Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/96436c-f6fa-40ba-a27c-fb1030651067/1/Hgi1HuyOIm-pDNTXBi7SDeMMv54.roa
File: Hgi1HuyOIm-pDNTXBi7SDeMMv54.roa (raw, json)
Hash identifier: 4I6w4WrI+TeCpJfBFE/CPemODRHx6exn+BxP4Gc/fZ4=
Subject key identifier: 1E:08:B5:1E:EC:8E:22:6F:A9:0C:D4:D7:06:2E:D2:0D:E3:0C:BF:9E
Certificate issuer: /CN=dbe6ab8e0c46e841b44d2b9c6b03bb65f5621db1
Certificate serial: 019424B395D63ADA5280FE51C225AF9D1A97
Authority key identifier: DB:E6:AB:8E:0C:46:E8:41:B4:4D:2B:9C:6B:03:BB:65:F5:62:1D:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2-arjgxG6EG0TSucawO7ZfViHbE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/96436c-f6fa-40ba-a27c-fb1030651067/1/Hgi1HuyOIm-pDNTXBi7SDeMMv54.roa
Signing time: Thu 02 Jan 2025 01:48:56 +0000
ROA not before: Thu 02 Jan 2025 01:48:56 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215762
IP address blocks: 2a0f:ca81:b00b::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:95:d6:3a:da:52:80:fe:51:c2:25:af:9d:1a:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbe6ab8e0c46e841b44d2b9c6b03bb65f5621db1
Validity
Not Before: Jan 2 01:48:56 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1e08b51eec8e226fa90cd4d7062ed20de30cbf9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:85:f2:90:67:80:04:ec:78:d4:c4:91:b4:0a:
50:57:43:8a:44:9c:6b:b9:1d:f7:68:17:93:d0:b3:
c1:60:8c:c0:62:82:89:66:eb:56:e6:97:8a:d7:7d:
b8:0d:f3:be:49:28:b0:7e:fb:a2:d4:e4:04:b2:d4:
f6:96:b0:07:ee:5b:cc:dc:a6:8f:ef:09:51:43:10:
f6:9c:9c:46:c4:85:a5:3e:53:e3:4a:40:5e:86:d2:
8a:47:53:65:f9:c6:62:2a:71:1a:37:88:63:02:bb:
36:6f:b8:03:32:3c:b2:54:77:4c:26:fa:87:4f:65:
a1:30:49:41:e1:1a:01:03:42:90:96:ad:48:a9:d4:
ab:18:de:75:ca:b6:1c:1b:7e:4a:92:8e:14:a3:28:
c9:9b:c6:40:bb:4c:96:68:9f:d4:29:55:00:f2:e7:
a7:1b:1e:85:50:f6:a1:00:59:50:a7:0c:e2:22:d5:
f6:ad:54:44:89:68:a1:28:0b:75:30:af:62:2d:55:
e1:d0:e5:32:92:c2:61:07:cc:13:58:93:56:ab:f5:
8e:9e:38:77:28:eb:84:d7:b2:82:ab:48:8c:ce:6e:
75:84:8d:d7:d2:1f:ef:9e:b1:1b:a6:40:1a:6c:98:
77:d4:56:61:6c:70:7b:59:27:cf:5a:f9:f3:59:3e:
20:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:08:B5:1E:EC:8E:22:6F:A9:0C:D4:D7:06:2E:D2:0D:E3:0C:BF:9E
X509v3 Authority Key Identifier:
keyid:DB:E6:AB:8E:0C:46:E8:41:B4:4D:2B:9C:6B:03:BB:65:F5:62:1D:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2-arjgxG6EG0TSucawO7ZfViHbE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/96436c-f6fa-40ba-a27c-fb1030651067/1/Hgi1HuyOIm-pDNTXBi7SDeMMv54.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/96436c-f6fa-40ba-a27c-fb1030651067/1/2-arjgxG6EG0TSucawO7ZfViHbE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:ca81:b00b::/48
Signature Algorithm: sha256WithRSAEncryption
c7:8f:ab:30:3e:d3:ed:89:9b:ad:26:59:02:72:05:e6:09:e5:
7f:15:8e:23:14:25:de:52:5f:e3:38:ba:01:69:8f:0e:7b:47:
1d:60:02:96:e6:51:d6:b0:c3:d0:5a:cc:dd:23:63:24:63:97:
35:08:3f:00:37:23:7e:1d:9b:f9:cc:16:fa:22:d9:1d:03:1d:
73:98:73:f1:09:46:40:a2:ca:ee:86:0d:ed:04:98:9e:dd:ca:
dc:50:86:c0:27:3f:43:5c:a0:19:81:d4:9c:c7:32:71:47:8f:
bd:21:d7:09:85:d0:4c:3f:2d:28:8a:48:a5:f4:72:9c:7f:d7:
fc:db:27:bc:cb:49:7b:ce:cb:f8:d9:af:e9:f1:b7:a5:b3:16:
2b:37:bc:0e:88:53:8e:96:fc:07:ee:0f:ea:96:cb:d4:63:20:
6e:56:2c:72:ea:9e:98:8b:5b:14:35:31:08:3b:cc:e9:f6:e2:
2b:20:1f:73:73:1d:d9:1a:f7:63:67:07:bc:b3:e7:7e:d6:d8:
d6:0b:01:69:13:66:f0:90:3f:29:3f:9b:40:42:d2:3c:b2:85:
f9:ec:5b:80:1e:51:6e:25:39:58:7d:3b:7c:79:35:63:38:ac:
ca:fe:1b:e6:f9:75:52:50:6e:0f:49:a5:05:f5:80:4d:c1:af:
aa:36:12:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 18:23:30 2025 by rpki-client