Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/e4f5ec-efdc-4b00-8eb6-a048eb94d55b/1/WQ4j1_yKqIXJF1IuI-LnS3sUpac.roa
File: WQ4j1_yKqIXJF1IuI-LnS3sUpac.roa (raw, json)
Hash identifier: EWYzKqknIGgk4UuBxG0kxoiWyc4t1/vTDmYxSeebInE=
Subject key identifier: 59:0E:23:D7:FC:8A:A8:85:C9:17:52:2E:23:E2:E7:4B:7B:14:A5:A7
Certificate issuer: /CN=74e87431bebf703cc4e4a33106f4618a1a00a969
Certificate serial: 0194266B64F88B99E5DB63AE16461273F7C6
Authority key identifier: 74:E8:74:31:BE:BF:70:3C:C4:E4:A3:31:06:F4:61:8A:1A:00:A9:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dOh0Mb6_cDzE5KMxBvRhihoAqWk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/e4f5ec-efdc-4b00-8eb6-a048eb94d55b/1/WQ4j1_yKqIXJF1IuI-LnS3sUpac.roa
Signing time: Thu 02 Jan 2025 09:49:19 +0000
ROA not before: Thu 02 Jan 2025 09:49:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213343
IP address blocks: 2001:678:d18::/48 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:64:f8:8b:99:e5:db:63:ae:16:46:12:73:f7:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74e87431bebf703cc4e4a33106f4618a1a00a969
Validity
Not Before: Jan 2 09:49:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=590e23d7fc8aa885c917522e23e2e74b7b14a5a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:d4:ec:ed:1a:e0:30:d3:0e:2c:1c:24:15:e4:
90:9a:e1:c8:22:4a:f0:5f:8a:56:45:79:a6:dd:a2:
dc:49:6c:06:32:b7:52:34:09:10:67:67:70:2d:5a:
ba:71:b0:71:c8:a4:72:0c:1b:b6:96:12:a1:fe:19:
89:a4:c5:2e:3d:8f:f8:a3:3e:4e:fd:df:40:ff:c6:
84:9f:59:ce:65:94:81:30:ed:89:2c:ff:a7:8e:4c:
53:7f:12:b0:c8:6f:41:2b:8f:2c:2f:f2:90:41:14:
78:90:06:a5:d4:71:7e:77:e5:58:f0:e8:32:f0:d4:
b4:d5:22:85:e6:e1:02:46:f1:5e:08:68:d2:85:0d:
60:3d:63:07:c1:54:31:1b:77:db:ec:4e:93:ad:9b:
2e:48:cd:bc:f7:9b:08:17:a9:43:41:ba:d8:a5:da:
a7:a7:37:26:d3:df:61:27:84:4c:a4:70:de:c1:96:
03:59:aa:4b:4f:0b:27:03:08:1d:09:dd:54:0a:15:
b5:e7:65:b9:90:7c:4e:f5:2b:7b:9a:74:6c:01:82:
50:28:1e:ed:1c:49:42:aa:1f:a3:aa:e3:f9:23:35:
f8:ff:67:f3:c1:17:95:8c:26:a8:68:03:1a:ac:ff:
f7:84:f8:be:1e:f4:21:70:51:1d:f3:f6:30:58:53:
cf:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:0E:23:D7:FC:8A:A8:85:C9:17:52:2E:23:E2:E7:4B:7B:14:A5:A7
X509v3 Authority Key Identifier:
keyid:74:E8:74:31:BE:BF:70:3C:C4:E4:A3:31:06:F4:61:8A:1A:00:A9:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dOh0Mb6_cDzE5KMxBvRhihoAqWk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/e4f5ec-efdc-4b00-8eb6-a048eb94d55b/1/WQ4j1_yKqIXJF1IuI-LnS3sUpac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/e4f5ec-efdc-4b00-8eb6-a048eb94d55b/1/dOh0Mb6_cDzE5KMxBvRhihoAqWk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:d18::/48
Signature Algorithm: sha256WithRSAEncryption
a9:ff:42:62:16:78:44:b5:61:47:11:1b:ac:94:6f:c4:09:fe:
a6:bb:36:f0:5e:af:c4:37:00:33:a1:5b:6d:13:ca:de:dc:15:
d2:cd:bf:80:b8:a1:fa:83:b7:50:21:15:f6:c0:c3:d9:9e:b1:
f5:99:2b:99:f6:37:74:c9:d3:39:0c:f2:23:66:61:19:21:03:
ea:5e:76:e2:c7:ff:a9:ad:a4:a5:63:a2:ba:85:3b:2b:7e:32:
e5:e8:1b:27:32:3c:41:dc:ae:4a:67:0d:69:64:1e:25:f4:e1:
fd:90:68:aa:67:7e:a0:01:11:79:c1:21:66:8f:67:0d:fc:22:
92:e1:71:ee:03:7d:66:2c:2e:84:9b:a0:fe:7c:78:a1:42:5b:
4d:5a:94:f9:3a:54:05:62:95:ae:85:e3:92:0b:85:5d:55:41:
27:5c:c2:5d:be:46:83:b2:38:68:67:30:ce:d7:da:68:73:f0:
93:18:5b:ca:e4:ad:9b:e9:3a:ca:35:7c:6e:e6:f1:d1:43:b7:
9d:a3:34:9a:f9:bf:0b:4b:2b:b9:77:4d:95:79:00:7c:b7:71:
48:e2:1b:d3:50:35:0d:c3:a2:78:d7:62:67:75:33:3e:8c:bc:
76:22:e9:a8:48:cf:fb:da:40:3a:21:6b:28:7c:59:03:41:54:
df:c6:22:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 13:15:42 2025 by rpki-client