Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/AQvnwjdpCCJVGghqg0nwe9L0mVk.roa
File: AQvnwjdpCCJVGghqg0nwe9L0mVk.roa (raw, json)
Hash identifier: lmMkrxQHgFH9/tCkdiNxxBNSfZZ+AeKUjyZG6YnOW/4=
Subject key identifier: 01:0B:E7:C2:37:69:08:22:55:1A:08:6A:83:49:F0:7B:D2:F4:99:59
Certificate issuer: /CN=b691d00bdb626ae57307d5cd4e8addd9475680b3
Certificate serial: 019420686DB3E757897177BC14FF0BE7245F
Authority key identifier: B6:91:D0:0B:DB:62:6A:E5:73:07:D5:CD:4E:8A:DD:D9:47:56:80:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tpHQC9tiauVzB9XNTord2UdWgLM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/AQvnwjdpCCJVGghqg0nwe9L0mVk.roa
Signing time: Wed 01 Jan 2025 05:48:22 +0000
ROA not before: Wed 01 Jan 2025 05:48:22 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 207583
IP address blocks: 2001:67c:2d34::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:68:6d:b3:e7:57:89:71:77:bc:14:ff:0b:e7:24:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b691d00bdb626ae57307d5cd4e8addd9475680b3
Validity
Not Before: Jan 1 05:48:22 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=010be7c237690822551a086a8349f07bd2f49959
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:b8:b3:a6:62:90:5e:34:70:56:e5:f8:ad:88:
78:06:e3:51:fa:2d:1e:1a:62:73:b1:ff:77:1d:ed:
0b:55:e3:c2:0f:4c:de:81:3b:31:52:00:66:53:77:
e0:02:cb:05:70:e3:d0:87:db:87:65:95:04:24:fa:
55:03:c2:da:fb:bb:d3:dc:e7:6d:73:81:59:0f:44:
c7:66:d9:5f:f7:0f:04:db:09:ae:8d:92:53:79:f2:
86:4d:82:8e:a7:d4:46:fc:88:66:87:b2:e1:dd:16:
b3:f4:22:cc:ce:55:ae:4f:b7:8d:84:bc:54:d2:51:
ea:da:06:49:bd:b4:c1:57:09:5c:65:65:76:54:a0:
7b:22:2c:8a:44:9e:75:82:6a:6e:9f:3d:53:b9:b0:
14:bd:01:d1:13:91:10:02:2d:5a:df:2e:3b:09:2f:
35:67:bf:dd:b9:5c:26:cb:6e:1b:95:e8:a4:69:b2:
f2:00:e3:aa:b8:1b:46:be:af:ed:64:34:38:48:e3:
c8:64:47:86:45:f9:68:0c:12:2d:4c:0b:03:2c:1c:
ee:87:6d:f8:b9:be:ee:c8:4a:35:15:92:0b:7f:4c:
cc:fd:80:8e:51:cf:16:78:27:c2:1d:90:fc:dc:c5:
14:96:27:ad:a7:0f:1f:8b:62:54:f5:60:43:6e:d4:
72:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:0B:E7:C2:37:69:08:22:55:1A:08:6A:83:49:F0:7B:D2:F4:99:59
X509v3 Authority Key Identifier:
keyid:B6:91:D0:0B:DB:62:6A:E5:73:07:D5:CD:4E:8A:DD:D9:47:56:80:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tpHQC9tiauVzB9XNTord2UdWgLM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/AQvnwjdpCCJVGghqg0nwe9L0mVk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2d34::/48
Signature Algorithm: sha256WithRSAEncryption
49:cb:84:8d:e6:ad:99:a0:03:8f:56:ff:09:f3:19:47:84:cb:
1b:92:6f:07:d4:d7:da:7e:14:31:63:4f:34:77:c3:04:e4:ce:
66:85:f7:e7:4e:e7:bb:af:1e:ee:d3:8a:ff:d1:00:39:a3:4a:
02:18:54:b7:3c:4b:cf:65:51:05:2d:8b:75:2f:4f:cf:f9:c4:
e7:4c:4e:6e:ed:08:7f:5c:1a:04:fa:69:4a:3f:f0:c0:a2:00:
6d:92:f9:9a:81:4b:88:5f:39:3e:e5:33:4e:fc:a5:7f:0d:5d:
2a:85:62:37:8b:76:e6:46:56:25:57:64:0d:86:64:ec:70:03:
ca:d0:e9:86:92:d4:90:3e:76:d7:8f:dc:6a:b5:01:95:c9:bf:
5b:c6:21:28:85:4f:da:51:dd:a2:9b:8f:a3:50:78:47:42:6b:
c9:92:aa:81:42:97:0b:c6:7b:4d:49:e7:28:d5:65:e6:1e:d1:
b5:65:8f:11:2b:55:a5:e9:2e:f6:ff:25:fd:5d:fa:dd:3d:10:
94:db:82:c7:fe:27:b0:57:08:ad:62:a1:36:12:4b:4e:ec:91:
e1:df:38:a1:9b:cf:b1:45:23:64:2b:6a:13:48:3d:6c:da:d6:
ef:e3:5e:86:5d:78:94:be:53:6d:3b:1a:4b:f3:3d:fe:7d:38:
8f:52:cf:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 14:22:03 2025 by rpki-client