Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9daf2f-46d2-4d05-926b-a8bf214ed166/1/YIebsRvIbGC7UchAo6-x1aYKFbA.roa
File: YIebsRvIbGC7UchAo6-x1aYKFbA.roa (raw, json)
Hash identifier: 6+1jucbAKSGtfISw16PNa14yrWC3N8kyvN2oMNXoPmU=
Subject key identifier: 60:87:9B:B1:1B:C8:6C:60:BB:51:C8:40:A3:AF:B1:D5:A6:0A:15:B0
Certificate issuer: /CN=fe340911274377a89ca1f9c15f180da986d744b7
Certificate serial: 019353C8F6DFA4896FB8483C348DFA784BC0
Authority key identifier: FE:34:09:11:27:43:77:A8:9C:A1:F9:C1:5F:18:0D:A9:86:D7:44:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_jQJESdDd6icofnBXxgNqYbXRLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9daf2f-46d2-4d05-926b-a8bf214ed166/1/YIebsRvIbGC7UchAo6-x1aYKFbA.roa
Signing time: Fri 22 Nov 2024 12:11:39 +0000
ROA not before: Fri 22 Nov 2024 12:11:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197942
IP address blocks: 2001:678:f84::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:53:c8:f6:df:a4:89:6f:b8:48:3c:34:8d:fa:78:4b:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe340911274377a89ca1f9c15f180da986d744b7
Validity
Not Before: Nov 22 12:11:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=60879bb11bc86c60bb51c840a3afb1d5a60a15b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:f3:7f:9f:ed:1e:4a:3b:d4:b0:ba:31:05:57:
c7:07:58:5a:e0:f9:c7:3b:08:05:0f:73:66:ff:13:
72:bc:29:97:ec:1d:2f:b3:22:e5:92:80:29:bd:0b:
21:bb:07:d8:90:ad:6f:29:40:31:f8:db:36:a5:db:
3f:8a:e8:14:75:1b:20:5f:3e:1c:d6:7b:00:f3:ad:
5b:ce:92:27:1a:75:1c:82:67:8b:f7:e1:e3:c3:9b:
84:06:24:e0:9b:74:cc:c7:5b:1e:d6:86:55:bf:1e:
a7:0d:67:28:fd:15:63:2a:18:bf:d3:5b:b6:64:7a:
ff:e2:e1:e9:87:99:14:05:f5:9f:6c:4f:7f:7e:22:
5c:06:0e:8c:0d:a3:26:ae:a6:9e:d3:fa:3d:1e:40:
ae:c1:da:6a:3b:ae:00:ad:ee:58:b5:d4:a7:89:af:
00:40:c6:ba:30:82:36:31:92:5c:21:ef:69:92:4b:
54:ac:f7:36:2d:a8:e4:6c:53:e3:5f:1f:ae:89:44:
88:82:cf:8b:72:5c:0e:3d:83:4d:eb:b4:f3:fe:ce:
e7:6f:33:e9:68:e7:32:12:ae:bb:2f:85:4d:fe:3d:
90:16:ec:a8:2f:e8:be:42:6d:cc:5b:69:1c:f9:1b:
91:45:99:73:13:71:78:17:36:ba:bd:4a:46:23:1f:
dc:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:87:9B:B1:1B:C8:6C:60:BB:51:C8:40:A3:AF:B1:D5:A6:0A:15:B0
X509v3 Authority Key Identifier:
keyid:FE:34:09:11:27:43:77:A8:9C:A1:F9:C1:5F:18:0D:A9:86:D7:44:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_jQJESdDd6icofnBXxgNqYbXRLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9daf2f-46d2-4d05-926b-a8bf214ed166/1/YIebsRvIbGC7UchAo6-x1aYKFbA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9daf2f-46d2-4d05-926b-a8bf214ed166/1/_jQJESdDd6icofnBXxgNqYbXRLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:f84::/48
Signature Algorithm: sha256WithRSAEncryption
75:e1:19:1b:b0:9e:89:0c:f1:25:cd:10:58:27:cf:4d:47:b7:
e9:18:28:b7:e8:39:76:bc:6a:70:c6:f5:e9:2f:f7:1e:ce:6c:
ae:bb:c9:0f:f6:74:30:fd:90:15:d1:04:35:67:6c:4a:81:e0:
36:9c:79:cb:2a:ad:46:73:e0:97:3d:16:46:b6:f6:20:13:bf:
63:cd:fa:ec:9e:a2:90:31:d5:40:e2:c7:3b:00:d0:73:4c:98:
78:fc:9e:91:77:0f:5f:0c:83:dd:e1:91:00:74:4f:22:de:93:
06:19:fc:29:83:9d:6b:2a:5b:ae:69:19:8a:a2:c1:bc:62:e0:
21:04:a1:bb:72:92:5b:ec:bf:ac:65:77:5a:2b:6a:30:28:9f:
d8:88:fa:07:87:3e:f0:69:42:d1:0a:23:1b:6e:ea:3d:69:89:
2a:6f:76:44:9a:27:31:74:65:8c:27:f2:59:bd:07:a6:a9:ad:
3b:f3:c7:87:85:82:04:76:02:d9:99:66:7b:f7:b0:27:f4:f9:
0b:a4:60:58:7f:4a:b2:0d:ad:e9:fa:d3:4b:b6:af:b1:08:df:
31:06:fc:20:68:91:6b:26:c1:79:cf:20:2a:06:df:03:20:85:
d8:bc:60:af:01:aa:fb:a0:80:80:4e:d6:cd:a9:31:2d:ca:96:
7f:5d:74:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 04:56:07 2025 by rpki-client