Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/__R8APRyre2YsTuuf9ss8x-YF-w.roa
File: __R8APRyre2YsTuuf9ss8x-YF-w.roa (raw, json)
Hash identifier: HkTfioFJY80+gtfoot04wd6tqLzAkcsxIQCnrYaQzqI=
Subject key identifier: FF:F4:7C:00:F4:72:AD:ED:98:B1:3B:AE:7F:DB:2C:F3:1F:98:17:EC
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0191C8C0D662E86C6C67A48EC36A1515FCA4
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/__R8APRyre2YsTuuf9ss8x-YF-w.roa
Signing time: Fri 06 Sep 2024 19:12:46 +0000
ROA not before: Fri 06 Sep 2024 19:12:46 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:c8:c0:d6:62:e8:6c:6c:67:a4:8e:c3:6a:15:15:fc:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Sep 6 19:12:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fff47c00f472aded98b13bae7fdb2cf31f9817ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:8c:99:81:1d:ed:3e:4e:fa:0c:a5:3b:4d:03:
43:8f:e0:56:cb:98:6d:1c:07:44:2e:35:e7:e6:f9:
77:1e:ba:ff:cf:e9:63:b6:e7:fb:04:bb:16:49:6f:
1a:98:6d:df:2e:1f:dc:d7:0d:32:26:1f:84:d4:d8:
a1:96:77:2a:50:c1:c5:ed:c4:54:23:42:35:d5:e2:
0d:f6:03:5c:71:e6:a2:e8:9b:77:b7:76:6c:70:49:
00:0e:e1:b3:34:4e:fe:88:b5:5f:76:58:f7:aa:32:
7f:d6:f8:a2:3d:a3:21:3f:df:9a:43:4b:b4:ec:5f:
95:45:f5:21:48:8c:95:fa:a6:0b:3c:24:c6:fd:e1:
39:a7:bd:bf:44:3d:a4:db:87:32:61:33:ea:53:80:
2d:35:7f:a6:d4:d9:e4:71:bd:a0:5c:90:93:aa:24:
d8:d9:82:c9:b8:2a:16:5c:03:56:9f:40:a0:cf:68:
d6:17:13:80:de:b6:f4:f7:7f:27:b4:bd:3f:d6:f7:
fd:d9:df:3e:be:93:06:b1:58:00:b5:da:a0:c5:94:
9f:ca:23:68:1b:01:4b:df:e1:fd:2c:f7:63:04:db:
22:cc:33:f5:ee:b9:10:b8:97:f0:27:af:70:cc:00:
da:b6:42:bd:82:d9:e5:d8:a5:3e:ae:6e:89:b9:ad:
31:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:F4:7C:00:F4:72:AD:ED:98:B1:3B:AE:7F:DB:2C:F3:1F:98:17:EC
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/__R8APRyre2YsTuuf9ss8x-YF-w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
Signature Algorithm: sha256WithRSAEncryption
31:00:3e:b9:a3:dd:45:5d:7f:34:4d:4d:9a:a5:1f:35:60:6b:
b2:83:87:18:a3:b8:3c:18:11:72:1e:30:2f:a2:d1:87:91:5e:
bc:28:d5:a2:44:0e:ec:e7:e3:a2:20:f0:bd:d4:da:62:ea:80:
46:d2:50:ce:e1:55:53:61:1b:9d:a1:9e:e0:93:2a:76:d2:de:
15:6b:60:d4:07:ea:22:4b:59:42:2f:e8:7f:83:eb:77:6a:a9:
16:c8:47:d5:5a:d0:fe:0f:f7:73:0c:90:41:66:52:20:c5:e2:
2f:15:e7:a7:d4:aa:48:19:ad:80:f6:28:a8:cc:f0:c4:1e:aa:
91:04:b6:83:ba:c8:9a:52:7d:47:98:03:a8:d9:d4:de:76:c2:
56:61:b4:38:fb:17:8a:84:df:6b:11:34:2b:86:5e:62:ed:c5:
f2:79:45:86:93:41:4b:d1:a8:ae:78:bf:fc:07:9c:64:41:6d:
33:61:47:48:e8:41:b6:42:27:b1:26:8c:4b:93:80:9a:df:b2:
69:b7:19:08:40:30:de:fa:87:99:24:7d:c5:74:19:9f:93:33:
6f:3d:20:80:16:f2:31:86:d2:29:b4:fc:24:72:8a:a9:00:12:
d7:c6:e0:d9:29:07:c8:18:76:66:be:2d:7e:17:37:8f:0c:0c:
b5:69:c8:f4
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Apr 19 16:00:19 2025 by rpki-client