Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/32e7dc-bd1a-425b-9ee1-01de2598629f/1/r83L7OIPgpmSMJpNSMSXdgaLiRs.roa
File: r83L7OIPgpmSMJpNSMSXdgaLiRs.roa (raw, json)
Hash identifier: slVjkbXJhUz+TxlsnWw1HgNezux1izpl/y1LfUZYq1c=
Subject key identifier: AF:CD:CB:EC:E2:0F:82:99:92:30:9A:4D:48:C4:97:76:06:8B:89:1B
Certificate issuer: /CN=fb7548da38beb1ce72f8a6933b31da5b5c654834
Certificate serial: 018E564F5B7FFE7C49B1266907F12B1F0473
Authority key identifier: FB:75:48:DA:38:BE:B1:CE:72:F8:A6:93:3B:31:DA:5B:5C:65:48:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-3VI2ji-sc5y-KaTOzHaW1xlSDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/32e7dc-bd1a-425b-9ee1-01de2598629f/1/r83L7OIPgpmSMJpNSMSXdgaLiRs.roa
Signing time: Tue 19 Mar 2024 10:43:45 +0000
ROA not before: Tue 19 Mar 2024 10:43:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212895
IP address blocks: 2001:67c:e3c::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:56:4f:5b:7f:fe:7c:49:b1:26:69:07:f1:2b:1f:04:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb7548da38beb1ce72f8a6933b31da5b5c654834
Validity
Not Before: Mar 19 10:43:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=afcdcbece20f829992309a4d48c49776068b891b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:be:57:24:51:15:5b:c3:7f:e7:89:d7:d2:84:
81:68:bb:23:4a:68:77:87:4f:3b:63:b5:9a:38:bd:
e4:ac:94:52:58:ae:3a:97:fc:cc:fa:69:4d:d8:e2:
77:db:5f:f8:e8:55:92:29:a5:b4:e1:99:4a:ac:28:
42:91:4f:c9:0a:df:dd:03:93:ce:b2:d4:3a:b8:80:
15:9b:34:d5:2f:30:51:fe:e7:39:7a:30:3c:9d:a9:
e6:97:d1:3f:3e:75:7a:14:a0:3c:07:3b:c5:7c:11:
ac:b6:c9:d3:b4:f5:df:1a:c5:f5:b1:31:fa:cb:34:
b9:66:5d:0e:65:b4:e9:39:64:b7:79:54:07:e4:40:
5f:ec:03:57:50:63:98:7f:62:46:b4:c7:86:5a:8b:
25:de:67:d4:ac:07:88:68:37:91:f8:33:bc:a8:d5:
02:71:d5:60:c2:63:d6:a1:e7:b5:19:e0:93:53:3b:
7a:38:2f:ad:68:dc:a0:68:83:c2:25:e8:14:01:15:
cf:9c:08:41:14:e7:3a:28:82:bc:6e:cd:77:cc:76:
5e:b0:c8:64:d6:1a:19:57:7f:d1:a1:99:3e:69:f5:
9c:f9:31:4d:2f:11:e7:01:26:4f:0d:63:5c:09:c2:
39:c8:71:5d:1b:32:f6:5c:9a:a3:6e:73:26:70:6e:
80:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:CD:CB:EC:E2:0F:82:99:92:30:9A:4D:48:C4:97:76:06:8B:89:1B
X509v3 Authority Key Identifier:
keyid:FB:75:48:DA:38:BE:B1:CE:72:F8:A6:93:3B:31:DA:5B:5C:65:48:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-3VI2ji-sc5y-KaTOzHaW1xlSDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/32e7dc-bd1a-425b-9ee1-01de2598629f/1/r83L7OIPgpmSMJpNSMSXdgaLiRs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/32e7dc-bd1a-425b-9ee1-01de2598629f/1/1-3VI2ji-sc5y-KaTOzHaW1xlSDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:e3c::/48
Signature Algorithm: sha256WithRSAEncryption
1d:e4:86:f6:27:be:23:b5:e6:ef:78:e6:e0:bb:ff:af:1b:73:
5b:6e:81:a9:e1:ad:62:71:5a:32:c5:b7:db:b8:ec:5a:f9:c4:
b5:6e:da:30:9d:1b:f0:c5:a2:e8:a0:39:dd:f4:24:98:d7:83:
b4:14:69:33:29:c8:3b:3b:78:4c:44:da:e1:0e:74:26:4c:04:
cd:64:22:df:18:fb:a6:dd:1e:98:bc:05:43:ab:08:ad:23:5a:
41:9c:fa:01:3d:38:4f:03:2c:ec:80:95:1d:fa:8e:bf:b2:04:
65:90:1d:3d:35:75:d1:e8:d6:88:99:a8:d7:1f:f8:ae:5f:d9:
97:c8:e5:b8:1e:39:8a:cd:e7:c6:f2:1e:9d:e4:f0:e3:6c:18:
d1:a9:b9:f7:7e:b1:46:81:20:34:03:b0:7e:da:41:0e:fd:3e:
4b:fe:61:32:2e:81:09:96:fa:28:1d:61:81:d2:64:c1:0b:fa:
e4:49:39:9a:6c:cc:d7:15:ab:42:14:c8:1e:08:0e:a4:03:4d:
fb:1a:93:68:9c:72:22:22:a8:f8:2f:3d:5d:9d:4d:34:71:dd:
48:09:af:07:0c:41:ee:36:c7:49:57:57:ef:b5:00:ba:b2:24:
28:c5:28:6a:76:b3:77:fc:24:ee:b9:8c:6f:65:46:de:35:60:
ef:1b:6c:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:31:48 2025 by rpki-client