Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/b6409b-1638-4c7a-81f2-94f8fb3009f2/1/rvzjyC9muvr4migx_xtUIzZ2FRM.roa
File: rvzjyC9muvr4migx_xtUIzZ2FRM.roa (raw, json)
Hash identifier: 2jsltHZ+YtkUSfR/OVprtu2235QmWCtb64qQWKzazWI=
Subject key identifier: AE:FC:E3:C8:2F:66:BA:FA:F8:9A:28:31:FF:1B:54:23:36:76:15:13
Certificate issuer: /CN=e8ed602fd0d46d38cde1e732c652ea9958e97691
Certificate serial: 019424B3E8F37E8997A7CF2D0363DB89F929
Authority key identifier: E8:ED:60:2F:D0:D4:6D:38:CD:E1:E7:32:C6:52:EA:99:58:E9:76:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6O1gL9DUbTjN4ecyxlLqmVjpdpE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/b6409b-1638-4c7a-81f2-94f8fb3009f2/1/rvzjyC9muvr4migx_xtUIzZ2FRM.roa
Signing time: Thu 02 Jan 2025 01:49:17 +0000
ROA not before: Thu 02 Jan 2025 01:49:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 207488
IP address blocks: 2001:678:c10::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:e8:f3:7e:89:97:a7:cf:2d:03:63:db:89:f9:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8ed602fd0d46d38cde1e732c652ea9958e97691
Validity
Not Before: Jan 2 01:49:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=aefce3c82f66bafaf89a2831ff1b542336761513
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:b1:ca:95:e9:18:c6:fb:aa:65:db:f6:d8:d8:
02:14:4c:76:e2:f4:f6:53:a1:5a:f5:51:0d:d2:59:
4a:e8:ef:c5:59:16:f6:fe:63:d2:92:4e:1f:09:eb:
f2:b7:c1:c5:75:75:d9:48:31:e2:a7:65:34:24:4b:
52:a8:22:48:ff:1e:d3:87:13:62:16:59:48:8e:f9:
10:6e:28:c7:6e:3f:ce:28:32:ac:f9:13:0b:48:e8:
5c:f2:94:88:e1:7c:0d:58:96:85:3c:60:7b:95:38:
c5:ca:12:4e:64:81:aa:6e:07:9f:7f:f5:5d:f6:04:
9e:ac:4d:77:f7:d6:33:a8:55:37:6e:40:a0:21:29:
f3:f1:7c:0a:da:72:e6:33:f2:cd:da:f7:90:b9:47:
7f:5e:4e:88:f4:ab:ff:aa:9a:17:46:08:ef:49:79:
74:47:b4:c2:78:35:dd:65:ec:f9:5d:8b:21:61:12:
22:8d:3e:35:1f:d1:2c:7d:ed:9e:ca:f1:fd:89:6d:
70:06:bf:52:d4:5a:95:15:55:df:37:3d:b5:e1:f6:
ba:5c:61:b8:92:3f:d4:3d:24:14:32:39:f9:4e:dc:
0b:d0:f3:cb:1e:64:c9:60:70:6a:bd:eb:76:bc:c9:
74:67:1f:0a:76:16:ea:d7:f6:44:fc:0d:c3:16:fd:
39:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:FC:E3:C8:2F:66:BA:FA:F8:9A:28:31:FF:1B:54:23:36:76:15:13
X509v3 Authority Key Identifier:
keyid:E8:ED:60:2F:D0:D4:6D:38:CD:E1:E7:32:C6:52:EA:99:58:E9:76:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6O1gL9DUbTjN4ecyxlLqmVjpdpE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/b6409b-1638-4c7a-81f2-94f8fb3009f2/1/rvzjyC9muvr4migx_xtUIzZ2FRM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/b6409b-1638-4c7a-81f2-94f8fb3009f2/1/6O1gL9DUbTjN4ecyxlLqmVjpdpE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:c10::/48
Signature Algorithm: sha256WithRSAEncryption
15:75:ed:02:ca:2a:e4:6d:e5:af:19:45:d7:0e:8d:3e:d6:95:
bf:51:a3:21:e3:aa:49:6f:a8:22:a3:49:ac:b9:a5:02:55:1a:
d2:7c:f7:bc:0f:a4:48:f1:6f:41:c4:4c:84:ff:7b:05:e8:29:
4f:99:2f:1d:71:08:e0:91:0d:17:03:1e:72:6e:59:25:44:db:
df:98:34:43:6b:a6:e5:f2:df:47:98:2b:bc:54:3f:1b:a2:6a:
0e:5f:9b:1f:7d:9f:f7:fd:01:47:c5:ec:d1:3b:58:b9:8d:40:
59:02:1e:1e:13:e6:7e:12:4d:8c:73:c8:e2:46:63:c1:97:97:
1b:fd:69:d6:33:33:10:a1:1a:03:73:98:56:e8:d3:bf:af:99:
82:5a:e6:cb:e5:be:02:39:32:94:f6:fa:4e:2b:33:32:3c:cf:
33:d8:e0:9f:0e:59:12:e5:95:93:4c:86:f2:18:4e:9d:49:0e:
77:70:81:91:a9:24:39:4d:97:e8:e3:8b:24:a3:58:86:40:97:
fa:52:5b:30:42:c8:95:3b:5c:bf:99:39:56:51:30:a3:bf:55:
b2:8d:f4:f5:bb:dc:0b:c2:b7:a6:2c:b5:72:22:75:27:6b:ec:
1a:42:76:17:bd:09:62:b1:25:9c:40:0b:a0:df:7c:37:8b:8f:
fa:92:b2:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:09 2025 by rpki-client on console.sobornost.net