Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/VRPMwo6sFC-oMa6aFvg2mnNhq-U.roa
File: VRPMwo6sFC-oMa6aFvg2mnNhq-U.roa (raw, json)
Hash identifier: nLtakvB9f47+TO2qzssiAdVyxP+1TTIp/jbuBh+FRyA=
Subject key identifier: 55:13:CC:C2:8E:AC:14:2F:A8:31:AE:9A:16:F8:36:9A:73:61:AB:E5
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01934D5311E81224A5D16DC3BAA88B076CE8
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/VRPMwo6sFC-oMa6aFvg2mnNhq-U.roa
Signing time: Thu 21 Nov 2024 06:05:09 +0000
ROA not before: Thu 21 Nov 2024 06:05:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:193:4d52:4656/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:4d:53:11:e8:12:24:a5:d1:6d:c3:ba:a8:8b:07:6c:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Nov 21 06:05:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5513ccc28eac142fa831ae9a16f8369a7361abe5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:bf:c6:bb:31:8a:28:3e:42:e9:e2:6a:df:f4:
68:21:df:28:80:80:f7:f1:92:fd:76:a6:8f:d9:c7:
a2:52:25:42:23:0d:5f:d6:12:21:90:2b:92:70:61:
6c:05:ad:ec:4a:c9:91:0c:81:4b:70:cf:b6:36:8b:
08:1e:9d:9e:aa:80:a1:98:ec:17:ef:da:86:c2:3a:
63:b0:63:09:21:24:56:9e:59:b7:d0:97:89:a8:0b:
70:e9:4c:ea:9e:8d:02:a7:d5:f9:26:b4:de:75:c8:
db:3f:68:74:ae:d6:d4:ba:72:9e:76:c8:cb:37:2e:
92:8b:bb:37:a6:37:db:95:00:4b:ea:e2:e3:e9:0b:
63:c3:87:3f:cd:54:73:ff:04:28:ed:61:28:b8:e7:
8d:6a:d3:5e:c2:2e:01:aa:76:31:19:63:1a:0d:8f:
e7:a0:e3:9b:eb:61:cf:97:31:60:a0:25:43:52:49:
20:21:b3:67:da:4b:40:48:ca:bb:5d:7f:40:5e:97:
55:3a:8a:d1:d5:53:50:cf:35:66:ba:0b:11:72:db:
39:ef:1b:fb:3c:86:ba:66:7a:7d:f6:63:a7:74:67:
4d:6c:2c:55:25:d0:11:ac:10:a5:aa:65:7e:b9:4d:
26:d2:68:78:e8:e8:37:38:6b:07:fd:db:85:83:d7:
25:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:13:CC:C2:8E:AC:14:2F:A8:31:AE:9A:16:F8:36:9A:73:61:AB:E5
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/VRPMwo6sFC-oMa6aFvg2mnNhq-U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:193:4d52:4656/128
Signature Algorithm: sha256WithRSAEncryption
22:7a:71:ab:07:8e:b5:50:f6:fc:28:db:57:dd:88:36:26:5e:
7d:7c:bd:1d:79:d0:e2:79:07:71:27:75:0d:8f:f8:03:1f:6d:
9c:fe:d6:19:ce:f5:ea:3a:9d:d3:2e:7c:19:62:f9:a4:e9:c4:
f0:a1:3d:17:9f:38:92:a0:fb:b8:6e:2d:21:50:44:11:ab:35:
20:1e:11:63:3d:99:2f:53:02:3d:8d:81:89:f8:d1:92:4a:9c:
5c:e2:95:30:e3:98:67:a1:da:5a:aa:1b:98:ce:35:c8:5a:48:
fa:f7:b1:58:60:e8:e0:be:9c:f5:ce:f1:3a:05:f8:06:ba:4b:
ea:6c:03:71:b0:59:9c:50:4d:12:e2:aa:0f:84:93:d4:ae:a6:
0f:a7:7e:18:94:d9:48:0c:d2:85:77:12:20:ee:9a:ca:8e:28:
5e:27:89:4c:59:55:63:7d:16:46:74:8e:76:0f:56:cb:2b:4e:
a9:14:5d:ca:aa:a1:8c:55:d6:86:47:4d:e9:07:74:72:cb:8b:
45:3e:e2:2c:46:6b:d0:57:ba:26:69:26:c9:0f:eb:d6:11:7f:
9b:9e:8f:db:f5:70:f7:6f:fd:2e:34:19:5c:fb:67:df:30:50:
bc:05:6f:19:f3:6c:79:6e:80:e2:dc:02:81:4d:14:0d:91:58:
43:14:c0:c5
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun Jun 8 05:05:19 2025 by rpki-client