Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UxVlm6t3QDLJG2n__SdazqXXSLw.roa
File: UxVlm6t3QDLJG2n__SdazqXXSLw.roa (raw, json)
Hash identifier: wS9jJQL427CIg2dqorKrQThsR2zbPb87P/Phw/0R0cA=
Subject key identifier: 53:15:65:9B:AB:77:40:32:C9:1B:69:FF:FD:27:5A:CE:A5:D7:48:BC
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0191A2FCE35CAAA6E06E620CA0F7C03D850F
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UxVlm6t3QDLJG2n__SdazqXXSLw.roa
Signing time: Fri 30 Aug 2024 11:12:47 +0000
ROA not before: Fri 30 Aug 2024 11:12:47 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:a2:fc:e3:5c:aa:a6:e0:6e:62:0c:a0:f7:c0:3d:85:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Aug 30 11:12:47 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5315659bab774032c91b69fffd275acea5d748bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:6e:75:7d:c8:de:97:0e:d9:cc:16:29:8a:3f:
31:43:5c:5b:11:59:02:79:61:31:4c:cc:63:c3:e4:
84:ca:09:70:cd:d6:6e:48:ce:09:3e:8e:c2:5b:5e:
f2:52:47:26:b9:08:1f:22:f9:35:8f:c9:53:60:c1:
30:68:98:90:8a:34:1f:19:00:54:f0:9e:79:ba:09:
6e:d6:a8:bc:16:89:90:c7:63:4c:cd:e6:5a:af:4a:
9e:99:ff:20:ad:4b:da:72:d0:fc:15:98:d4:17:6a:
1d:9a:59:aa:f1:aa:58:8f:75:1e:47:a9:39:8d:e9:
b3:1d:39:2a:7e:e6:9d:2f:3e:81:ed:2b:d9:f0:e4:
47:d4:f4:69:f5:95:f1:c7:3b:55:41:4a:e3:22:31:
18:06:a5:e3:8a:f9:c3:b0:39:de:59:18:fb:ba:94:
83:96:ba:90:d5:11:b8:01:f2:7d:a5:27:d9:f4:94:
98:ba:5a:a3:30:ef:33:56:26:88:cf:f0:93:05:ce:
4e:a9:46:dc:57:91:92:44:5d:6b:83:f7:ad:2c:b8:
71:63:3b:1d:5a:88:93:f2:b6:f8:34:1f:0a:d5:ff:
f5:d4:bd:c9:18:9c:2e:d8:d0:83:db:ae:69:b2:48:
1d:9b:42:4d:8a:bd:7a:c7:b6:c7:fa:06:0f:62:60:
5b:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:15:65:9B:AB:77:40:32:C9:1B:69:FF:FD:27:5A:CE:A5:D7:48:BC
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UxVlm6t3QDLJG2n__SdazqXXSLw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
Signature Algorithm: sha256WithRSAEncryption
1c:55:1d:8c:9e:03:44:42:1d:5e:5f:2a:c1:06:2a:15:22:3d:
0a:4f:1b:1b:8a:b4:da:85:f3:99:9c:86:2c:bc:58:34:04:ea:
44:75:db:89:68:29:9c:8d:b7:9c:34:6a:94:55:7b:c8:3b:75:
96:9c:bd:bb:bd:b7:dc:78:c2:4d:fc:f8:71:f6:2c:8c:d0:6c:
05:73:79:2d:70:1e:17:1b:55:bb:b8:12:40:5e:d4:ea:52:c4:
28:26:f0:ad:36:fa:23:6d:b8:39:0d:26:64:28:0d:19:8a:24:
f2:5e:f9:28:6a:4c:92:5c:e5:84:ca:55:ee:68:f1:ce:54:ea:
ce:45:ae:fd:06:28:63:23:90:e2:02:09:4b:31:25:33:57:5c:
77:c1:ae:28:74:a7:49:f8:b6:d1:83:a5:b4:5e:14:ab:8d:69:
3a:07:60:53:be:41:86:2c:ba:70:3c:21:b6:ab:82:9d:56:17:
28:3b:36:2e:b4:0a:31:c2:38:aa:2b:b2:0d:a3:ff:27:04:88:
4b:f0:b2:87:dd:f9:0a:2d:06:7c:e8:07:08:fe:71:58:9a:10:
05:45:82:d0:2f:6f:6f:cf:06:45:87:a6:ad:c9:2a:4b:2f:d3:
f8:36:a3:9a:42:f1:c2:19:e0:00:68:28:2a:02:1c:50:5b:25:
e6:c3:b5:fb
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun Apr 20 04:23:11 2025 by rpki-client