Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/8e08b3-487c-485a-9479-b084c73861b8/1/VEwZGvZC8CGE0lsKNB1ekuITOKI.roa
File: VEwZGvZC8CGE0lsKNB1ekuITOKI.roa (raw, json)
Hash identifier: ruqW88ZWJqaz7y+HRNbaxPPhfL3FKhp6ygNCnPCWApo=
Subject key identifier: 54:4C:19:1A:F6:42:F0:21:84:D2:5B:0A:34:1D:5E:92:E2:13:38:A2
Certificate issuer: /CN=321ec4626ecde25335aff088b04c71395ae6bc24
Certificate serial: 019427B4975027B003F74015478169B01729
Authority key identifier: 32:1E:C4:62:6E:CD:E2:53:35:AF:F0:88:B0:4C:71:39:5A:E6:BC:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mh7EYm7N4lM1r_CIsExxOVrmvCQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/8e08b3-487c-485a-9479-b084c73861b8/1/VEwZGvZC8CGE0lsKNB1ekuITOKI.roa
Signing time: Thu 02 Jan 2025 15:48:54 +0000
ROA not before: Thu 02 Jan 2025 15:48:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 39535
IP address blocks: 2a01:6c60:3000::/36 maxlen: 36
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b4:97:50:27:b0:03:f7:40:15:47:81:69:b0:17:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=321ec4626ecde25335aff088b04c71395ae6bc24
Validity
Not Before: Jan 2 15:48:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=544c191af642f02184d25b0a341d5e92e21338a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:07:d3:78:32:fd:ae:6f:a5:59:13:36:a0:4b:
bd:3c:3f:17:0c:b3:ea:a6:c4:af:6c:ea:e2:90:e4:
08:7f:33:4c:49:b4:cd:cb:58:dd:a5:69:f2:53:69:
50:40:3f:0a:73:6a:af:9d:ab:55:57:8c:3c:22:e4:
bb:32:72:d2:4f:4d:9c:76:28:92:b4:7d:73:1d:83:
f1:23:aa:60:4f:07:9b:eb:ef:48:09:cd:93:66:0f:
b5:25:c0:90:e3:83:e5:44:c2:6d:a1:30:c6:79:1d:
94:23:aa:6e:44:7f:fa:42:79:7a:1a:c8:7f:ab:44:
90:5c:5d:6a:38:47:a5:45:77:c9:7d:b4:d0:02:54:
2a:3d:6d:40:ad:e8:9f:e3:cf:31:88:e3:b6:6b:99:
4e:a4:ef:fc:32:3e:8d:f9:6f:74:5f:b7:78:6c:ff:
5d:b9:59:72:6c:b4:2a:aa:cd:e0:c7:53:10:01:7e:
ae:bf:2f:19:47:1a:09:10:28:a3:95:c9:31:e5:91:
d5:78:7f:ad:54:9d:23:75:92:90:8e:e3:b9:dd:ee:
52:e3:26:4d:c8:54:cf:dd:89:70:a4:75:78:a6:c6:
43:51:83:51:d6:10:66:52:7a:06:6e:f7:b0:82:e2:
45:b6:53:8b:9f:c4:45:b4:d2:ec:95:13:b7:15:78:
08:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:4C:19:1A:F6:42:F0:21:84:D2:5B:0A:34:1D:5E:92:E2:13:38:A2
X509v3 Authority Key Identifier:
keyid:32:1E:C4:62:6E:CD:E2:53:35:AF:F0:88:B0:4C:71:39:5A:E6:BC:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mh7EYm7N4lM1r_CIsExxOVrmvCQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/8e08b3-487c-485a-9479-b084c73861b8/1/VEwZGvZC8CGE0lsKNB1ekuITOKI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/8e08b3-487c-485a-9479-b084c73861b8/1/Mh7EYm7N4lM1r_CIsExxOVrmvCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:6c60:3000::/36
Signature Algorithm: sha256WithRSAEncryption
3e:a7:11:64:3e:d6:4e:85:ec:b0:ae:2f:9c:08:3b:d8:f6:87:
d5:f1:7e:ae:cd:63:19:8f:9b:a2:86:3c:79:26:98:13:0c:23:
b8:50:53:de:df:06:f1:99:55:0e:03:9f:f3:63:06:73:7c:25:
6f:cf:87:8f:a7:d6:29:ff:e3:a7:0e:1b:fb:34:ac:a8:ac:75:
a3:9e:51:f3:8e:b7:1c:f0:48:b0:fb:90:f5:67:bc:78:07:09:
c8:fe:4b:7d:9b:dc:77:e0:d5:ed:e5:3e:15:19:94:c2:bf:6d:
e4:93:e1:64:59:c9:17:c1:20:fa:f2:d5:ee:ea:e5:f7:05:29:
f8:3d:ff:69:42:52:61:ba:99:b1:45:1b:23:34:09:02:9e:87:
e3:a4:29:fa:50:bb:50:02:13:f8:0c:b2:b5:c4:a4:3e:f8:a7:
22:d5:07:68:5b:ec:a0:60:50:ce:e1:6e:0d:a5:1a:7e:96:7e:
28:14:58:47:5a:5a:5f:75:7a:ce:a0:94:95:b1:f8:1e:aa:bb:
4d:42:93:d7:84:e8:24:b2:9e:52:47:92:74:32:df:9e:57:d9:
2f:f0:7c:fd:94:70:e5:29:f7:eb:d4:bf:d3:3a:94:12:55:c3:
1a:94:da:42:91:bc:6d:d5:bf:39:5c:51:73:cc:5f:f5:02:32:
84:90:d1:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 01:54:45 2025 by rpki-client