Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/aTlmRf0wHuXoMbNWG3padVfHgWI.roa
File: aTlmRf0wHuXoMbNWG3padVfHgWI.roa (raw, json)
Hash identifier: mmjCEjowLzqSQ498HSJV4Cdgd0dhxVrHrqT3SSRZDmE=
Subject key identifier: 69:39:66:45:FD:30:1E:E5:E8:31:B3:56:1B:7A:5A:75:57:C7:81:62
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0191B6B2E32FE27730AAB1CA6658D68DC5A5
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/aTlmRf0wHuXoMbNWG3padVfHgWI.roa
Signing time: Tue 03 Sep 2024 07:04:22 +0000
ROA not before: Tue 03 Sep 2024 07:04:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
2001:67c:64:ffff:0:191:b6b2:bd7e/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:b6:b2:e3:2f:e2:77:30:aa:b1:ca:66:58:d6:8d:c5:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Sep 3 07:04:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=69396645fd301ee5e831b3561b7a5a7557c78162
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:25:14:14:4d:4b:24:62:2f:2b:d2:9c:84:93:
00:28:47:0a:84:21:79:03:b9:00:8d:e0:0e:9f:ef:
9d:e3:93:0f:1b:6d:cd:a3:71:48:15:8d:21:ba:80:
4f:08:62:80:4a:9f:11:6a:17:a3:9b:b9:00:cf:ad:
a5:b0:e9:5e:e6:ec:27:a9:9b:1b:d2:7b:72:97:98:
b7:00:90:23:7b:f2:29:bd:e9:e8:9f:29:93:a9:33:
58:54:14:4a:56:9b:ba:48:79:8b:5f:44:75:ae:c6:
33:a0:96:31:7e:f3:fa:d0:64:88:36:3c:95:52:2d:
90:7a:8f:eb:4c:fe:4e:0e:ed:06:52:c7:6f:5b:c1:
76:ee:20:b2:02:42:57:28:8b:1b:6b:7d:4f:6d:4e:
b4:84:bc:40:16:5c:40:33:8c:3e:a6:c6:ec:21:9f:
5a:97:fa:4c:7e:51:01:0f:82:25:82:fa:e8:ec:44:
e8:de:20:b0:7a:3b:43:98:eb:8e:f3:0c:a9:cd:c5:
69:37:52:5e:f1:6e:2e:06:ae:bb:26:8c:dd:c7:7b:
b6:7d:b2:24:0f:04:b2:c1:66:50:97:ab:05:ea:a5:
f9:87:8b:5e:f4:b8:95:31:47:66:e7:fb:c9:31:1c:
06:c3:37:e5:83:61:2a:37:6b:e7:f4:f7:5e:30:d4:
b4:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:39:66:45:FD:30:1E:E5:E8:31:B3:56:1B:7A:5A:75:57:C7:81:62
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/aTlmRf0wHuXoMbNWG3padVfHgWI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
2001:67c:64:ffff:0:191:b6b2:bd7e/128
Signature Algorithm: sha256WithRSAEncryption
49:4c:71:86:fd:85:b6:2d:fe:e9:47:98:83:95:f6:cc:55:25:
43:c3:f6:a4:a8:47:c7:87:d4:f1:a9:b8:5f:e7:ce:9f:1f:6d:
7e:ce:ba:c2:d9:63:aa:50:90:23:74:4c:59:9e:d8:91:86:9a:
3c:32:a4:9a:d6:6f:49:f7:f9:35:59:d2:42:78:49:18:cb:3b:
f3:28:0b:7d:76:e5:f6:fb:bf:44:fe:9c:6d:ed:56:7e:99:8f:
75:8d:c5:fd:70:49:5c:7c:ff:ad:e4:75:0e:11:ab:b0:d1:f9:
68:6a:60:01:d5:fe:90:03:e4:9c:60:81:d7:f6:27:4e:aa:c3:
1e:e8:21:42:2b:af:34:0e:b4:d2:11:ec:aa:c4:88:47:ad:51:
33:21:03:2a:62:5e:f8:8d:5d:36:93:f1:0d:1f:f5:48:2d:44:
2f:45:2f:c1:7b:a8:f2:e2:03:19:69:a9:07:b2:b2:eb:47:c0:
86:dc:87:e6:7d:fb:30:b0:f0:98:6d:0d:79:5c:48:13:56:72:
2c:aa:08:6c:92:bf:d0:91:4b:2c:a1:26:93:0e:60:5c:f5:0a:
72:48:81:44:fc:eb:9a:a9:a8:95:7d:1e:16:c1:16:ee:ba:f6:
6a:fa:51:af:31:51:80:04:1c:f8:42:ec:76:56:ea:b2:dd:6c:
9b:e6:33:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 12:26:40 2025 by rpki-client