Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/7113df-e0e8-440e-a118-8beadaaad0b1/1/P05t3kiYPDkZIteTxzHkdWLEeeU.roa
File: P05t3kiYPDkZIteTxzHkdWLEeeU.roa (raw, json)
Hash identifier: BIrJT8z8EjrhQoOfb8QVBhdG6eDY7ydaRNIxS8nhYAU=
Subject key identifier: 3F:4E:6D:DE:48:98:3C:39:19:22:D7:93:C7:31:E4:75:62:C4:79:E5
Certificate issuer: /CN=251e7871fd38f2df918242dda1c6fc35688423ca
Certificate serial: 019427B68BE3EA9F5DB48B0D1BB9BBCCC069
Authority key identifier: 25:1E:78:71:FD:38:F2:DF:91:82:42:DD:A1:C6:FC:35:68:84:23:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JR54cf048t-RgkLdocb8NWiEI8o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/7113df-e0e8-440e-a118-8beadaaad0b1/1/P05t3kiYPDkZIteTxzHkdWLEeeU.roa
Signing time: Thu 02 Jan 2025 15:51:02 +0000
ROA not before: Thu 02 Jan 2025 15:51:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 25151
IP address blocks: 2001:678:c50::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b6:8b:e3:ea:9f:5d:b4:8b:0d:1b:b9:bb:cc:c0:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=251e7871fd38f2df918242dda1c6fc35688423ca
Validity
Not Before: Jan 2 15:51:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3f4e6dde48983c391922d793c731e47562c479e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:cd:44:38:e5:51:ca:80:fb:39:05:9f:25:1b:
d1:53:7f:19:82:1f:82:6c:02:cf:37:8e:c2:e6:27:
31:a0:3f:f2:7b:71:9d:56:fb:56:da:8d:65:f3:e5:
7f:3e:13:6f:ec:31:19:e0:c9:23:df:d9:86:35:bd:
8b:28:01:d5:ac:1c:f5:d0:61:69:c7:11:3f:7b:eb:
7e:a8:73:21:a3:08:5d:ec:25:3b:96:c3:e6:bc:ab:
b1:4e:ef:12:9f:1e:dc:f4:76:ed:1e:9e:0b:23:2c:
e1:35:94:2c:f7:a2:0e:0a:79:1c:bd:0a:d2:6d:ab:
1c:a4:b4:65:fe:85:5d:1c:4e:b2:01:cc:43:e8:ab:
7f:9f:a7:0d:7a:c6:f2:94:f6:f1:49:4c:ee:1d:3d:
d0:d8:1e:b0:0c:d2:f2:41:d2:35:75:98:7c:b5:6c:
00:c0:d5:e8:3f:c6:40:61:1e:9d:13:4c:83:1c:1e:
2b:3a:a0:06:2d:32:ef:3e:8f:89:b4:ac:f5:d3:28:
3f:3b:7e:f3:bc:0b:8a:b8:a8:84:d7:c3:bc:de:c1:
a1:e0:3a:69:6c:05:ca:0e:5a:62:3d:90:85:5d:7d:
a4:4f:0e:e8:62:70:0d:1b:03:7b:20:35:6c:03:44:
4e:f4:6b:cd:54:9a:83:d2:79:a5:fb:89:ef:a1:4a:
93:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:4E:6D:DE:48:98:3C:39:19:22:D7:93:C7:31:E4:75:62:C4:79:E5
X509v3 Authority Key Identifier:
keyid:25:1E:78:71:FD:38:F2:DF:91:82:42:DD:A1:C6:FC:35:68:84:23:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JR54cf048t-RgkLdocb8NWiEI8o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/7113df-e0e8-440e-a118-8beadaaad0b1/1/P05t3kiYPDkZIteTxzHkdWLEeeU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/7113df-e0e8-440e-a118-8beadaaad0b1/1/JR54cf048t-RgkLdocb8NWiEI8o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:c50::/48
Signature Algorithm: sha256WithRSAEncryption
67:d9:a8:b4:fa:c8:35:bf:b5:bd:45:8d:ff:4c:09:8d:9d:b8:
b2:49:43:44:f1:b1:99:d9:c6:80:70:8a:26:f5:fd:bd:5a:c2:
e9:19:96:90:1a:f7:72:8c:19:96:16:d2:b2:40:6f:cf:18:da:
65:62:d8:0e:18:44:10:5c:8c:ce:c6:b0:8a:fb:39:62:06:86:
3d:db:ed:a0:0d:2a:8c:1e:d4:a1:28:f4:b1:0b:61:16:64:83:
80:5f:8e:ae:58:28:dd:6f:51:9f:12:4a:b7:3f:f2:41:2b:f2:
ed:4c:ff:56:86:a5:f3:a5:f0:04:78:ba:f3:00:e5:2e:01:79:
68:ef:5a:4d:61:1f:a1:74:c1:66:ca:bc:b7:55:f8:7a:15:71:
a6:36:05:1d:cd:fa:5b:5f:44:6f:28:b1:16:67:74:2d:0d:f1:
f7:73:11:a3:73:5e:d1:35:c0:5b:e2:9a:87:24:b9:a8:02:0e:
23:1e:11:0d:b5:6b:ea:9b:e3:35:6e:97:3a:e4:d9:6a:6a:8f:
c7:96:80:7e:ea:da:97:68:af:bd:c1:56:6f:c0:5f:3c:ce:1d:
17:a0:ec:55:40:d2:07:fc:4a:10:29:06:32:a8:04:07:a3:8f:
1e:8e:32:25:72:1c:e2:f9:d6:d8:f7:b1:8f:a4:b9:ae:e4:ed:
ce:53:19:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:34:13 2025 by rpki-client