Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/08cb2a-034b-47b6-b132-7f8ba96f5e49/1/2yeHS0iIkuHn83Pc5-EplLHcCYQ.roa
File: 2yeHS0iIkuHn83Pc5-EplLHcCYQ.roa (raw, json)
Hash identifier: kf8JlgWiWlnh6iS3QRDgrcCIPaCediQ682Z+VnmyMJ0=
Subject key identifier: DB:27:87:4B:48:88:92:E1:E7:F3:73:DC:E7:E1:29:94:B1:DC:09:84
Certificate issuer: /CN=93608a0cda0133f876ab9ad83fa37bcef62df2df
Certificate serial: 0194228D41568FA98AF731459FB74296079B
Authority key identifier: 93:60:8A:0C:DA:01:33:F8:76:AB:9A:D8:3F:A3:7B:CE:F6:2D:F2:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2CKDNoBM_h2q5rYP6N7zvYt8t8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/08cb2a-034b-47b6-b132-7f8ba96f5e49/1/2yeHS0iIkuHn83Pc5-EplLHcCYQ.roa
Signing time: Wed 01 Jan 2025 15:47:50 +0000
ROA not before: Wed 01 Jan 2025 15:47:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 210365
IP address blocks: 2001:67c:22cc::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:41:56:8f:a9:8a:f7:31:45:9f:b7:42:96:07:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93608a0cda0133f876ab9ad83fa37bcef62df2df
Validity
Not Before: Jan 1 15:47:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=db27874b488892e1e7f373dce7e12994b1dc0984
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:d0:c2:3c:e1:15:b1:27:14:55:7a:71:23:a1:
bd:73:23:af:43:c8:c8:5b:16:1c:ac:e8:87:5d:c2:
0a:5e:79:26:af:91:77:aa:a4:0b:84:bd:bb:4a:38:
ca:4b:c7:a4:27:62:76:ae:5a:85:9e:71:44:db:bf:
61:f6:c7:a2:fa:42:8e:e9:4d:67:c4:de:cc:e6:f9:
4d:0c:fd:a8:5d:05:bc:d2:89:0b:5c:b2:c9:a1:72:
50:5a:3a:80:17:62:b6:3d:9d:3b:d2:ab:40:71:3f:
c7:7f:b7:51:20:64:9c:3f:dd:73:16:36:f8:c0:96:
0c:19:b5:20:d6:f8:62:ce:83:cc:07:c4:a6:63:86:
b2:67:2d:61:de:17:61:3b:0e:6f:b6:3a:81:f2:36:
63:50:02:e9:91:6e:7c:ed:25:fb:14:83:66:09:85:
0d:75:2a:d8:2c:ff:1f:f4:05:68:fa:f4:73:e5:c9:
e7:e7:a7:7c:ef:bc:c0:5f:05:81:55:37:7e:4b:70:
9d:63:24:98:e8:c4:6c:e3:5a:12:59:ed:e9:4f:41:
10:29:dc:b1:32:99:4e:2c:0f:21:34:03:07:4a:9e:
b7:58:da:f6:43:dd:a5:2b:87:95:3d:1f:74:fa:11:
5c:87:81:06:06:8b:ba:64:66:ce:e6:27:01:be:5a:
76:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:27:87:4B:48:88:92:E1:E7:F3:73:DC:E7:E1:29:94:B1:DC:09:84
X509v3 Authority Key Identifier:
keyid:93:60:8A:0C:DA:01:33:F8:76:AB:9A:D8:3F:A3:7B:CE:F6:2D:F2:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2CKDNoBM_h2q5rYP6N7zvYt8t8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/08cb2a-034b-47b6-b132-7f8ba96f5e49/1/2yeHS0iIkuHn83Pc5-EplLHcCYQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/08cb2a-034b-47b6-b132-7f8ba96f5e49/1/k2CKDNoBM_h2q5rYP6N7zvYt8t8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:22cc::/48
Signature Algorithm: sha256WithRSAEncryption
01:90:51:38:38:7e:a6:7f:3e:5c:6c:4c:a3:36:50:4a:4a:52:
3f:2f:b8:d1:ce:64:21:22:b4:45:0d:cb:e7:82:78:8a:be:d3:
22:39:91:60:66:20:3f:a7:83:0b:36:ad:01:e4:66:cb:5a:ff:
ea:08:46:19:6d:da:8e:f9:41:c8:9e:ae:f6:9c:a0:22:b6:a4:
97:26:56:b0:9b:0b:cc:d1:09:74:53:a3:c6:8b:46:14:9d:63:
64:ba:c5:76:d8:4e:3f:0c:a4:80:28:06:ba:e4:05:8c:c4:85:
c3:46:85:fa:a6:ac:3b:ab:0f:b1:ba:c7:e0:5d:a1:6d:91:9c:
d2:da:ae:00:8c:c4:c1:33:3b:1e:e9:95:36:45:f3:b6:0d:34:
f7:37:9a:db:27:01:46:a8:64:2e:c7:61:e5:19:5f:9e:73:0f:
1d:bf:8a:c1:69:3d:50:11:a4:2a:07:2c:b1:8b:a0:64:07:15:
38:ee:1c:1c:e2:c5:c7:54:b8:d4:dc:ee:a1:0e:94:f5:5c:71:
56:09:99:a4:02:01:59:c2:73:78:db:61:94:eb:d0:20:51:56:
8a:e1:ec:5e:00:a8:88:88:0b:fc:af:d4:61:f9:76:f7:8b:4a:
f7:55:96:2c:13:40:8b:77:7b:3d:69:53:33:5f:77:43:54:52:
aa:e0:a4:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 11:44:30 2025 by rpki-client