Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/bcd829-3f3d-4e5a-adaf-03aa5511a75f/1/EgCUI8Yi5d-7nxv8suoNKjoVwrI.roa
File: EgCUI8Yi5d-7nxv8suoNKjoVwrI.roa (raw, json)
Hash identifier: +MQZZ7wB7HRgto4Xdl/nbPUHJJoWsyTlPec9JNzhh48=
Subject key identifier: 12:00:94:23:C6:22:E5:DF:BB:9F:1B:FC:B2:EA:0D:2A:3A:15:C2:B2
Certificate issuer: /CN=6091160984cbc991ebc9ca0a857007d1f2c11a2d
Certificate serial: 0195E3C00FE62A857E0CAB8206F05E4542A0
Authority key identifier: 60:91:16:09:84:CB:C9:91:EB:C9:CA:0A:85:70:07:D1:F2:C1:1A:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YJEWCYTLyZHrycoKhXAH0fLBGi0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/bcd829-3f3d-4e5a-adaf-03aa5511a75f/1/EgCUI8Yi5d-7nxv8suoNKjoVwrI.roa
Signing time: Sat 29 Mar 2025 21:12:49 +0000
ROA not before: Sat 29 Mar 2025 21:12:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:195:dc6c:d9df/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e3:c0:0f:e6:2a:85:7e:0c:ab:82:06:f0:5e:45:42:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6091160984cbc991ebc9ca0a857007d1f2c11a2d
Validity
Not Before: Mar 29 21:12:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=12009423c622e5dfbb9f1bfcb2ea0d2a3a15c2b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:bb:44:7c:5e:98:06:87:f5:d7:17:50:9d:dc:
16:13:8d:b3:95:37:56:49:6e:8c:90:16:41:f8:21:
c0:4d:78:fe:9b:21:4a:d3:3d:c0:b9:03:6d:c2:0a:
30:6c:5c:c6:48:3c:64:52:90:5e:2f:38:bf:b9:3f:
2a:a9:e0:e1:76:bf:90:86:1d:2c:9d:fb:de:6f:29:
35:d7:8c:c9:d7:7e:66:fb:89:73:4d:16:1d:19:5b:
05:3f:1d:4f:0c:ea:ab:0d:da:7a:a0:8f:2d:81:cf:
17:5d:13:ea:ea:91:e8:80:bf:50:37:48:d4:04:98:
2f:7d:3f:51:98:a9:b8:9d:b4:2c:b8:a8:85:b1:ee:
9b:95:6b:e9:5f:59:c5:8b:4b:67:12:82:7c:7d:5f:
14:18:14:df:ea:b9:5d:43:65:d2:2d:0c:0e:6a:ec:
e1:f2:d2:4b:d9:ad:c5:ea:23:13:61:dd:bd:4e:cb:
f8:01:ac:39:ba:f5:76:3f:71:cc:0f:c8:fb:3e:9e:
97:51:d1:cf:87:f8:bc:3d:24:eb:99:ea:1e:27:3b:
bd:fc:22:48:ce:f1:ac:b0:19:da:d1:64:d8:2f:aa:
fc:27:a8:d3:00:e0:ac:9d:81:fc:40:74:c5:13:25:
da:d7:5c:8e:a7:36:dc:23:ab:25:22:14:8c:76:33:
76:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:00:94:23:C6:22:E5:DF:BB:9F:1B:FC:B2:EA:0D:2A:3A:15:C2:B2
X509v3 Authority Key Identifier:
keyid:60:91:16:09:84:CB:C9:91:EB:C9:CA:0A:85:70:07:D1:F2:C1:1A:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YJEWCYTLyZHrycoKhXAH0fLBGi0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/bcd829-3f3d-4e5a-adaf-03aa5511a75f/1/EgCUI8Yi5d-7nxv8suoNKjoVwrI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/bcd829-3f3d-4e5a-adaf-03aa5511a75f/1/YJEWCYTLyZHrycoKhXAH0fLBGi0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:195:dc6c:d9df/128
Signature Algorithm: sha256WithRSAEncryption
8e:35:03:3f:bf:e9:fd:30:17:36:92:68:f6:fc:55:b4:66:58:
03:b2:ae:8b:20:fd:59:b1:3c:5e:0d:bd:2b:ce:53:b9:15:32:
b8:a1:bb:26:b8:9f:26:32:fa:ee:eb:c4:f1:9e:0e:0c:dc:76:
c3:04:a6:c6:78:cb:af:3b:2b:2e:45:b0:bb:0a:00:ec:5e:bb:
37:ee:76:1d:a4:be:b4:4d:c7:c8:5e:db:f3:db:37:ea:d5:0c:
50:a1:3f:e9:67:11:0a:99:08:5e:56:a2:4e:fc:09:0f:cf:98:
ca:d1:fe:6d:4b:d2:ec:df:ae:7e:de:8c:c8:cb:a5:8a:b6:a6:
9a:c6:62:fe:27:ea:6c:db:4e:f2:5b:8b:b7:cd:72:29:6b:c1:
c6:35:0e:d1:f3:63:f3:bb:d6:9d:a5:30:0d:15:b1:62:d5:98:
06:3e:42:2a:54:2c:fa:be:9f:1e:80:c6:cf:d1:f1:7a:cb:a7:
01:ed:83:8c:a7:a1:f1:36:f1:bf:77:65:6c:39:04:8b:69:a7:
ab:2e:4c:a7:69:1b:b5:96:83:74:b6:0f:12:6f:6e:c7:35:06:
8c:df:22:8d:bd:3b:10:d9:1f:40:00:cf:3d:6a:48:9e:d9:1e:
97:a2:53:32:9d:c5:92:68:28:00:75:ac:16:bf:c0:d4:f4:7c:
b2:a9:ac:e8
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Jun 16 10:40:52 2025 by rpki-client