Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/s6JwRFX6mZFXHAtvviz-X8MdhpU.roa
File: s6JwRFX6mZFXHAtvviz-X8MdhpU.roa (raw, json)
Hash identifier: bfCyiTPkJ3Xd/Mz2vCwASeCsXhDHUaVSz6kSKYQc+aE=
Subject key identifier: B3:A2:70:44:55:FA:99:91:57:1C:0B:6F:BE:2C:FE:5F:C3:1D:86:95
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01912A64A5373DF804D70C89BBCAF521B061
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/s6JwRFX6mZFXHAtvviz-X8MdhpU.roa
Signing time: Wed 07 Aug 2024 01:12:04 +0000
ROA not before: Wed 07 Aug 2024 01:12:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:2a:64:a5:37:3d:f8:04:d7:0c:89:bb:ca:f5:21:b0:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Aug 7 01:12:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b3a2704455fa9991571c0b6fbe2cfe5fc31d8695
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:00:51:52:c2:9b:1d:8a:2b:a2:4d:87:9a:98:
e5:c5:bd:b1:01:c4:88:ea:07:d8:70:e9:36:f9:30:
e6:30:2d:6a:ac:0d:b0:0b:69:4c:a7:59:61:78:0f:
67:c9:71:5a:4c:c0:6e:c0:c3:76:63:fe:a5:6d:89:
09:f3:72:0f:fc:6f:21:23:81:7b:33:bd:05:fe:28:
dd:4d:83:2d:82:33:8b:54:7f:df:2f:0f:b5:b6:fa:
f1:6c:82:21:d7:4c:80:2c:55:13:46:fd:8e:8a:27:
0d:13:dd:50:72:18:2f:4c:14:aa:71:b5:6e:1a:a8:
e6:87:e4:d6:bb:c7:9e:c1:b9:8c:cc:9e:f4:57:38:
15:ed:99:46:fe:3e:b5:5a:6f:98:9d:b1:2f:5b:15:
d5:1b:98:31:18:09:e9:2f:ea:df:69:7e:bc:da:fe:
ff:4f:13:a7:94:33:ce:00:fd:3d:6c:6c:fb:24:3f:
3f:a0:d5:25:18:39:04:3d:62:94:65:56:9c:9c:29:
26:e0:b6:7f:59:19:43:dc:5d:67:95:52:00:52:ba:
1c:7f:b4:c0:46:a1:ed:f2:86:35:18:cd:20:47:f0:
5d:65:5b:9c:bb:06:3d:bf:4f:ac:75:37:75:57:d0:
4d:d3:3b:59:b9:8c:d6:92:b6:5e:47:eb:0e:76:ed:
6a:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:A2:70:44:55:FA:99:91:57:1C:0B:6F:BE:2C:FE:5F:C3:1D:86:95
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/s6JwRFX6mZFXHAtvviz-X8MdhpU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
Signature Algorithm: sha256WithRSAEncryption
4e:51:9c:37:12:1e:4c:3c:f2:04:f7:38:7d:a0:ce:b5:e6:15:
4f:b8:0f:25:47:36:85:3c:4d:f5:0c:9a:94:87:67:0e:b5:ba:
01:28:4c:29:b7:a5:b9:f5:ed:01:9e:74:f7:99:03:03:0e:5c:
1a:04:0b:00:00:dd:eb:7a:dd:82:fe:9e:91:7d:53:86:04:f8:
c4:a8:91:5e:22:88:53:f8:bc:d1:69:f3:9e:0f:bc:84:fe:99:
7d:5b:51:70:47:c6:9c:2c:dd:97:d7:97:32:46:05:0b:d7:a8:
f1:0d:27:ac:7a:04:f0:65:fa:bb:49:3e:73:af:c1:68:48:66:
db:9f:31:d1:44:12:9a:cb:24:2f:8a:4c:be:0c:ae:14:c1:aa:
aa:fb:cf:b1:1a:c8:ba:7e:c8:be:02:f9:76:aa:3a:30:b5:e0:
c3:4b:1a:42:d3:0c:ea:e9:5a:9a:83:10:29:73:fd:16:a6:eb:
bf:55:03:db:39:0e:82:56:88:f4:f2:75:e1:2b:a8:6c:32:f7:
64:4d:b8:87:24:73:3e:53:c7:10:a6:5b:9c:a2:17:1b:29:2f:
ee:3e:77:4c:65:23:41:53:e0:34:03:48:1c:9e:75:25:2d:ba:
70:89:36:a0:01:d1:f8:c1:a1:1a:51:c3:b2:10:7b:41:f0:44:
77:9e:d0:02
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Apr 19 02:50:27 2025 by rpki-client