Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/sIQ1WRnANbAANp2rvNedX3zlnyo.roa
File: sIQ1WRnANbAANp2rvNedX3zlnyo.roa (raw, json)
Hash identifier: 3Sux5GME67d5DiEORraIIFWUsDpi9rcqNnXnBWVkrVw=
Subject key identifier: B0:84:35:59:19:C0:35:B0:00:36:9D:AB:BC:D7:9D:5F:7C:E5:9F:2A
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 019281431CDF969B72396DEEC6222C1A5BB5
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/sIQ1WRnANbAANp2rvNedX3zlnyo.roa
Signing time: Sat 12 Oct 2024 15:05:12 +0000
ROA not before: Sat 12 Oct 2024 15:05:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:192:8142:4eed/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:81:43:1c:df:96:9b:72:39:6d:ee:c6:22:2c:1a:5b:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Oct 12 15:05:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b084355919c035b000369dabbcd79d5f7ce59f2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:05:e7:e2:0b:4d:ad:54:4d:6f:67:f9:43:f7:
39:15:09:84:b1:ec:11:ad:fb:5f:3e:cb:fc:d4:07:
20:f5:79:9b:80:2d:49:39:84:6f:b5:a6:d3:b5:25:
43:91:10:3c:98:e1:43:4c:64:80:65:35:ef:74:d8:
5d:74:31:04:06:a6:15:e1:14:30:1f:6f:c3:c4:95:
74:16:52:9d:22:89:7e:a0:41:e8:52:8a:b3:30:d7:
0f:f6:9c:cd:a2:ac:7f:12:9b:29:1d:e6:8a:5e:7c:
db:25:e7:9a:29:a4:f5:7a:9c:42:6d:1a:68:53:ed:
c0:43:67:f9:ec:ec:c7:83:c3:6c:a0:3e:a8:ae:69:
74:58:16:21:cc:8f:f1:d4:90:8d:11:4f:47:3c:69:
80:b5:cd:8e:68:37:b0:a3:10:cc:d4:cf:9f:bc:c6:
01:75:85:45:ad:ce:a7:b5:f6:4c:5c:5a:61:ad:70:
70:82:99:ae:ac:12:68:56:ae:6c:c9:25:1d:d8:a5:
f7:fa:94:2c:9d:a1:17:ef:a2:b3:b9:d5:ea:d6:0d:
64:29:f4:c6:8b:83:a8:91:4f:56:ee:ca:ff:05:60:
07:3c:1b:79:4d:53:f7:80:ed:f0:30:23:87:26:d7:
80:84:97:6c:2d:52:3c:19:81:c6:f4:f1:b9:ea:3d:
92:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:84:35:59:19:C0:35:B0:00:36:9D:AB:BC:D7:9D:5F:7C:E5:9F:2A
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/sIQ1WRnANbAANp2rvNedX3zlnyo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:192:8142:4eed/128
Signature Algorithm: sha256WithRSAEncryption
7a:f9:73:6f:2e:ac:32:eb:6a:d8:a6:ae:51:5d:3d:68:fa:9d:
c0:c8:01:b9:7a:87:78:2c:41:05:09:8e:0f:02:36:30:15:c0:
d4:14:dc:0b:0d:d3:b5:5a:da:e4:82:9a:0f:0c:e3:41:d9:65:
89:2c:cb:11:a2:e4:1d:c4:6c:83:4f:85:67:55:9b:6d:30:56:
c7:34:a3:1e:e6:8b:61:73:1d:a1:1d:9e:a5:ad:ee:2d:31:39:
57:9b:9d:a7:0f:8f:93:3a:65:a0:9c:8a:65:2d:a2:66:a7:99:
cc:c3:f8:9f:d3:63:87:96:c3:0a:15:7d:22:7f:b3:dc:37:ba:
ed:a7:53:ee:9f:89:f1:13:a9:f3:30:5e:c7:7b:90:12:f2:14:
47:a0:77:bc:f8:43:0e:55:a0:c9:df:91:08:76:5a:25:8f:3d:
62:66:dd:f1:6d:ee:77:65:7e:b2:ae:14:19:14:2d:de:4c:55:
c1:96:22:78:d0:3e:fd:e0:18:20:11:e6:5f:2f:ec:8a:58:3d:
5d:98:32:00:12:f0:6f:74:a1:7c:71:c9:b0:68:ec:4a:b8:e6:
cc:39:d1:f7:a8:ff:1a:8a:57:fa:2c:50:40:ac:29:75:c2:8a:
e7:05:72:dd:b0:5d:d8:0c:79:3f:ad:fb:6c:b4:3c:f9:d8:dc:
b0:27:88:98
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Apr 21 01:26:19 2025 by rpki-client