Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/c454f5-4aa6-4fca-8ce0-d0a0e129cbbc/1/LHGPZODlCMPYG1Bm7i6cfWz4ibE.roa
File: LHGPZODlCMPYG1Bm7i6cfWz4ibE.roa (raw, json)
Hash identifier: xRrpT0pSxRQA68i/CRUtjW4am+wUYqF2BCQyZkXwuZU=
Subject key identifier: 2C:71:8F:64:E0:E5:08:C3:D8:1B:50:66:EE:2E:9C:7D:6C:F8:89:B1
Certificate issuer: /CN=48dc0992867cb43b2833d5151e42bc41f57e73ad
Certificate serial: 01856EB8DF7F11153C10E49636D26589CD6C
Authority key identifier: 48:DC:09:92:86:7C:B4:3B:28:33:D5:15:1E:42:BC:41:F5:7E:73:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SNwJkoZ8tDsoM9UVHkK8QfV-c60.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/c454f5-4aa6-4fca-8ce0-d0a0e129cbbc/1/LHGPZODlCMPYG1Bm7i6cfWz4ibE.roa
Signing time: Sun 01 Jan 2023 19:04:47 +0000
ROA not before: Sun 01 Jan 2023 19:04:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205955
IP address blocks: 2001:678:42c::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:b8:df:7f:11:15:3c:10:e4:96:36:d2:65:89:cd:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=48dc0992867cb43b2833d5151e42bc41f57e73ad
Validity
Not Before: Jan 1 19:04:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2c718f64e0e508c3d81b5066ee2e9c7d6cf889b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:ea:62:ec:ff:3d:80:00:c0:99:d2:f1:0b:41:
8c:d6:74:f3:5f:fc:5f:71:a5:a4:13:66:e4:63:f3:
1e:34:43:04:af:c5:41:75:b9:82:b8:8a:a6:a2:00:
be:ce:0c:74:d7:50:73:12:f4:4e:e0:73:ff:b6:9f:
3b:d0:c6:9e:58:0a:ff:ea:df:d0:45:0b:0d:ab:f3:
6e:d3:e1:98:a6:07:ef:df:27:97:a1:bc:5e:f3:8e:
96:67:be:f8:a5:e8:06:d8:00:07:89:d5:54:4e:e1:
12:2a:ce:55:ec:3e:e7:3d:7a:52:15:f6:d8:78:e0:
1e:5a:57:fd:5b:98:b1:06:5c:b4:33:a4:af:5a:61:
2b:34:a7:10:8c:ec:55:db:5e:5c:b1:6d:ac:c7:3d:
2f:4e:f4:b5:75:36:73:48:7b:47:dc:b4:a2:73:60:
27:c2:67:a3:f2:c2:dd:2f:e5:4d:7f:9a:6f:bf:55:
da:40:29:4e:79:cf:66:bb:a3:43:b9:f8:fe:08:44:
5e:3d:a4:08:41:5b:6b:ee:2c:0a:0d:98:5c:70:04:
11:f8:99:4a:03:37:d7:82:ff:f6:b5:58:38:90:c3:
bf:ca:eb:e6:a8:31:e7:5f:e1:0d:8b:0b:53:eb:0d:
3b:90:cf:55:cf:e7:7e:40:e6:ea:b0:11:11:e8:0f:
18:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:71:8F:64:E0:E5:08:C3:D8:1B:50:66:EE:2E:9C:7D:6C:F8:89:B1
X509v3 Authority Key Identifier:
keyid:48:DC:09:92:86:7C:B4:3B:28:33:D5:15:1E:42:BC:41:F5:7E:73:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SNwJkoZ8tDsoM9UVHkK8QfV-c60.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/c454f5-4aa6-4fca-8ce0-d0a0e129cbbc/1/LHGPZODlCMPYG1Bm7i6cfWz4ibE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/c454f5-4aa6-4fca-8ce0-d0a0e129cbbc/1/SNwJkoZ8tDsoM9UVHkK8QfV-c60.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:42c::/48
Signature Algorithm: sha256WithRSAEncryption
79:b9:cb:8c:3f:3d:4c:bf:dc:21:04:95:8f:ad:b2:04:62:c9:
db:a8:54:50:1b:c2:da:6a:ac:94:7b:49:52:18:92:06:04:c5:
81:c3:39:52:32:cb:2d:a0:a7:3b:3e:5b:dd:71:15:78:4b:51:
ce:5b:1d:27:b5:9c:da:81:23:da:88:53:06:e6:1e:40:a3:39:
d0:33:9b:1e:cb:31:71:36:cf:ab:0a:94:de:cc:3b:34:c5:18:
55:c6:92:4e:5a:26:10:6e:32:01:1f:1d:f2:30:09:c6:a5:77:
bb:0b:c9:ae:94:1f:74:38:c3:cc:db:f6:25:d0:12:45:71:b6:
d3:28:e0:82:18:44:f8:f1:d4:f9:97:d6:c9:8a:57:37:54:61:
e7:e8:fe:a8:ee:72:b6:c8:88:d8:d4:0a:53:fb:91:87:c8:4d:
d4:e0:ef:c2:46:56:2f:77:ca:e8:39:25:3c:8c:d4:8e:f6:6e:
cc:ff:78:dc:6d:91:b6:82:12:7c:4a:34:c0:a8:b4:1b:8e:46:
e8:52:56:ad:92:8b:9b:29:59:91:a5:38:05:52:c0:e3:6e:83:
db:32:77:08:8c:0a:f0:7c:32:14:16:26:68:e9:07:f6:a5:6d:
58:c1:eb:b5:50:7e:1c:5c:00:85:c4:8c:ba:a3:22:d0:af:95:
6e:f8:61:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 05:02:17 2025 by rpki-client