Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/vAwtdyqRBbwV3DEkTaWEKSGhRKk.roa
File: vAwtdyqRBbwV3DEkTaWEKSGhRKk.roa (raw, json)
Hash identifier: ZW7J8prJTAeoh6csBeC5MRxMy+dqu4hfJp1BWDpGrlk=
Subject key identifier: BC:0C:2D:77:2A:91:05:BC:15:DC:31:24:4D:A5:84:29:21:A1:44:A9
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01912DD2A447EDD64AC8E1E7A34DCF32E129
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/vAwtdyqRBbwV3DEkTaWEKSGhRKk.roa
Signing time: Wed 07 Aug 2024 17:11:04 +0000
ROA not before: Wed 07 Aug 2024 17:11:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:2d:d2:a4:47:ed:d6:4a:c8:e1:e7:a3:4d:cf:32:e1:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Aug 7 17:11:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bc0c2d772a9105bc15dc31244da5842921a144a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:48:96:e0:2e:3a:fe:e1:03:1d:42:73:46:10:
d0:c7:f8:d8:4b:54:19:a5:1f:1a:4a:9a:8c:cb:55:
00:5a:54:52:d2:15:03:5a:b8:75:6b:89:8c:93:bb:
57:fe:a9:66:5d:42:b9:03:35:b8:f1:e5:54:b3:c4:
f4:bd:9f:a7:34:c0:3c:91:07:23:d1:c1:2c:ef:5b:
99:04:b3:81:91:f5:7c:f3:3e:f6:91:fc:77:c3:45:
1d:3e:69:c8:77:53:e9:37:7f:7b:ca:69:7b:6d:7d:
9d:b1:cd:a5:22:93:03:d9:27:91:90:bf:b2:21:4b:
08:ba:93:fc:38:70:8b:3b:eb:a6:2f:76:07:6d:ce:
d4:68:20:71:75:94:47:43:d4:4c:08:ed:34:f3:cb:
1c:47:d2:c3:e1:ea:e2:11:9d:b5:c8:57:86:26:77:
3a:76:52:cd:83:74:40:51:47:52:38:ef:ab:3a:44:
9c:e7:ee:94:1c:39:81:71:5c:7f:ce:29:a3:80:52:
9c:9d:aa:69:f8:cf:ac:a3:70:e7:7b:26:a1:8b:dc:
4a:41:fd:ea:14:68:f4:0b:c5:33:0b:ce:f5:b0:c5:
13:14:8d:db:d1:e7:73:ea:45:c0:f5:56:3f:c0:f7:
cc:45:57:cf:1c:6a:52:51:d8:d1:7b:4a:aa:6a:59:
db:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:0C:2D:77:2A:91:05:BC:15:DC:31:24:4D:A5:84:29:21:A1:44:A9
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/vAwtdyqRBbwV3DEkTaWEKSGhRKk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
Signature Algorithm: sha256WithRSAEncryption
07:b8:cf:a0:28:48:ab:cb:c5:34:92:6b:80:f6:83:ea:7e:8b:
f2:02:0f:fb:1e:36:f0:e6:2d:b1:5d:0b:64:4d:38:51:85:9a:
06:2c:13:b6:49:b3:45:10:03:b0:a9:0b:6f:39:d1:c9:e0:b1:
56:f9:63:53:89:cd:86:70:d3:2f:66:73:8d:43:ba:6f:13:57:
85:94:1d:53:87:2a:76:e0:21:8b:b7:48:75:2f:15:ce:f9:29:
a5:1d:72:7f:ca:0d:c3:f6:29:ce:29:e5:0b:91:7d:8a:44:fd:
77:bc:76:44:06:48:e4:57:d0:ee:5d:22:ec:cb:76:46:5e:4c:
11:c0:39:d4:bf:91:99:b2:cd:75:7f:83:ca:b6:b2:8f:d1:b4:
c0:15:8b:58:f9:cc:85:71:56:dc:a8:21:04:66:5e:c4:70:36:
7e:e7:69:3c:93:f8:63:5b:dd:96:ff:ab:7b:91:2b:b5:61:a3:
2f:dd:be:6c:94:30:69:50:2e:aa:df:9d:5f:b0:c4:0b:28:52:
a6:cf:e9:6d:4b:d2:af:63:01:9b:0a:c6:a7:39:b3:31:bd:88:
64:20:de:78:b1:4c:01:00:30:f7:6b:1c:90:7f:d5:0a:66:8f:
d0:fb:a6:ab:5d:36:91:19:48:0e:61:51:71:05:f7:17:f4:ff:
fb:15:d5:67
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun Jun 8 05:07:16 2025 by rpki-client