Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/VCTNi6rTZ2kQ7wFys7ChNVAAd8E.roa
File: VCTNi6rTZ2kQ7wFys7ChNVAAd8E.roa (raw, json)
Hash identifier: HW6y87kVkpt2UPpF9eEekFGnfO5hdF5CfnZj0iIwBtY=
Subject key identifier: 54:24:CD:8B:AA:D3:67:69:10:EF:01:72:B3:B0:A1:35:50:00:77:C1
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 019381777733439B55CDF4372A78881458BE
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/VCTNi6rTZ2kQ7wFys7ChNVAAd8E.roa
Signing time: Sun 01 Dec 2024 09:05:10 +0000
ROA not before: Sun 01 Dec 2024 09:05:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:193:8176:aaa3/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:81:77:77:33:43:9b:55:cd:f4:37:2a:78:88:14:58:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Dec 1 09:05:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5424cd8baad3676910ef0172b3b0a135500077c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:0c:0d:5b:4e:37:54:db:25:39:84:71:ea:ce:
01:cd:04:9c:de:38:4d:7e:88:4a:c4:68:8f:b6:b2:
92:b9:7d:9b:99:aa:bf:cc:fc:39:6d:d8:08:ff:bd:
49:aa:e1:be:c7:1a:bf:bd:69:d9:9c:0e:3b:61:a5:
b7:b8:4e:1a:bf:66:bc:fd:89:a4:99:fb:a7:23:b6:
51:2e:c3:43:c7:55:70:7a:5c:63:bb:96:bf:d4:2e:
cc:f5:85:80:1a:92:a2:3e:b6:39:ee:44:7b:bf:a6:
e1:bf:fc:11:bc:b6:52:a6:40:64:58:1d:4b:41:38:
01:ee:e2:e4:b8:fd:66:89:5a:fb:9f:95:9f:f7:59:
55:cb:f6:26:72:10:df:d6:00:43:78:c4:14:83:32:
a6:d6:8f:8d:94:a5:53:ff:5b:c0:ba:df:2a:02:06:
97:9f:1a:79:3c:b4:43:40:8a:b7:bc:dd:30:42:63:
c3:25:f8:bc:a4:7b:5a:be:9f:12:51:75:73:4c:53:
57:00:93:5d:24:86:d0:23:b7:b9:b7:29:5c:0e:f5:
c6:f0:f5:ae:cb:3a:bf:9e:54:85:c7:df:c1:18:7f:
62:d1:c6:43:50:ae:d9:4c:46:1c:05:44:b3:ce:7d:
1b:6f:3a:1a:f5:cd:26:65:2d:51:e0:bc:ec:ad:d3:
d2:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:24:CD:8B:AA:D3:67:69:10:EF:01:72:B3:B0:A1:35:50:00:77:C1
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/VCTNi6rTZ2kQ7wFys7ChNVAAd8E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:193:8176:aaa3/128
Signature Algorithm: sha256WithRSAEncryption
4a:80:50:09:66:1d:20:03:0c:75:25:05:1f:95:17:6b:9b:6b:
92:2d:c3:ab:61:61:91:cb:96:2d:49:d6:45:c8:1a:62:74:9e:
f2:94:fa:19:5b:b0:07:5c:47:95:31:ff:2b:7c:8f:39:ef:8f:
7e:66:bd:13:ad:13:3c:b6:f7:f7:82:37:dc:1e:3a:d3:5f:35:
fc:a4:16:1a:33:70:ce:f1:6c:19:cf:93:4d:14:a8:43:e6:70:
d8:d2:c9:ab:c3:de:f6:2b:41:8d:2c:04:4c:83:e7:1e:38:74:
8c:20:8f:e1:6e:0f:56:4a:c6:da:64:90:38:55:b3:c1:4e:4f:
9b:83:de:2f:8d:6e:3a:af:88:e0:21:2d:5b:26:8e:99:0c:cf:
ad:b8:29:e7:be:52:56:96:ad:e2:8f:3f:c5:f3:0a:b8:27:51:
a8:7b:11:da:97:b8:72:39:de:65:23:f5:05:8b:02:c9:4f:88:
4e:62:dc:e7:37:9f:f9:ec:ba:ee:2d:a1:54:c9:d0:0c:32:9e:
55:09:13:22:b3:d8:d8:03:47:e0:a4:78:61:cd:fc:eb:21:6c:
42:16:7e:1e:39:36:01:5e:5e:a2:66:6b:19:10:74:95:03:b9:
b1:89:da:6a:b4:6f:ff:71:da:fb:36:db:2f:06:32:1e:95:3d:
af:33:be:b6
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Apr 19 12:19:58 2025 by rpki-client