Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/f74MlejYYPNB-Bts1CdwAqOwV18.roa
File: f74MlejYYPNB-Bts1CdwAqOwV18.roa (raw, json)
Hash identifier: s5FiuT1nQAxmomUkLOx5AODl79f4K1mJuL1Gtfp0o7s=
Subject key identifier: 7F:BE:0C:95:E8:D8:60:F3:41:F8:1B:6C:D4:27:70:02:A3:B0:57:5F
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0191622F66413F4785F34C8E4D27A55DC232
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/f74MlejYYPNB-Bts1CdwAqOwV18.roa
Signing time: Sat 17 Aug 2024 21:12:39 +0000
ROA not before: Sat 17 Aug 2024 21:12:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:62:2f:66:41:3f:47:85:f3:4c:8e:4d:27:a5:5d:c2:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Aug 17 21:12:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7fbe0c95e8d860f341f81b6cd4277002a3b0575f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:09:07:2c:25:a2:6f:65:85:c7:23:a1:30:64:
0f:ef:5f:24:e0:fd:cc:e2:33:52:4e:87:aa:d5:cf:
79:2b:42:ca:57:be:44:7d:6d:fd:3c:24:d5:b4:c8:
ba:f3:d5:43:2f:94:f2:be:c9:44:21:ab:05:4d:0d:
60:d2:f7:cd:02:3a:73:23:d4:29:9b:cf:d5:66:b8:
c1:c6:cb:d3:5c:88:cf:96:1b:c3:5e:b9:4d:71:08:
b0:3d:59:9a:a5:6e:04:04:04:16:63:0f:d4:8c:64:
a3:6c:b4:c6:aa:93:74:6d:5e:fb:5a:fd:77:91:40:
1a:97:c7:40:d7:e8:cc:47:7c:85:a3:88:ba:ae:31:
32:02:7e:b6:9a:4f:74:18:19:9b:39:de:58:37:24:
32:af:a6:99:84:8f:a3:52:b9:50:61:b5:a8:61:e5:
13:27:0b:34:1c:40:d8:67:7c:4b:99:2e:27:7d:ed:
bc:5f:b6:59:76:95:11:4e:07:e5:4f:81:83:0d:1d:
4a:90:2c:c8:a5:1a:a1:fb:05:6e:7c:87:d1:b4:63:
f8:c0:4a:16:57:a7:18:25:22:88:b1:df:76:70:5c:
ab:a6:5d:74:5a:7e:cb:b9:e4:a5:6c:4c:23:61:5a:
7f:76:cf:e6:a6:ad:da:4d:24:f9:05:ec:a4:8a:5d:
c1:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:BE:0C:95:E8:D8:60:F3:41:F8:1B:6C:D4:27:70:02:A3:B0:57:5F
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/f74MlejYYPNB-Bts1CdwAqOwV18.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
Signature Algorithm: sha256WithRSAEncryption
64:8a:e6:3b:7c:77:d5:40:f3:16:fe:cc:17:6a:c8:ce:5d:d6:
e7:0e:72:36:97:3e:48:af:02:55:f4:de:03:89:90:14:37:46:
a6:49:ff:15:5f:d3:ff:f0:0e:a4:49:02:bf:57:b8:36:3f:fb:
ed:e5:00:53:83:77:c1:4c:53:8f:07:f8:0d:fe:76:d9:c7:52:
3f:b8:ef:d5:a6:cf:87:97:cd:bc:ea:7e:a9:ec:b8:ec:7c:2d:
6e:0f:be:b7:82:93:45:e6:86:93:74:4f:28:33:1d:00:36:fe:
4e:a4:10:8a:69:0d:78:ee:13:bf:a8:c4:ec:37:f5:25:3a:aa:
22:b6:50:a9:34:33:19:68:e5:ee:46:a3:ff:c0:51:11:32:89:
a9:0e:77:60:64:f3:00:e0:75:89:f6:3b:0b:cc:56:9d:55:30:
65:f9:21:ce:a0:fe:87:e6:72:99:35:11:b7:5b:34:be:b2:be:
5e:da:d0:24:ae:f1:5d:3d:02:6b:77:6f:ae:b0:dc:8d:b9:bf:
24:2b:8d:ff:dc:4f:80:1e:73:d1:11:2e:51:c7:9b:02:47:0d:
cf:38:01:f0:1b:f2:28:5b:53:42:4f:45:92:5c:1f:9b:78:6e:
f3:35:e5:d3:bc:ce:d9:9b:c6:8a:a8:fd:73:4e:f9:04:36:cf:
72:09:d3:c4
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun Jun 8 04:04:20 2025 by rpki-client