Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/4bfdc5-08e5-49bc-8b23-4f6c351ca35a/1/zAtYgiSv3lzLdQ7BBPQ53TQsCu4.roa
File: zAtYgiSv3lzLdQ7BBPQ53TQsCu4.roa (raw, json)
Hash identifier: oWvGPGIfuR7zXnkTrpVSOOMAOW1y+zKMrxGu/T9zook=
Subject key identifier: CC:0B:58:82:24:AF:DE:5C:CB:75:0E:C1:04:F4:39:DD:34:2C:0A:EE
Certificate issuer: /CN=7660143814c34d292c75abcdb45f81819534edc1
Certificate serial: 019423691B6D38B09601C89CB1E07A6731AC
Authority key identifier: 76:60:14:38:14:C3:4D:29:2C:75:AB:CD:B4:5F:81:81:95:34:ED:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dmAUOBTDTSksdavNtF-BgZU07cE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/4bfdc5-08e5-49bc-8b23-4f6c351ca35a/1/zAtYgiSv3lzLdQ7BBPQ53TQsCu4.roa
Signing time: Wed 01 Jan 2025 19:47:58 +0000
ROA not before: Wed 01 Jan 2025 19:47:58 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 29478
IP address blocks: 2001:67c:14c8::/47 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:69:1b:6d:38:b0:96:01:c8:9c:b1:e0:7a:67:31:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7660143814c34d292c75abcdb45f81819534edc1
Validity
Not Before: Jan 1 19:47:58 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cc0b588224afde5ccb750ec104f439dd342c0aee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:29:c2:68:6c:d4:81:a3:83:31:38:26:11:10:
47:ed:38:e8:bd:b8:56:e3:dc:29:6e:73:68:8b:ca:
a4:bc:40:3a:d4:c2:b2:1a:90:95:ab:3b:a4:17:74:
03:0a:9a:ea:7d:cf:74:30:38:4f:09:17:89:91:2e:
ca:f4:cd:4c:f7:75:7a:a7:2c:a9:20:b0:56:90:1d:
36:ec:4e:c1:94:a0:7f:f5:39:c3:0b:4b:f8:47:a3:
6f:da:ed:b0:06:b9:2a:e4:62:3c:68:7f:86:e6:31:
4f:43:8c:a7:f4:bf:e3:22:2e:7e:89:65:a6:8f:c2:
06:05:3f:b5:91:d7:4b:2c:98:76:f8:9c:b2:ad:83:
83:d9:78:a4:27:68:9d:fb:c0:1d:3e:0b:6e:94:28:
10:73:89:df:49:a0:aa:61:9a:e5:17:dc:f2:28:63:
03:07:b1:56:80:64:2e:aa:67:b0:69:cc:02:5c:f2:
0d:ad:18:34:e7:75:ff:80:c2:59:49:af:3b:00:20:
42:0e:17:c7:4b:c1:61:1d:05:fa:fc:6b:af:f5:10:
72:18:57:81:68:47:5e:33:04:ff:36:d9:3c:a8:46:
a1:d0:40:f8:5f:a4:c4:aa:c2:89:ff:67:c2:65:e9:
10:1d:18:49:0a:a8:d7:22:42:35:25:b5:04:ce:f7:
08:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:0B:58:82:24:AF:DE:5C:CB:75:0E:C1:04:F4:39:DD:34:2C:0A:EE
X509v3 Authority Key Identifier:
keyid:76:60:14:38:14:C3:4D:29:2C:75:AB:CD:B4:5F:81:81:95:34:ED:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dmAUOBTDTSksdavNtF-BgZU07cE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/4bfdc5-08e5-49bc-8b23-4f6c351ca35a/1/zAtYgiSv3lzLdQ7BBPQ53TQsCu4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/4bfdc5-08e5-49bc-8b23-4f6c351ca35a/1/dmAUOBTDTSksdavNtF-BgZU07cE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:14c8::/47
Signature Algorithm: sha256WithRSAEncryption
18:6e:68:b2:ba:07:c7:67:0a:fd:fa:f2:49:2d:9f:7b:af:46:
1f:70:64:74:f7:17:72:e4:77:a0:7f:b2:42:67:11:9a:af:89:
40:b2:54:bf:e7:95:7a:72:c6:0c:9f:7f:ff:f3:74:95:d1:ba:
b3:82:6e:2f:83:fe:44:f3:d0:ad:f4:4d:76:a1:f1:e4:aa:dc:
d0:2a:5d:8a:64:3c:53:7d:ae:d3:66:d8:b8:2c:fd:94:08:96:
0d:97:e9:ad:da:e0:d5:86:bb:39:44:e8:34:90:a6:88:82:0f:
a5:2a:17:19:f3:af:a1:34:8b:a6:0d:63:c5:89:3e:da:86:b1:
56:13:c6:47:83:d5:a7:e2:f1:90:44:1f:9a:ad:80:b0:f2:c7:
1f:e5:12:0f:4d:5c:e7:21:5b:a4:5e:35:c3:03:8f:1b:60:e6:
8c:9b:4d:f9:94:9c:d6:b8:71:d6:78:9d:9c:86:70:c5:b9:09:
6e:fc:51:1f:d9:4e:bb:ba:02:aa:af:8d:5a:5c:f4:5b:d1:16:
94:1d:03:bb:fe:f7:4c:5e:80:69:65:ed:da:f0:c4:c2:e2:b2:
6e:6d:07:e0:31:b6:57:6e:f8:3a:50:fa:93:c2:b3:41:b6:04:
7b:7e:b9:45:7a:18:1f:23:8b:5d:63:80:fb:23:d7:35:5a:ab:
b0:45:8a:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 05:29:58 2025 by rpki-client