Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/v0ljPKOEPBZBdYoVfQ3Ibgwsn5w.roa
File: v0ljPKOEPBZBdYoVfQ3Ibgwsn5w.roa (raw, json)
Hash identifier: 4IPi/+jKs5ENKSAsLZtzQRfoN3/1PH/CD89Vddn3XPA=
Subject key identifier: BF:49:63:3C:A3:84:3C:16:41:75:8A:15:7D:0D:C8:6E:0C:2C:9F:9C
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01918039B870A62253E449B57B0E75E6CF75
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/v0ljPKOEPBZBdYoVfQ3Ibgwsn5w.roa
Signing time: Fri 23 Aug 2024 17:12:32 +0000
ROA not before: Fri 23 Aug 2024 17:12:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:80:39:b8:70:a6:22:53:e4:49:b5:7b:0e:75:e6:cf:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Aug 23 17:12:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bf49633ca3843c1641758a157d0dc86e0c2c9f9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:96:00:28:6a:13:1c:6b:51:12:64:a0:bf:6b:
74:a8:2e:f0:fa:35:d6:81:3a:c3:47:80:3d:fc:3e:
22:c4:69:df:d5:35:5f:62:cb:0f:62:1e:ca:a5:cf:
20:09:72:00:03:13:d5:4b:3b:74:46:24:1a:68:10:
1d:d7:57:9f:cc:63:cf:c1:1a:f9:c5:34:0e:2b:85:
b0:2e:dd:f7:9c:e6:26:33:5b:cd:1b:a1:7d:45:2a:
1a:e4:df:65:3f:84:eb:4a:f8:a4:0b:eb:9e:10:6e:
9e:89:ec:17:f2:ae:75:fa:14:6c:fe:30:37:99:4e:
21:79:a6:9a:02:4c:fa:ce:2e:48:7f:10:2a:75:e0:
2f:49:d2:f4:67:14:c7:c8:f2:68:a4:c6:6e:ca:16:
91:3b:8c:34:85:17:5c:0f:d8:f4:4a:5a:a9:03:f6:
d1:8a:09:b4:4a:15:be:b0:18:7c:e0:6e:9e:78:96:
4b:d1:3d:c3:50:37:6d:b2:c1:3f:12:58:ef:38:c9:
18:f8:80:45:d1:b8:60:d8:0a:5e:05:61:9f:bf:62:
8d:8f:10:c2:10:bd:c0:85:c5:a2:f4:24:16:e4:e6:
f9:90:4a:06:7b:d5:81:ed:a8:eb:5e:ee:d3:c8:d2:
d7:56:26:76:fe:bc:e8:20:a4:91:a6:2a:f8:85:f4:
df:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:49:63:3C:A3:84:3C:16:41:75:8A:15:7D:0D:C8:6E:0C:2C:9F:9C
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/v0ljPKOEPBZBdYoVfQ3Ibgwsn5w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
Signature Algorithm: sha256WithRSAEncryption
23:bb:0b:4d:03:bc:7b:78:d8:ed:c7:bd:e8:b0:2f:3e:dc:0e:
d9:65:34:04:8c:c1:a7:9c:2c:1d:24:5e:61:a3:af:e5:87:70:
cc:71:90:e4:ed:63:ca:c2:f5:45:8b:e7:35:64:98:33:78:ff:
4b:1d:5b:0a:07:83:dd:3e:84:30:9b:eb:cf:fd:8a:80:89:ac:
8f:fe:02:06:7f:1c:f5:ca:cb:58:38:64:08:b6:a5:83:c7:1a:
ab:4c:e0:3a:2e:70:9a:33:f5:63:4e:ce:a0:8b:e8:f6:15:c3:
f0:b2:0b:e4:20:d0:28:05:2a:60:6b:68:81:71:28:fa:e3:3a:
4f:8b:8b:8e:02:95:f0:80:49:50:1e:f5:c3:6b:7b:c1:03:5a:
58:af:0a:18:a3:f2:d5:3b:ee:21:07:11:35:64:b6:c5:6e:dd:
64:6f:d2:19:0c:72:95:f3:d9:cf:c7:8c:8a:d7:ff:0b:c5:69:
61:9f:60:24:9f:96:e7:0d:76:63:b4:1c:a1:b9:d4:4e:2a:e5:
1c:09:d9:58:70:13:fd:c3:0b:42:7f:68:58:ce:0b:12:ca:dd:
00:08:58:17:9f:24:04:56:1f:4e:4b:71:96:68:2e:68:b4:c5:
b4:c1:bd:02:79:f7:fa:d5:24:d1:dd:99:01:9d:1a:35:35:5d:
3d:1b:5d:75
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun Jun 8 10:31:50 2025 by rpki-client