Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/d73fc6-c498-4b20-a91c-656fc7f7023c/1/OHyz0yCihOyYZELcx_eXaVTeTj8.roa
File: OHyz0yCihOyYZELcx_eXaVTeTj8.roa (raw, json)
Hash identifier: hh10KBiSSdE2vx4cx18arLN2/pV/Y4yXBQ4rOBuQMKc=
Subject key identifier: 38:7C:B3:D3:20:A2:84:EC:98:64:42:DC:C7:F7:97:69:54:DE:4E:3F
Certificate issuer: /CN=c9da628824cd59b14272b4058a89642e4b47bddc
Certificate serial: 019420681A74BB40AE0F72D0EE8F0B08CF86
Authority key identifier: C9:DA:62:88:24:CD:59:B1:42:72:B4:05:8A:89:64:2E:4B:47:BD:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydpiiCTNWbFCcrQFiolkLktHvdw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/d73fc6-c498-4b20-a91c-656fc7f7023c/1/OHyz0yCihOyYZELcx_eXaVTeTj8.roa
Signing time: Wed 01 Jan 2025 05:48:00 +0000
ROA not before: Wed 01 Jan 2025 05:48:00 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 6805
IP address blocks: 2001:67c:19e0::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:68:1a:74:bb:40:ae:0f:72:d0:ee:8f:0b:08:cf:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9da628824cd59b14272b4058a89642e4b47bddc
Validity
Not Before: Jan 1 05:48:00 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=387cb3d320a284ec986442dcc7f7976954de4e3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:b0:bc:6d:fe:78:01:c4:d7:f4:8e:12:5b:49:
18:fd:21:ad:75:62:93:d5:08:44:4b:c6:71:03:a2:
cf:ff:28:c8:8a:97:e0:3c:bd:a3:75:b5:80:5b:38:
6f:86:b6:83:f0:71:32:4b:06:04:ea:40:27:34:2e:
8a:62:15:1a:cc:ac:1d:18:ad:c2:1f:96:36:c4:63:
c1:e8:67:a2:35:00:70:bc:ae:47:31:83:f4:10:f7:
14:18:ea:7f:15:2c:c9:92:07:61:fb:5c:96:0a:e4:
16:e3:bf:63:51:90:2a:71:18:28:8e:b4:a5:71:5a:
81:1b:57:00:d7:fa:31:c6:ae:7c:0e:c3:4c:c7:ee:
52:04:b8:18:3c:1b:85:6c:be:48:a1:ff:08:a9:7b:
97:55:86:c4:1b:1c:cc:07:1a:08:ea:fc:b1:24:ee:
e8:39:0c:2a:2b:7f:c1:b6:f0:93:3e:14:88:8c:a9:
39:12:94:ca:f3:45:de:0b:51:bd:b4:c0:cd:d6:93:
ba:74:95:45:b5:19:13:e4:aa:da:5e:82:e8:98:90:
09:a2:bf:cb:29:6c:b2:bf:37:e9:99:b1:49:7e:f4:
25:7e:93:11:17:0c:df:64:3f:19:89:94:34:45:e9:
c1:1c:4d:f2:77:ae:49:9a:8e:59:27:2b:71:8b:80:
91:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:7C:B3:D3:20:A2:84:EC:98:64:42:DC:C7:F7:97:69:54:DE:4E:3F
X509v3 Authority Key Identifier:
keyid:C9:DA:62:88:24:CD:59:B1:42:72:B4:05:8A:89:64:2E:4B:47:BD:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydpiiCTNWbFCcrQFiolkLktHvdw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/d73fc6-c498-4b20-a91c-656fc7f7023c/1/OHyz0yCihOyYZELcx_eXaVTeTj8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/d73fc6-c498-4b20-a91c-656fc7f7023c/1/ydpiiCTNWbFCcrQFiolkLktHvdw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:19e0::/48
Signature Algorithm: sha256WithRSAEncryption
02:0e:c0:fd:1c:40:0f:3e:3b:3e:55:4e:5f:c6:db:66:72:0d:
71:82:d7:43:15:a7:7f:55:19:22:f4:db:c9:77:49:95:b7:36:
a9:ba:8b:c0:53:8e:6e:dc:75:6f:ea:55:6f:44:1c:12:2b:6f:
99:7c:0a:c9:2e:00:3d:e2:37:eb:ba:7d:43:1b:97:f9:c5:fb:
4a:fe:4a:1b:7e:de:16:ac:3a:dd:e4:32:1e:22:af:2b:c6:95:
fd:04:de:38:b9:c8:1c:26:be:67:56:a3:e9:9e:28:d2:87:4b:
48:61:10:47:4a:6d:9b:e4:b1:fd:da:f4:3a:d8:d7:08:36:2f:
37:c1:94:5d:13:a2:80:ab:4d:61:3c:30:29:fc:7f:67:e1:9e:
b3:12:d0:ac:2d:7f:01:ba:a0:50:c0:3f:05:e8:99:3b:98:92:
44:80:42:a0:d3:46:7c:24:1b:82:b3:c3:0c:ba:2c:bf:15:ac:
f4:5a:7a:37:06:df:72:85:7c:2c:8e:be:12:72:c8:a5:ca:3e:
9b:38:6d:c5:16:2f:39:b4:9f:3a:96:57:ef:8f:15:04:58:87:
b6:8a:b3:7d:fc:95:df:b8:2b:6b:c7:39:87:fa:de:9c:d2:41:
e0:b0:8b:7c:fa:e5:95:08:fc:6e:ca:9f:9e:7c:5e:ce:2a:1a:
2f:21:76:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 03:56:49 2025 by rpki-client