Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/fIsfYO7f7Zso297yo0vw_IrJbk0.roa
File: fIsfYO7f7Zso297yo0vw_IrJbk0.roa (raw, json)
Hash identifier: CzKXnpxsJmKZ+ojjQGdxeIaWMcdlivm9cs5nRBCxS5A=
Subject key identifier: 7C:8B:1F:60:EE:DF:ED:9B:28:DB:DE:F2:A3:4B:F0:FC:8A:C9:6E:4D
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01917BEF09BCBF9E8E57F34F21B07C071449
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/fIsfYO7f7Zso297yo0vw_IrJbk0.roa
Signing time: Thu 22 Aug 2024 21:12:28 +0000
ROA not before: Thu 22 Aug 2024 21:12:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:7b:ef:09:bc:bf:9e:8e:57:f3:4f:21:b0:7c:07:14:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Aug 22 21:12:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7c8b1f60eedfed9b28dbdef2a34bf0fc8ac96e4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:e1:b5:1a:8c:61:7c:22:ca:20:c3:de:9c:01:
21:18:ea:78:28:40:56:a1:99:e4:56:f7:7c:21:66:
c7:fc:3d:09:c0:08:d3:23:f1:3c:53:ce:a2:ce:0c:
c6:27:1d:78:7d:51:d0:79:d7:cc:98:1a:f2:f3:ff:
18:87:84:6b:78:2d:a7:c6:b7:e5:a3:a0:57:e9:04:
8b:20:7f:af:16:53:1b:e3:36:be:8a:5a:95:df:89:
9c:d2:c5:33:a8:21:ad:bf:3a:60:b0:c9:c1:5a:3f:
7c:36:40:5e:fe:81:02:da:c7:da:77:90:5f:a4:8c:
dd:66:b0:f8:70:d8:e4:ec:8f:ac:31:56:f0:a1:d7:
5b:cc:7e:82:1e:a7:e9:d7:86:ab:b3:84:46:f4:ee:
f1:a7:e1:39:0a:66:72:31:9f:e4:1f:98:b8:a2:29:
bd:0f:50:00:0f:ab:6f:c2:2d:b7:97:93:24:b8:d2:
44:73:80:aa:42:0f:9b:95:33:5b:88:3d:8b:8a:99:
9a:bf:4e:cf:ff:66:f8:42:d6:a8:17:48:30:f4:5c:
a7:27:12:1c:3f:34:3b:94:1b:0a:3d:9c:de:98:c8:
c6:70:76:25:e3:ef:ca:d7:d7:4a:d6:f0:ac:ff:bb:
4d:f4:ae:f3:9d:ad:dd:54:80:32:8a:f2:35:02:0e:
ba:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:8B:1F:60:EE:DF:ED:9B:28:DB:DE:F2:A3:4B:F0:FC:8A:C9:6E:4D
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/fIsfYO7f7Zso297yo0vw_IrJbk0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
Signature Algorithm: sha256WithRSAEncryption
5f:24:e4:cd:2f:f5:bb:ba:bb:cf:28:0a:d8:12:0e:f8:65:2e:
ff:28:43:f5:2e:aa:56:03:44:2b:01:81:6b:7a:69:dd:7b:03:
86:29:6c:7c:45:2e:0c:a3:8a:74:1f:d0:51:20:ef:ec:b8:9e:
81:93:e9:cc:01:65:c8:88:19:3a:97:d3:8f:fa:ce:7e:36:22:
b2:94:94:08:ca:13:88:7c:7b:d2:94:31:7f:72:de:12:c4:e2:
7f:a7:55:c6:3f:c0:bd:3f:db:57:16:83:f5:ef:81:0c:3f:e0:
fa:7c:29:38:34:9a:18:78:9a:7a:5a:80:4f:1a:f4:28:e1:63:
3a:8c:eb:0d:32:f2:49:97:45:23:3c:4d:6c:f5:ab:ba:e4:69:
8b:1c:c6:60:e7:3c:92:f9:86:f2:ed:06:b0:01:c3:d2:a7:2f:
60:68:3e:56:2e:fa:ff:16:57:ef:21:c6:b8:38:2f:fb:bc:14:
d5:ab:4e:60:35:a9:b8:5d:2f:29:0f:1e:1c:1a:8b:f9:56:fe:
69:4d:15:ab:bc:4a:d4:76:28:b7:37:ab:12:9e:27:fd:b6:8e:
09:15:d6:24:38:0f:7a:08:5e:53:15:be:4a:58:07:78:1e:6e:
e0:53:80:e3:55:33:30:0c:3c:91:cd:13:a0:a2:53:8b:39:a5:
f0:59:aa:ea
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Apr 19 17:13:54 2025 by rpki-client