Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9337ec-b4de-449a-b607-ea9cb527ae71/1/4OlXHZjPNi_ZrlyOHLrnACz2H5w.roa
File: 4OlXHZjPNi_ZrlyOHLrnACz2H5w.roa (raw, json)
Hash identifier: WcKTWMqR73pqlk4NefweGCzhLoO2KaXXmg8w4iimJxY=
Subject key identifier: E0:E9:57:1D:98:CF:36:2F:D9:AE:5C:8E:1C:BA:E7:00:2C:F6:1F:9C
Certificate issuer: /CN=8dd09817dfea4c66c9418f9f3906f1d0e07cc9d4
Certificate serial: 0194282607A76D9EE12367269D72005F9857
Authority key identifier: 8D:D0:98:17:DF:EA:4C:66:C9:41:8F:9F:39:06:F1:D0:E0:7C:C9:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jdCYF9_qTGbJQY-fOQbx0OB8ydQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9337ec-b4de-449a-b607-ea9cb527ae71/1/4OlXHZjPNi_ZrlyOHLrnACz2H5w.roa
Signing time: Thu 02 Jan 2025 17:52:48 +0000
ROA not before: Thu 02 Jan 2025 17:52:48 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212464
IP address blocks: 2001:67c:2be0::/48 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:26:07:a7:6d:9e:e1:23:67:26:9d:72:00:5f:98:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8dd09817dfea4c66c9418f9f3906f1d0e07cc9d4
Validity
Not Before: Jan 2 17:52:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e0e9571d98cf362fd9ae5c8e1cbae7002cf61f9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:19:5f:17:bc:0d:79:ca:b6:90:3d:26:cc:77:
29:8e:2e:ab:3d:9e:bf:84:f0:99:67:71:66:36:86:
e2:07:ae:1e:ef:f8:6b:e1:8a:04:72:b9:5d:57:71:
9a:44:70:bf:fb:b6:e1:d3:18:68:0a:7d:ea:e9:30:
b2:89:a0:75:1f:bf:83:0b:16:08:4d:71:cb:b7:a5:
ca:0a:e8:f9:49:07:3d:dc:02:18:63:5c:85:14:4f:
c6:bd:0e:9f:48:ec:1e:78:7a:0c:15:5d:c7:fe:d3:
38:4f:08:bd:86:b4:cf:75:1e:3f:ca:f7:a1:a7:04:
52:94:b1:bf:13:ae:1d:ea:01:76:38:08:f9:24:f1:
5b:3b:bc:11:84:95:96:17:41:cb:b1:89:e1:76:41:
d9:ba:84:81:fc:22:33:63:70:86:26:0f:7d:1c:d1:
8c:ef:c3:fa:21:88:a1:4a:0c:10:e5:0e:e6:f1:fa:
20:73:e3:36:14:ab:df:d2:53:25:a3:47:75:59:51:
0d:c9:e5:44:7e:ad:00:44:1c:8b:ea:a6:11:ff:5e:
6a:01:c9:e7:d9:e6:7a:03:1d:cf:71:22:d1:a1:2f:
bc:84:6b:95:07:08:83:ca:18:6d:5b:81:5a:ec:6a:
1b:18:08:21:f0:9a:af:cb:d8:43:95:93:e3:a5:0e:
4c:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:E9:57:1D:98:CF:36:2F:D9:AE:5C:8E:1C:BA:E7:00:2C:F6:1F:9C
X509v3 Authority Key Identifier:
keyid:8D:D0:98:17:DF:EA:4C:66:C9:41:8F:9F:39:06:F1:D0:E0:7C:C9:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jdCYF9_qTGbJQY-fOQbx0OB8ydQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9337ec-b4de-449a-b607-ea9cb527ae71/1/4OlXHZjPNi_ZrlyOHLrnACz2H5w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9337ec-b4de-449a-b607-ea9cb527ae71/1/jdCYF9_qTGbJQY-fOQbx0OB8ydQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2be0::/48
Signature Algorithm: sha256WithRSAEncryption
e5:bb:69:79:8b:f6:71:a6:fd:aa:19:77:6b:78:41:33:fc:05:
6f:62:41:f3:a1:3b:e5:77:6a:23:c9:32:44:dd:83:c6:ed:b3:
57:06:ef:c9:4e:d7:b8:eb:ac:2f:f4:78:06:8f:b4:18:bf:b6:
83:b7:91:c2:00:3e:a5:1f:09:95:6e:35:31:5f:29:76:dd:6b:
94:f0:3d:f7:dd:3f:fd:df:83:1d:df:68:42:61:e2:dc:12:53:
bf:5d:d3:3b:5d:a9:60:80:2e:bd:66:c0:14:ba:0f:9b:63:c3:
be:d1:49:44:f0:88:cf:ba:3a:15:72:df:43:1c:db:a4:be:0a:
b0:c4:9e:d6:76:76:c7:82:c5:a0:2b:e3:4f:d5:74:07:ab:4b:
d8:fe:a0:2b:71:13:f8:3c:a4:3e:db:fc:ea:be:a8:36:71:e7:
e2:b0:77:50:5b:4b:df:c3:0f:a6:44:b8:a7:ee:61:48:98:14:
57:1f:73:9c:f9:be:e2:df:1d:02:4f:6d:48:e0:0b:cd:64:4e:
ed:e1:81:4a:ef:5b:9c:cd:b9:b0:b4:a4:f4:70:18:82:5a:e3:
b9:2e:06:eb:bf:54:dc:38:e8:83:6f:26:dd:f9:64:0c:ad:f0:
72:f3:59:bd:1c:84:c5:f1:ec:7e:65:cd:1b:51:30:a5:31:21:
68:49:8b:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 14:45:51 2025 by rpki-client