Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/r2ptdLmda77GUPhCQ4_a-vjOYlE.roa
File: r2ptdLmda77GUPhCQ4_a-vjOYlE.roa (raw, json)
Hash identifier: ElbDjFIj3FVaKXJTGP5b1BMmyyd5yVAktXOrkBICQyY=
Subject key identifier: AF:6A:6D:74:B9:9D:6B:BE:C6:50:F8:42:43:8F:DA:FA:F8:CE:62:51
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0193BE9E4116036CCC173FD73AB6B9E8C5F6
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/r2ptdLmda77GUPhCQ4_a-vjOYlE.roa
Signing time: Fri 13 Dec 2024 06:04:22 +0000
ROA not before: Fri 13 Dec 2024 06:04:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:193:be9e:2d98/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:be:9e:41:16:03:6c:cc:17:3f:d7:3a:b6:b9:e8:c5:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Dec 13 06:04:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=af6a6d74b99d6bbec650f842438fdafaf8ce6251
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:3c:f0:d7:95:3f:fd:76:46:16:98:57:78:03:
72:f4:87:d6:e2:d4:6b:f0:f6:72:be:b8:cc:e0:ed:
25:15:a5:3f:c5:f9:a2:77:4a:22:89:59:54:f4:a4:
6a:59:f5:b8:2f:9d:cc:c4:ba:44:2c:50:47:12:98:
5f:9b:1f:6d:4a:4a:a3:e4:79:cb:3a:81:05:72:fb:
3d:99:f5:b1:fb:d3:87:18:84:16:5a:ea:e1:9f:44:
b2:76:07:e8:c7:f7:ca:96:e2:c6:b6:93:2b:95:57:
9c:d9:d6:8e:3b:da:0f:c5:01:61:d8:61:00:1a:f2:
0f:7f:fa:c4:44:18:32:33:86:29:ca:a2:49:9a:2b:
8f:ba:05:d8:d5:31:7e:16:56:25:d7:44:e6:78:bc:
41:7f:e1:1d:bd:ff:58:71:b5:14:3c:68:83:ba:45:
b5:3d:5d:67:e7:c7:ef:72:2e:af:59:35:18:b0:b0:
8a:73:3f:1d:e7:9a:d9:39:03:5e:c9:ac:e6:bf:3a:
c4:7e:2a:bb:c5:3d:0b:ee:5c:8d:5d:f4:9b:ee:88:
c6:9e:ba:9e:f4:37:97:ff:0f:c2:fe:50:3f:a0:bf:
b9:df:fc:8b:de:99:69:7b:d7:7b:f6:74:a2:4b:c5:
ce:f6:1b:95:73:67:36:22:0e:74:62:31:d6:97:2d:
9a:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:6A:6D:74:B9:9D:6B:BE:C6:50:F8:42:43:8F:DA:FA:F8:CE:62:51
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/r2ptdLmda77GUPhCQ4_a-vjOYlE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:193:be9e:2d98/128
Signature Algorithm: sha256WithRSAEncryption
57:6b:0b:f4:57:6b:1e:3b:11:12:bc:34:ff:a0:d7:7b:ed:9d:
02:a3:21:6a:27:31:de:c2:f8:03:4b:73:f0:50:2a:d2:87:f2:
ea:ca:79:8a:45:9d:b5:2c:19:86:d4:69:3d:60:53:21:aa:06:
6b:07:87:16:c0:f1:28:d9:50:ad:37:01:2f:d9:db:8e:92:0e:
3c:fd:91:43:00:b0:a9:32:1d:7e:4a:b3:dd:03:ee:16:7f:12:
9f:a4:79:37:36:78:23:4c:6d:4f:6b:72:ef:64:ab:71:59:73:
8b:ac:30:5e:9a:0a:cf:18:9a:a9:a1:d3:32:66:2c:d9:ab:2a:
9d:ae:ca:84:8c:bb:7e:64:dc:41:57:1f:68:fa:38:29:4b:51:
2f:26:ff:c7:8f:01:30:bd:61:6c:13:9f:93:a7:1c:87:ac:1e:
db:83:66:5a:b7:1d:50:56:88:ee:13:18:1c:38:00:8f:4e:cd:
5b:6a:d8:b4:84:20:3b:da:b4:a6:b6:85:2d:ff:98:e8:1d:3b:
50:bb:09:12:21:33:fa:8d:5e:e5:e0:18:b6:01:54:f1:ea:36:
7d:9f:66:4a:2f:bd:8b:b3:f8:e9:ab:13:82:b6:ae:ae:f4:34:
f9:b4:29:68:17:8f:6a:69:95:19:c7:4c:1e:ea:87:85:84:70:
e7:db:11:f5
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun Jun 8 05:19:58 2025 by rpki-client