Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/q1lxxtvTrgl_TgDMjewuunx5d4Q.roa
File: q1lxxtvTrgl_TgDMjewuunx5d4Q.roa (raw, json)
Hash identifier: rXINlZaJILeOvH5BAWfTKklIFtGhh82nQN9gJp6jDVk=
Subject key identifier: AB:59:71:C6:DB:D3:AE:09:7F:4E:00:CC:8D:EC:2E:BA:7C:79:77:84
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0194749C475B2ECED64C9720392AF08ECBC9
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/q1lxxtvTrgl_TgDMjewuunx5d4Q.roa
Signing time: Fri 17 Jan 2025 14:13:06 +0000
ROA not before: Fri 17 Jan 2025 14:13:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:194:2c0d:6680/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:74:9c:47:5b:2e:ce:d6:4c:97:20:39:2a:f0:8e:cb:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jan 17 14:13:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ab5971c6dbd3ae097f4e00cc8dec2eba7c797784
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:b1:83:e2:a3:bd:70:ae:49:fa:63:7e:94:b2:
fb:eb:09:6b:bc:0e:d3:2c:27:04:8a:3a:99:cd:c8:
81:04:d6:09:89:36:35:4f:80:6a:d5:dd:92:98:95:
c9:f5:56:73:e4:de:fd:ec:7e:a4:b6:d4:18:7e:93:
87:c9:02:2e:01:1f:01:75:d4:4a:d6:26:0f:39:48:
d4:ae:91:b6:ea:9e:de:d3:6d:4c:7d:6b:55:83:cb:
5a:f1:80:10:e6:d0:88:54:87:d0:e2:db:d5:ce:73:
44:09:33:d2:40:47:9b:e1:09:b5:d6:d8:28:48:50:
6d:9d:bd:85:18:20:b3:a4:f9:21:46:20:10:9c:5a:
c0:90:ba:fb:c3:83:7f:e0:c6:4a:d7:44:d0:d1:6c:
50:0e:bf:08:c6:13:09:29:16:ce:af:f3:77:b9:24:
03:00:39:e6:3b:aa:68:e6:a0:05:82:8e:16:56:f7:
7b:f8:8a:0e:16:91:b5:9f:07:b2:e5:12:17:62:0c:
ce:d1:ce:b8:c5:44:68:e3:46:ea:8b:c7:e7:9a:56:
08:4d:f4:98:a8:be:53:b9:32:70:31:f0:14:3c:96:
36:e3:c4:60:da:ec:fb:10:a9:11:0f:af:8c:3c:ec:
73:ed:35:b4:d8:30:1d:c8:f0:ef:27:f5:20:06:84:
de:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:59:71:C6:DB:D3:AE:09:7F:4E:00:CC:8D:EC:2E:BA:7C:79:77:84
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/q1lxxtvTrgl_TgDMjewuunx5d4Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:194:2c0d:6680/128
Signature Algorithm: sha256WithRSAEncryption
14:20:e5:24:c2:a6:b7:58:a7:0a:7b:ae:25:1f:a3:0b:57:80:
65:e3:07:62:8e:21:d7:50:ef:30:10:9e:43:07:d0:e5:d9:6c:
e0:e2:51:32:05:6c:bf:65:58:a3:98:e6:9e:73:4c:32:db:42:
2e:9a:e9:c1:ba:05:7a:d2:0f:56:7a:89:11:24:94:d1:f3:e1:
6b:3b:28:ba:61:1a:9d:dc:63:f7:72:d3:b3:cc:a1:58:84:92:
9f:bf:5b:f6:f3:a8:ef:c4:d8:4d:79:26:44:bd:7d:eb:32:af:
46:73:73:66:39:39:ac:0f:9c:83:40:c0:66:91:9d:2c:87:06:
86:42:4e:f9:dc:f4:80:e4:29:34:27:46:cc:c5:1b:de:14:6f:
55:38:79:b8:5c:e4:34:25:80:9f:36:c5:d8:e6:52:70:39:02:
a3:b4:38:15:33:8a:92:e8:3d:0b:59:79:b2:cc:6f:3f:d2:65:
9b:34:01:ac:00:db:25:e4:df:d0:7f:b1:8b:52:f9:9a:87:a0:
e5:b3:34:24:ec:4d:c5:3d:73:66:c3:1d:a5:6c:e9:e6:aa:5f:
01:36:ac:30:73:5b:12:b0:82:4c:98:83:7b:a0:01:ee:0d:33:
2c:5a:f2:aa:29:7d:30:75:2e:d7:da:5a:c3:1a:e3:1c:6e:b9:
1f:50:53:18
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun Jun 8 03:50:29 2025 by rpki-client