Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/fa81f4-6600-4079-93c5-4897261ba46b/1/hDr7XZdy7Zu__1e0bkoorUALVGI.roa
File: hDr7XZdy7Zu__1e0bkoorUALVGI.roa (raw, json)
Hash identifier: Ah9s+DUMovObb0WEEgnVu12bFf+2vlp0mJLr4ANjGq0=
Subject key identifier: 84:3A:FB:5D:97:72:ED:9B:BF:FF:57:B4:6E:4A:28:AD:40:0B:54:62
Certificate issuer: /CN=9665c8110d0dd86a7ebb0938aa32e09d1db122f6
Certificate serial: 019421B22FCE8EF793F9F5B2B35A6E273095
Authority key identifier: 96:65:C8:11:0D:0D:D8:6A:7E:BB:09:38:AA:32:E0:9D:1D:B1:22:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lmXIEQ0N2Gp-uwk4qjLgnR2xIvY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/fa81f4-6600-4079-93c5-4897261ba46b/1/hDr7XZdy7Zu__1e0bkoorUALVGI.roa
Signing time: Wed 01 Jan 2025 11:48:33 +0000
ROA not before: Wed 01 Jan 2025 11:48:33 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 210466
IP address blocks: 2001:67c:2b64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b2:2f:ce:8e:f7:93:f9:f5:b2:b3:5a:6e:27:30:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9665c8110d0dd86a7ebb0938aa32e09d1db122f6
Validity
Not Before: Jan 1 11:48:33 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=843afb5d9772ed9bbfff57b46e4a28ad400b5462
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:09:64:a9:32:97:9c:16:fc:d0:91:b5:56:bd:
a7:0d:49:67:63:04:ac:30:58:5d:0c:c0:af:e2:20:
c8:ed:22:b9:e4:c2:12:8f:51:33:2b:43:ea:78:6e:
9a:2a:8e:cf:c3:77:98:81:87:6c:9e:b5:87:41:04:
85:18:6d:71:2a:16:d4:e4:6d:49:fc:0c:26:62:68:
fe:e6:02:da:ef:78:7a:ed:6e:1e:42:a0:0a:e2:f8:
f2:4d:81:45:3f:71:5d:a6:ea:b3:5c:e6:7f:1d:62:
d6:4c:1d:e0:ef:97:35:ea:70:ff:2b:5d:67:00:c4:
ed:18:d0:d9:dd:42:c9:3c:04:30:0d:f5:33:a2:ba:
b0:8f:a0:d9:7b:90:b7:c2:9e:90:46:a3:a9:cb:64:
4e:de:3c:dd:38:f9:71:9c:38:ac:e2:9f:0c:36:08:
47:27:08:e2:11:68:7c:c2:a1:4d:fd:b6:8c:e8:8a:
9e:2a:fb:8e:98:e0:9d:3b:6c:99:e1:0d:23:6e:1d:
73:ed:ef:61:8f:d9:99:3f:a9:ee:ae:e2:e3:15:9c:
75:f6:c5:1f:a2:4e:9f:c2:8d:41:24:24:be:fd:38:
0a:0a:a7:7b:19:8a:12:75:2e:aa:e0:f9:dd:7a:df:
d8:cc:e5:80:12:72:f8:2b:03:f8:73:c8:57:2d:c2:
6a:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:3A:FB:5D:97:72:ED:9B:BF:FF:57:B4:6E:4A:28:AD:40:0B:54:62
X509v3 Authority Key Identifier:
keyid:96:65:C8:11:0D:0D:D8:6A:7E:BB:09:38:AA:32:E0:9D:1D:B1:22:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lmXIEQ0N2Gp-uwk4qjLgnR2xIvY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/fa81f4-6600-4079-93c5-4897261ba46b/1/hDr7XZdy7Zu__1e0bkoorUALVGI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/fa81f4-6600-4079-93c5-4897261ba46b/1/lmXIEQ0N2Gp-uwk4qjLgnR2xIvY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2b64::/48
Signature Algorithm: sha256WithRSAEncryption
7a:a2:f9:b5:51:a6:7b:1d:64:f5:43:db:fd:99:e8:47:39:d6:
b2:74:7a:51:5d:22:23:ad:3b:be:4a:11:38:d7:6f:43:4e:bb:
de:3a:54:a4:3b:65:fc:c7:2f:87:45:53:1d:32:69:74:ac:36:
e2:22:97:2a:13:7d:38:79:8a:ee:49:44:f1:0e:8f:4f:d5:7b:
b8:43:79:be:13:60:1e:7a:38:77:95:f5:26:63:c9:88:7a:c5:
b4:46:67:e0:6c:e5:e6:4d:c7:ea:3d:c3:21:e9:cb:6e:c2:e9:
bb:e2:eb:3f:97:f3:c1:67:c3:6a:dc:4a:21:33:df:57:0d:fd:
dc:6c:ef:eb:1e:d0:62:0f:8c:b0:e3:dc:4f:49:a9:e1:8e:c6:
39:3d:fb:e0:de:7d:8d:fc:a6:0f:b0:39:51:3c:e9:97:10:e8:
ba:b6:f7:fb:6a:e5:97:83:10:2e:3e:f0:9b:8d:c8:fa:2a:e3:
e8:c9:51:eb:1a:ea:ab:7b:07:27:67:63:cb:f5:b9:d7:ca:77:
f9:13:9e:e8:a8:bc:6b:4d:95:c2:2d:74:e0:93:77:69:a4:c6:
f6:70:93:2d:ac:67:55:bc:e8:31:38:c3:e8:70:5e:b7:6e:8c:
5e:e7:b7:18:2d:ca:a2:c3:02:9b:87:d8:bf:40:92:72:72:7f:
65:19:f0:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 03:12:40 2025 by rpki-client