f7:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Sep 8 23:12:52 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=50c543acfb2cb2c4d627f34d535d304a6a0e2bfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:6d:b8:2b:1f:1f:d2:98:86:db:c6:35:dd:25:
01:16:d7:f9:e0:4b:a0:b5:88:41:5f:2e:fc:d5:1a:
2f:64:1e:5a:1d:25:fd:cb:1e:4a:da:70:6b:2c:22:
00:31:c4:08:e5:6f:77:42:e9:b2:7d:99:d5:da:23:
d2:5c:b3:ff:23:ef:88:1e:17:33:f2:d9:31:0d:31:
17:91:85:73:96:99:e2:ac:12:ac:85:9f:88:0f:13:
51:89:d1:ca:cb:98:90:df:fc:3a:5a:b9:bc:87:71:
6b:53:cf:a9:74:ad:b6:a4:27:da:47:90:85:a6:b0:
a5:ce:48:e2:df:36:fe:71:72:a2:1c:9f:20:aa:fa:
fd:b2:20:73:86:a6:73:87:64:44:99:fc:9f:87:9a:
48:5b:3b:9d:2d:4e:ed:a8:9c:c9:6d:f4:95:fc:5b:
ff:9f:58:fd:53:f8:c9:1d:ec:17:40:c8:e1:3f:25:
dc:a0:bc:87:21:d9:dc:5c:86:ae:a3:da:dc:b1:d1:
b4:4a:43:1f:f7:8a:ec:d6:76:79:3c:20:56:5b:83:
8f:2b:e8:5d:91:22:5c:20:a9:e5:59:57:85:a1:54:
57:13:53:a1:7d:9b:5d:a9:c0:3a:cf:d9:84:8c:16:
d0:9b:48:28:5f:92:65:3d:7b:9a:3f:fd:4f:1d:d7:
58:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:C5:43:AC:FB:2C:B2:C4:D6:27:F3:4D:53:5D:30:4A:6A:0E:2B:FE
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UMVDrPssssTWJ_NNU10wSmoOK_4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
Signature Algorithm: sha256WithRSAEncryption
54:82:44:73:ab:82:c7:f9:94:4d:cb:88:46:d5:09:31:fb:5d:
a3:9f:b7:37:5d:7f:2b:de:e6:9d:25:29:de:a1:12:f8:8b:7f:
8a:a8:de:e9:08:68:74:e2:af:31:0b:cc:83:a0:10:f3:87:11:
21:75:0c:d4:de:8c:10:c8:ef:3f:18:da:d7:b2:04:c4:ab:74:
e3:53:a4:33:c5:d0:8b:14:be:d6:45:6b:b4:82:b3:7d:5a:bc:
2f:36:b3:f5:3d:49:c3:77:f4:95:b4:65:d7:f1:cc:42:f3:6c:
8c:3f:83:70:25:29:27:09:9c:e8:a6:ad:2f:f9:db:b2:89:50:
72:6a:1d:d1:0d:b8:4d:1f:ef:6b:53:d5:8a:b0:75:b7:bf:66:
9a:ad:08:70:d4:2a:c9:6f:ae:ce:0c:0a:cd:33:ab:18:bd:aa:
df:7d:47:23:c3:9f:20:53:68:9c:4c:0a:fc:b6:8e:ad:bc:f9:
63:39:d2:ec:a8:17:1f:56:fb:5f:c7:ed:11:82:46:cc:30:67:
12:8e:98:74:f8:03:96:e5:62:c0:68:59:d0:a9:b6:57:ed:1e:
ff:b4:c3:3e:97:c4:02:1e:b2:b3:76:f8:d1:7f:90:d2:4b:6f:
db:7e:0c:62:ba:36:ea:4c:6b:b6:b0:3c:bc:fa:08:59:8d:64:
85:21:76:17
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Apr 19 15:16:01 2025 by rpki-client