Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/ioAB2uY2APAVSVSl_-vXLwe5uNk.roa
File: ioAB2uY2APAVSVSl_-vXLwe5uNk.roa (raw, json)
Hash identifier: E4sFAB44GcNyxm3AI94Ew3PNpRuPXeM0jf3BnMlbRhc=
Subject key identifier: 8A:80:01:DA:E6:36:00:F0:15:49:54:A5:FF:EB:D7:2F:07:B9:B8:D9
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01919BE6D7F715A7852EA7D358204A3D249C
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/ioAB2uY2APAVSVSl_-vXLwe5uNk.roa
Signing time: Thu 29 Aug 2024 02:11:22 +0000
ROA not before: Thu 29 Aug 2024 02:11:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:9b:e6:d7:f7:15:a7:85:2e:a7:d3:58:20:4a:3d:24:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Aug 29 02:11:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8a8001dae63600f0154954a5ffebd72f07b9b8d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:54:26:38:dd:49:4d:bd:0e:df:34:d5:84:c0:
9f:ae:4d:f9:9f:ca:fa:cb:ec:c5:ae:51:67:60:65:
38:c8:f0:7b:2d:50:f5:24:85:d4:01:89:d6:c5:c9:
76:28:44:4d:02:14:35:fc:22:6a:35:10:82:4a:9b:
e3:68:8d:f0:52:cd:83:17:bd:db:f3:7e:6e:22:21:
0c:36:c5:6c:5a:d7:73:cf:a1:84:4a:76:c1:f6:1a:
24:63:06:7d:f5:21:41:ef:b2:27:a1:8c:59:98:8d:
01:c0:45:64:e3:5c:5d:87:31:14:b9:c5:7b:75:12:
3e:76:cc:f8:dc:0a:c4:b9:a0:52:f4:59:1c:b3:40:
ef:7c:bf:21:56:8c:2b:b0:48:08:c0:a6:b9:b4:f9:
73:cc:ba:88:e6:9a:f8:82:9b:2a:6f:ac:b4:74:c5:
7a:7a:54:b2:a1:a3:70:7d:e7:50:78:6a:4e:dd:b0:
e4:5f:10:ce:88:52:57:ba:25:c6:56:c7:13:17:4e:
07:81:78:d7:db:fd:2c:b1:0a:c5:31:17:12:9c:2f:
91:76:00:86:29:38:af:80:7e:ef:2c:7a:6e:65:bb:
2f:37:6f:87:94:25:56:25:46:ee:be:25:3c:8b:0b:
16:a1:18:11:f4:d8:c9:c9:c2:fc:4c:c8:13:bf:54:
68:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:80:01:DA:E6:36:00:F0:15:49:54:A5:FF:EB:D7:2F:07:B9:B8:D9
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/ioAB2uY2APAVSVSl_-vXLwe5uNk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
Signature Algorithm: sha256WithRSAEncryption
69:f5:73:89:70:0f:9a:e9:37:77:f3:97:b0:ec:e7:63:ec:04:
a0:8e:c0:b1:7c:ba:45:a4:30:0a:e2:c2:ae:d4:9c:f8:78:de:
ba:5c:a8:90:e9:e6:47:e1:37:3e:71:1f:17:e2:c1:dd:f3:43:
f2:a8:1c:34:b3:0b:7a:e8:0c:42:34:ee:02:03:f0:11:ee:18:
e4:c5:3c:16:86:1a:15:10:7c:17:c7:e3:f4:0c:8d:94:25:25:
f5:55:41:9b:22:85:0e:c3:43:4a:e7:8c:cf:f7:75:07:5b:1f:
49:56:38:fb:ff:93:f5:88:e0:b1:c9:e9:29:48:9d:2c:d6:2b:
82:2f:d7:10:e6:70:6e:56:ab:d9:5f:43:be:e7:42:e7:c5:3c:
35:b9:65:6a:b0:dd:0d:de:9e:4e:2c:da:42:76:4c:96:9c:08:
1e:3a:93:58:eb:71:8a:cd:58:34:05:88:4a:8c:57:c1:31:a5:
c1:b1:bc:04:25:e8:45:4c:27:b4:b0:53:1f:b2:61:48:74:14:
ed:bb:8b:f4:d7:0b:fb:b1:0e:c1:e7:44:f6:f1:26:29:a3:eb:
46:c8:1b:9b:06:e7:4f:46:8d:55:d7:fd:0a:27:b0:43:b9:51:
15:8d:33:c5:92:2d:22:12:b7:ce:a2:dc:42:91:6b:9f:c0:bd:
6a:ba:31:34
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Apr 19 13:58:42 2025 by rpki-client