Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/c454f5-4aa6-4fca-8ce0-d0a0e129cbbc/1/V0cNQfCOUCP-azomQZ7KR9qWF5g.roa
File: V0cNQfCOUCP-azomQZ7KR9qWF5g.roa (raw, json)
Hash identifier: wfARALogbHiBObNeaqc/9pMkWHnJ/ar+D1bYVFbb8fY=
Subject key identifier: 57:47:0D:41:F0:8E:50:23:FE:6B:3A:26:41:9E:CA:47:DA:96:17:98
Certificate issuer: /CN=48dc0992867cb43b2833d5151e42bc41f57e73ad
Certificate serial: 018CC2DB0CEE3C77D0ED8568FA4D70F68985
Authority key identifier: 48:DC:09:92:86:7C:B4:3B:28:33:D5:15:1E:42:BC:41:F5:7E:73:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SNwJkoZ8tDsoM9UVHkK8QfV-c60.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/c454f5-4aa6-4fca-8ce0-d0a0e129cbbc/1/V0cNQfCOUCP-azomQZ7KR9qWF5g.roa
Signing time: Mon 01 Jan 2024 02:29:44 +0000
ROA not before: Mon 01 Jan 2024 02:29:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205955
IP address blocks: 2001:678:42c::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:db:0c:ee:3c:77:d0:ed:85:68:fa:4d:70:f6:89:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=48dc0992867cb43b2833d5151e42bc41f57e73ad
Validity
Not Before: Jan 1 02:29:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=57470d41f08e5023fe6b3a26419eca47da961798
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:91:8e:77:05:e9:2d:77:7b:15:c6:0c:7d:3f:
1f:fd:5a:62:29:d1:dc:c7:4d:cf:26:39:5e:8d:17:
33:ba:56:34:3f:56:0a:6e:93:b4:87:ae:5b:d6:0d:
b4:37:f2:b3:69:98:9f:ac:6a:b9:c2:f2:6e:2c:73:
f6:19:fe:c2:3b:67:f5:a0:06:aa:d4:fa:86:54:4a:
a7:aa:94:a5:30:82:13:ff:fb:2c:a5:08:ff:fe:32:
42:42:a1:b6:57:b6:d7:26:34:33:03:fc:55:b6:eb:
fe:74:5b:4c:b1:b8:fb:94:64:b3:f4:72:81:95:fa:
83:2e:9a:17:8c:0d:48:1d:a6:c8:4b:b4:57:09:a4:
21:45:d0:7a:d1:4a:81:22:de:4f:44:a2:f3:d4:eb:
ec:9c:4d:c4:94:29:a7:2a:35:62:89:7d:27:e1:ff:
70:16:ee:6f:ca:35:c8:02:43:92:28:d4:a7:e7:06:
52:67:03:54:8c:d5:2e:f0:2b:e5:71:77:2f:f9:aa:
4e:95:e4:70:8b:a4:19:82:aa:9c:73:2b:7c:a8:60:
7a:b1:73:cf:5c:5b:69:96:68:40:54:76:d7:de:f5:
80:46:39:da:34:8a:71:41:48:0c:3e:94:a1:5b:f2:
f9:f4:3a:2c:ed:ec:b2:c4:2e:a9:85:b6:0e:92:69:
e7:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:47:0D:41:F0:8E:50:23:FE:6B:3A:26:41:9E:CA:47:DA:96:17:98
X509v3 Authority Key Identifier:
keyid:48:DC:09:92:86:7C:B4:3B:28:33:D5:15:1E:42:BC:41:F5:7E:73:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SNwJkoZ8tDsoM9UVHkK8QfV-c60.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/c454f5-4aa6-4fca-8ce0-d0a0e129cbbc/1/V0cNQfCOUCP-azomQZ7KR9qWF5g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/c454f5-4aa6-4fca-8ce0-d0a0e129cbbc/1/SNwJkoZ8tDsoM9UVHkK8QfV-c60.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:42c::/48
Signature Algorithm: sha256WithRSAEncryption
83:55:42:9a:b7:24:48:a4:93:e0:c9:07:f9:0e:35:8d:7e:f5:
61:54:a4:69:6e:be:e8:18:8b:83:0e:ef:30:7d:49:c9:a4:ae:
08:7d:4a:11:4d:75:d3:db:d6:45:5a:36:03:21:ec:19:a5:8e:
dc:e1:05:99:76:04:47:1b:23:be:06:63:2d:71:93:50:47:9d:
35:e5:94:19:a8:78:99:c1:4c:53:c5:d3:58:1f:42:8c:3e:8f:
58:9b:9c:f0:a7:f7:b4:ad:bc:03:02:59:8b:ab:9a:31:3f:ab:
c6:9a:86:03:76:0d:ee:8f:34:93:da:e3:06:80:f2:ee:ac:9f:
ac:03:77:d5:2c:cc:d1:b5:02:82:25:a4:28:21:9d:db:ad:f7:
5e:ae:93:c1:fb:55:46:1f:a2:bc:01:88:3c:1f:a5:94:01:ec:
d1:af:9d:91:4d:2e:6f:fc:b9:3f:b2:24:c1:e0:dc:91:44:75:
92:3b:e8:b9:ca:52:17:d1:8e:f5:61:da:67:5e:70:fd:ca:d5:
a2:a9:05:55:7f:19:43:06:ca:95:df:d9:d6:f2:ec:2e:e1:a0:
19:93:18:a6:ac:f2:c6:41:c6:c6:d6:67:23:30:82:d9:0e:e8:
e0:0b:97:56:16:07:9e:1c:44:31:c9:cf:31:b6:bc:7b:87:59:
69:8c:34:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 08:30:33 2025 by rpki-client