Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/c56a1e-326d-4c67-a0b2-90eb95109d89/1/sx_X-A8dDrs2WLZwV3unTJ37Lpo.roa
File: sx_X-A8dDrs2WLZwV3unTJ37Lpo.roa (raw, json)
Hash identifier: FPGJFYfCAHXPdwVM0peBpr4+R4g0DoGesZu76YFfK+w=
Subject key identifier: B3:1F:D7:F8:0F:1D:0E:BB:36:58:B6:70:57:7B:A7:4C:9D:FB:2E:9A
Certificate issuer: /CN=7acd817f25893e7f88b3f3affa9152c66d6b6702
Certificate serial: 0196F517B9440310A50DAEE457EF268ED038
Authority key identifier: 7A:CD:81:7F:25:89:3E:7F:88:B3:F3:AF:FA:91:52:C6:6D:6B:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/es2BfyWJPn-Is_Ov-pFSxm1rZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/c56a1e-326d-4c67-a0b2-90eb95109d89/1/sx_X-A8dDrs2WLZwV3unTJ37Lpo.roa
Signing time: Wed 21 May 2025 23:04:54 +0000
ROA not before: Wed 21 May 2025 23:04:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:196:ed5d:8c28/128 maxlen: 128
2001:67c:64:ffff:0:196:f516:ebcc/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:f5:17:b9:44:03:10:a5:0d:ae:e4:57:ef:26:8e:d0:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7acd817f25893e7f88b3f3affa9152c66d6b6702
Validity
Not Before: May 21 23:04:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b31fd7f80f1d0ebb3658b670577ba74c9dfb2e9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:58:b8:be:72:14:7a:0f:dc:a7:fa:9e:ff:c4:
a4:89:bc:a4:e5:2d:85:ab:fe:1a:90:9e:65:39:66:
02:ce:b4:5a:c9:7a:89:83:48:48:d7:c8:d7:f6:ca:
57:9a:b6:23:81:c5:6a:41:76:f1:8a:e3:67:63:dc:
b4:e9:ba:fb:bb:cd:ad:95:5c:d6:83:e4:a0:cc:08:
84:20:98:df:28:b9:cb:f3:70:6c:90:90:8c:6c:44:
72:30:db:2b:48:72:b8:f5:6c:14:1c:43:70:a1:74:
ae:90:d9:9f:72:1d:3e:b8:98:4c:a1:b6:1b:f5:5f:
99:7d:4a:21:61:0f:ec:d6:c5:b9:e4:87:69:86:a9:
4a:ab:c7:82:42:53:1b:90:13:cc:81:a2:b9:f2:50:
56:60:12:dc:29:03:fb:bb:5a:bb:d7:da:b4:52:bd:
a2:a2:5e:78:d7:b2:3e:42:06:48:29:6e:7b:f9:91:
e3:cb:21:de:f4:7c:b1:ab:ef:44:c0:a7:81:20:88:
d0:79:be:09:d7:aa:fe:86:a1:0b:83:d3:af:d0:e4:
e0:67:05:62:3a:1d:74:f4:77:1b:f5:01:31:5d:ec:
04:d6:0c:f4:52:5e:10:db:3d:a8:22:91:1d:48:44:
12:03:ac:4d:c9:cd:0d:aa:4a:41:f0:46:78:a3:2c:
29:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:1F:D7:F8:0F:1D:0E:BB:36:58:B6:70:57:7B:A7:4C:9D:FB:2E:9A
X509v3 Authority Key Identifier:
keyid:7A:CD:81:7F:25:89:3E:7F:88:B3:F3:AF:FA:91:52:C6:6D:6B:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/es2BfyWJPn-Is_Ov-pFSxm1rZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/c56a1e-326d-4c67-a0b2-90eb95109d89/1/sx_X-A8dDrs2WLZwV3unTJ37Lpo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/c56a1e-326d-4c67-a0b2-90eb95109d89/1/es2BfyWJPn-Is_Ov-pFSxm1rZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:196:ed5d:8c28/128
2001:67c:64:ffff:0:196:f516:ebcc/128
Signature Algorithm: sha256WithRSAEncryption
b1:50:f0:c5:b0:df:18:2c:bf:bb:84:80:33:72:9a:6d:ec:9a:
d5:21:f6:3f:97:7c:c7:a6:85:25:4d:0f:65:8c:5a:7b:a7:bd:
e4:5d:3d:5f:31:f6:33:1c:7d:9c:2f:7e:de:8a:42:d0:2e:37:
32:c8:17:76:96:3f:61:7f:8b:6d:9c:06:5f:1f:72:ec:f3:88:
89:1e:d2:68:fe:b1:ba:ad:e4:f1:45:39:db:af:9e:2b:a6:12:
6a:4a:33:21:aa:d2:f3:3a:31:a3:58:00:34:9d:c4:76:cd:c6:
28:27:50:52:4a:6f:1c:1a:17:09:49:d5:ae:c5:76:3c:e4:25:
91:a1:4a:7e:01:63:d8:5d:7e:51:73:02:85:65:08:ad:ea:fe:
7f:e8:da:d5:56:3f:8f:01:35:da:df:bf:db:ec:48:a3:86:4f:
ac:59:09:01:06:27:6e:de:69:3a:c0:c8:56:70:f4:3e:d6:c7:
c5:92:49:5d:9c:5c:9e:97:3e:ca:14:23:60:a9:0f:9f:de:eb:
58:b3:05:e7:79:d0:ef:9a:33:cf:5c:85:65:76:2c:8e:6c:b0:
b2:0f:93:bc:eb:d2:3f:c4:ff:81:c4:a1:13:0e:9c:6a:6f:31:
a2:7d:5d:0c:fb:3a:38:4c:76:79:6d:9c:aa:e2:da:bf:8f:20:
e1:de:45:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 12:30:38 2025 by rpki-client