Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/t1TZQO4rTYUf0bMs6Z3_w45Em7Y.roa
File: t1TZQO4rTYUf0bMs6Z3_w45Em7Y.roa (raw, json)
Hash identifier: aj/HHCBj6xm4qqxaqW8+rYXgraCenAiyGB3uDycfnYs=
Subject key identifier: B7:54:D9:40:EE:2B:4D:85:1F:D1:B3:2C:E9:9D:FF:C3:8E:44:9B:B6
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 019170FD6E3BB0AD622244CED42CBC175233
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/t1TZQO4rTYUf0bMs6Z3_w45Em7Y.roa
Signing time: Tue 20 Aug 2024 18:12:22 +0000
ROA not before: Tue 20 Aug 2024 18:12:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:70:fd:6e:3b:b0:ad:62:22:44:ce:d4:2c:bc:17:52:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Aug 20 18:12:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b754d940ee2b4d851fd1b32ce99dffc38e449bb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:d0:74:5a:b3:70:e9:89:d4:f3:a7:4a:3e:08:
b1:ed:37:3e:5c:45:85:b7:bc:cb:4a:87:45:69:04:
ee:f2:c7:37:66:35:af:4d:76:e5:ac:ed:4f:b4:b6:
9a:b8:41:7b:ca:da:d8:fb:51:17:17:a0:19:d0:91:
fd:6d:c4:fb:08:f9:7d:58:0b:b6:d7:61:97:e8:11:
f0:5d:76:39:74:e8:cf:8b:2c:43:ab:a3:9d:18:d2:
2d:20:8a:75:ad:d5:d7:15:c9:89:0d:27:a2:73:d7:
56:6e:d3:c6:51:90:38:1c:4b:49:b7:e1:ed:75:d1:
73:0c:ee:76:2a:a9:33:fc:86:5f:62:d8:8d:b5:8b:
8a:8f:42:e9:6c:51:8d:ba:dc:58:c9:06:80:2c:a1:
84:68:29:aa:f9:d5:db:78:1b:36:d2:66:a6:37:57:
e2:60:69:0c:e1:ed:c6:ac:48:b2:37:78:e0:5a:64:
19:f2:da:e0:0e:5d:60:e0:de:3a:cf:80:95:39:5e:
72:30:5f:b2:c8:58:7c:7c:45:f7:4d:43:26:5e:2b:
46:97:9d:ea:00:5e:6f:77:0a:49:a7:82:e5:af:31:
4d:c4:3a:f3:a3:1e:84:bc:bc:44:25:44:b6:77:c5:
1e:25:a2:3b:af:82:2e:ca:37:ff:68:01:2e:b4:d1:
f3:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:54:D9:40:EE:2B:4D:85:1F:D1:B3:2C:E9:9D:FF:C3:8E:44:9B:B6
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/t1TZQO4rTYUf0bMs6Z3_w45Em7Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
Signature Algorithm: sha256WithRSAEncryption
6f:9f:ea:e1:c4:4a:4b:8e:57:ea:08:14:7b:19:8c:5f:e5:fd:
70:bb:40:37:b2:a8:d4:4c:b0:1e:18:98:25:70:9d:f9:bd:7e:
b3:ee:36:1f:f8:c7:46:c6:f4:e3:80:0f:a2:d2:49:6b:46:19:
4e:e9:12:c7:01:16:8c:20:55:86:68:70:f4:83:9c:a0:c2:05:
b6:20:46:60:3d:74:8b:30:c8:e0:86:10:db:4a:ad:a2:b4:93:
6c:db:1d:e4:de:84:2e:53:c4:c8:23:fe:65:e5:69:3c:68:50:
67:75:26:4a:9e:68:77:ce:62:25:4e:b1:f3:e2:29:e0:c3:8c:
9c:99:77:98:4e:9a:97:c5:81:55:a7:59:d8:0a:14:45:2e:60:
e2:b7:b6:47:5c:f8:85:1f:57:5d:4c:dc:c0:75:47:2e:34:1f:
7d:a0:80:9b:54:b7:c6:23:f7:79:3b:dc:f9:7c:0e:ce:df:72:
06:be:eb:93:4b:2f:60:c3:63:67:8c:15:63:a2:3a:16:16:e0:
b1:ea:d1:52:bc:98:1d:3d:8a:16:03:47:d5:4b:79:bb:9b:77:
c0:12:f4:e3:91:bc:a3:f4:f1:52:7b:0d:73:6a:b8:68:89:55:
71:29:9d:22:b6:8d:47:89:36:33:23:39:26:6d:1f:77:94:94:
98:22:c8:ef
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun Jun 8 05:15:17 2025 by rpki-client