Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/d73fc6-c498-4b20-a91c-656fc7f7023c/1/O_iQtcfGegqJT45Rax7efqPp2Jk.roa
File: O_iQtcfGegqJT45Rax7efqPp2Jk.roa (raw, json)
Hash identifier: BUrfaVohuc/Gdz/TrWFm+d3l6jKAoDirWJgzHBScGZY=
Subject key identifier: 3B:F8:90:B5:C7:C6:7A:0A:89:4F:8E:51:6B:1E:DE:7E:A3:E9:D8:99
Certificate issuer: /CN=c9da628824cd59b14272b4058a89642e4b47bddc
Certificate serial: 019420681ABCAD3E9F43622018C33692BC34
Authority key identifier: C9:DA:62:88:24:CD:59:B1:42:72:B4:05:8A:89:64:2E:4B:47:BD:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydpiiCTNWbFCcrQFiolkLktHvdw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/d73fc6-c498-4b20-a91c-656fc7f7023c/1/O_iQtcfGegqJT45Rax7efqPp2Jk.roa
Signing time: Wed 01 Jan 2025 05:48:01 +0000
ROA not before: Wed 01 Jan 2025 05:48:01 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 15404
IP address blocks: 2001:67c:19e0::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:68:1a:bc:ad:3e:9f:43:62:20:18:c3:36:92:bc:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9da628824cd59b14272b4058a89642e4b47bddc
Validity
Not Before: Jan 1 05:48:01 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3bf890b5c7c67a0a894f8e516b1ede7ea3e9d899
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:34:67:c4:4a:2a:61:16:88:70:a5:99:da:6e:
d0:a0:b4:45:2e:db:70:f0:00:17:79:ee:5f:c0:38:
34:1b:e7:71:52:b2:08:5e:bb:be:b0:77:91:0e:a1:
10:46:6a:18:3e:db:23:86:89:f7:3d:90:9f:92:f5:
41:93:83:1a:36:6c:26:60:72:b3:38:8d:86:72:57:
8a:19:5b:a2:31:fa:86:1b:c6:99:fe:53:ff:03:04:
42:4f:02:2c:a4:af:83:63:ab:ca:3a:95:0d:cd:51:
44:21:9a:3f:c1:a2:e6:b3:63:aa:de:b8:cb:21:61:
80:6b:e9:6e:4a:eb:49:79:7d:5a:f8:5d:07:a1:04:
1a:28:b0:91:c0:8a:34:70:fd:21:11:32:37:87:17:
dd:e7:6c:20:05:2e:42:1c:32:90:f2:ae:45:bf:f9:
f1:74:a1:5a:52:ed:c0:3a:2c:d5:fc:b2:3c:a4:a0:
a2:b3:b9:33:fd:fb:07:fe:e3:80:d7:ee:b9:ad:b2:
84:0f:c2:cd:7a:02:1c:39:75:e2:c3:08:13:c9:d8:
20:9c:d1:44:b0:13:d2:ea:59:6b:c1:ea:48:06:c1:
46:0d:e3:6f:a4:33:da:88:5e:b6:bf:a5:64:39:96:
ff:14:55:72:c8:04:fa:62:94:d4:51:8c:ee:cb:ef:
cb:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:F8:90:B5:C7:C6:7A:0A:89:4F:8E:51:6B:1E:DE:7E:A3:E9:D8:99
X509v3 Authority Key Identifier:
keyid:C9:DA:62:88:24:CD:59:B1:42:72:B4:05:8A:89:64:2E:4B:47:BD:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydpiiCTNWbFCcrQFiolkLktHvdw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/d73fc6-c498-4b20-a91c-656fc7f7023c/1/O_iQtcfGegqJT45Rax7efqPp2Jk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/d73fc6-c498-4b20-a91c-656fc7f7023c/1/ydpiiCTNWbFCcrQFiolkLktHvdw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:19e0::/48
Signature Algorithm: sha256WithRSAEncryption
98:54:71:d7:b8:c7:ba:83:08:e3:6b:50:a1:da:4a:47:0d:cb:
a4:95:23:68:24:89:53:9b:9c:19:81:4c:95:59:cb:86:c6:48:
ed:a1:ac:49:97:ec:bb:d5:3e:91:48:f6:50:dc:6d:cd:31:05:
ee:a0:5d:b2:b6:8c:d8:a5:d2:54:ba:19:a9:5b:ec:f4:66:ca:
f8:c7:f6:91:4f:16:4f:c0:33:bd:02:16:81:8e:20:ce:35:97:
92:e2:45:9e:b1:3c:e7:9b:67:d3:c6:e4:a0:39:67:60:b5:a2:
fe:c1:00:ad:60:be:c3:d5:27:c4:63:35:5a:1a:1f:a6:13:70:
7d:8c:f1:77:e9:e0:ac:a3:04:0c:0c:7c:21:22:d3:17:fc:69:
e2:a2:c0:bb:d4:18:29:cc:f9:8b:95:9b:60:67:2b:ae:92:c6:
4f:2a:58:94:bb:a4:e9:77:0f:37:04:b5:aa:d5:5d:0c:be:12:
34:03:fe:12:49:7a:24:31:57:80:6d:1f:41:e7:98:94:84:7d:
0e:e4:6f:34:24:b9:0b:3f:c2:c0:ce:c2:fc:e1:f3:da:d1:25:
e1:d0:25:a1:0c:da:03:a8:39:61:c5:30:04:aa:8b:6f:61:78:
a3:59:52:d5:96:ba:bd:a9:81:2c:31:18:68:6a:40:e1:2d:f8:
4e:6f:fc:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 03:52:49 2025 by rpki-client