Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/VtjYJ_zJCjZh4t-RCwGvWIFPNQo.roa
File: VtjYJ_zJCjZh4t-RCwGvWIFPNQo.roa (raw, json)
Hash identifier: 6Ogm0TUpieeMiyjBpmGY3099z+D6BmkM2g6UYsuUwDA=
Subject key identifier: 56:D8:D8:27:FC:C9:0A:36:61:E2:DF:91:0B:01:AF:58:81:4F:35:0A
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0191A032643C564E1C8F7A6A14B9495EB821
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/VtjYJ_zJCjZh4t-RCwGvWIFPNQo.roa
Signing time: Thu 29 Aug 2024 22:12:22 +0000
ROA not before: Thu 29 Aug 2024 22:12:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:a0:32:64:3c:56:4e:1c:8f:7a:6a:14:b9:49:5e:b8:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Aug 29 22:12:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=56d8d827fcc90a3661e2df910b01af58814f350a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:36:27:32:41:dd:88:3d:20:ba:70:5f:25:80:
f4:33:85:af:7b:21:a8:7d:52:59:80:e7:e9:4b:31:
62:c3:83:ac:46:c1:be:85:fe:c3:92:0d:70:29:3d:
0e:87:46:24:ad:77:f4:eb:bb:7b:cc:b1:f3:33:ae:
33:b6:4c:cf:a7:92:9f:12:e8:68:dc:0a:17:df:9e:
f4:99:79:77:ca:a6:97:ba:70:e1:6b:45:ba:01:95:
50:f6:da:64:99:2a:5c:c8:95:5b:a0:c9:33:c2:2e:
75:e9:82:70:18:4a:84:7c:92:ba:18:8d:46:98:19:
24:94:69:b6:e9:48:d0:81:83:5c:2f:3a:73:49:f0:
e7:03:18:a6:89:8e:56:f5:29:14:92:b5:a8:42:ab:
a2:00:44:aa:e9:52:fa:ad:96:04:10:de:8a:2c:79:
6e:b2:7c:fd:59:05:98:cd:94:40:ac:aa:c5:fe:44:
e6:c4:79:f7:2f:09:85:16:54:48:a1:4a:31:34:44:
3e:65:7b:88:17:36:82:8c:f0:12:6f:be:98:45:4e:
dd:b0:6d:3d:46:5f:b1:30:90:2c:9f:05:c4:07:31:
47:e7:e1:47:d0:34:9a:46:8b:87:9a:4f:4c:53:7b:
0c:61:43:da:dc:28:30:31:56:45:2d:94:c6:49:bf:
0c:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:D8:D8:27:FC:C9:0A:36:61:E2:DF:91:0B:01:AF:58:81:4F:35:0A
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/VtjYJ_zJCjZh4t-RCwGvWIFPNQo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
Signature Algorithm: sha256WithRSAEncryption
56:ad:39:f1:8a:39:0d:aa:1d:37:47:ae:d4:03:ed:b4:37:d9:
87:98:de:01:56:a8:26:e8:8b:79:56:86:3c:32:8e:f9:3e:fb:
30:f3:bc:e5:7f:df:91:ff:f9:83:52:9c:1b:ca:58:30:03:b1:
19:f5:29:b3:39:96:ee:1c:55:46:b1:67:0d:c1:c7:3a:a8:85:
a1:d7:70:b0:4a:06:42:a8:ea:c4:81:66:5d:b2:20:1b:64:47:
8a:91:2c:87:28:dd:ef:93:6e:60:f4:3e:d8:2a:e4:72:c7:75:
83:ec:49:1c:d5:bd:51:5e:15:b3:88:08:b0:af:77:fc:e6:3b:
27:ff:49:6b:8e:58:d1:00:74:f3:b8:65:cd:a0:34:96:95:52:
dc:71:7c:23:7b:61:79:8d:85:b1:43:19:fc:51:46:9a:64:96:
06:48:2e:98:f8:19:30:6f:a2:f3:c8:77:c0:6b:bc:a0:0b:f4:
20:13:a4:c7:19:a7:9d:9b:00:35:93:07:ea:25:70:10:03:2f:
fa:58:1e:15:4c:65:ab:91:21:bf:e6:d6:7c:c1:81:54:08:89:
4d:12:27:b1:b3:7f:a8:eb:f3:2b:e2:5a:72:63:07:99:27:94:
47:80:b0:0d:8c:64:a8:e8:b2:cd:1f:6a:21:ad:93:7b:ad:fe:
6d:b7:fd:32
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Apr 19 12:07:24 2025 by rpki-client