Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/t78n-xojI5enAUhHamJqQqvMkeQ.roa
File: t78n-xojI5enAUhHamJqQqvMkeQ.roa (raw, json)
Hash identifier: AH9+ea/6a4ZZEGal2KYlBW42FAYF/A1L6PT8nqaawZc=
Subject key identifier: B7:BF:27:FB:1A:23:23:97:A7:01:48:47:6A:62:6A:42:AB:CC:91:E4
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 0194258EE9BBD760497D1564660601717B71
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/t78n-xojI5enAUhHamJqQqvMkeQ.roa
Signing time: Thu 02 Jan 2025 05:48:30 +0000
ROA not before: Thu 02 Jan 2025 05:48:30 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212690
IP address blocks: 2a0e:aa07:e022::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8e:e9:bb:d7:60:49:7d:15:64:66:06:01:71:7b:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jan 2 05:48:30 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b7bf27fb1a232397a70148476a626a42abcc91e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:22:a5:06:12:07:92:c5:ea:4a:4f:fa:9d:f3:
72:6b:5a:88:b2:5f:d0:51:e6:5a:77:07:ed:80:2a:
ab:4f:36:cd:0f:ab:4f:76:a4:8a:27:d5:3d:c9:80:
be:77:8a:ad:cc:9c:54:d6:51:6b:c1:d0:2b:ba:a0:
28:85:2a:da:8e:ff:c4:62:c6:0e:86:61:1c:75:07:
85:c8:0f:3f:66:26:3c:49:27:ad:9b:78:01:50:f2:
03:36:d6:81:35:4d:c9:66:59:e8:12:c1:8c:d6:92:
a6:b8:15:d8:1f:3e:e6:31:bd:90:6b:1a:49:f8:5b:
de:ea:86:03:10:a9:44:5c:32:e4:b7:b2:80:f3:02:
4e:c1:79:6a:1b:c2:23:91:ac:d4:37:8a:c0:db:e9:
e4:17:8c:78:a5:21:7a:b3:27:9f:91:ca:9e:d1:cd:
81:f1:73:6f:f4:1c:d3:dd:ae:87:f3:2b:a2:60:48:
29:2b:bc:10:59:ea:fe:7e:a6:1b:f5:be:97:07:8c:
b7:8c:0f:ed:f3:6a:e5:ef:79:56:ee:4c:f5:e4:c5:
ca:72:75:3a:78:5c:21:c4:b6:11:6b:5e:44:e3:29:
81:16:aa:f7:fa:20:9b:c4:b8:0a:13:9a:7f:e5:c5:
24:f3:79:f7:82:92:ed:70:0d:9f:86:2c:3c:71:e2:
3d:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:BF:27:FB:1A:23:23:97:A7:01:48:47:6A:62:6A:42:AB:CC:91:E4
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/t78n-xojI5enAUhHamJqQqvMkeQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa07:e022::/48
Signature Algorithm: sha256WithRSAEncryption
b9:08:87:36:86:5f:1d:06:46:cc:58:83:24:df:7c:f3:fe:84:
64:76:82:fc:3e:1d:f3:51:c0:76:1b:96:f6:dd:d0:b9:0e:a3:
e5:99:2a:1b:d2:5d:fb:43:10:28:70:c5:c8:cd:b3:99:6c:54:
1f:a4:c1:ac:c4:a4:4b:00:c9:06:42:cd:92:f1:e4:a3:de:c7:
74:b6:47:2e:d8:42:d2:41:8c:ba:ac:ba:4e:89:71:17:a1:be:
47:d0:7a:e3:e7:a8:dc:16:fe:31:31:97:38:2b:30:15:95:09:
f4:05:fb:96:21:9b:81:d6:6f:01:0d:12:9e:48:39:e0:68:2f:
f9:0f:96:64:70:0d:9c:45:c4:6e:27:1a:e8:43:5b:ca:a9:b9:
29:ff:94:38:26:25:84:b6:b1:d6:68:54:92:9a:96:73:c1:be:
62:f0:b3:86:4d:a6:ad:fc:b5:4c:f9:e4:91:77:95:67:14:a0:
c0:60:49:40:49:f6:77:81:2f:a7:1b:5a:c5:f7:b1:83:33:cc:
20:45:21:96:60:a4:e1:d8:5f:69:79:2a:65:47:53:cb:e5:64:
cf:1d:c0:63:53:02:6d:cd:93:bb:a7:25:1d:f6:3a:bd:2c:2c:
6f:06:fc:29:45:b6:1d:6a:aa:96:d5:d4:15:2d:29:c0:ca:3e:
25:d4:f3:76
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAZQljum712BJfRVkZgYBcXtxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkzNjFiNWNkNjk2ODI1Yjc0ZmNjYmE3ZDk3YzNkMGEyNzI0
ZWYzYWEwHhcNMjUwMTAyMDU0ODMwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiN2JmMjdmYjFhMjMyMzk3YTcwMTQ4NDc2YTYyNmE0MmFiY2M5MWU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApiKlBhIHksXqSk/6nfNya1qIsl/Q
UeZadwftgCqrTzbND6tPdqSKJ9U9yYC+d4qtzJxU1lFrwdAruqAohSrajv/EYsYO
hmEcdQeFyA8/ZiY8SSetm3gBUPIDNtaBNU3JZlnoEsGM1pKmuBXYHz7mMb2QaxpJ
+Fve6oYDEKlEXDLkt7KA8wJOwXlqG8IjkazUN4rA2+nkF4x4pSF6syefkcqe0c2B
8XNv9BzT3a6H8yuiYEgpK7wQWer+fqYb9b6XB4y3jA/t82rl73lW7kz15MXKcnU6
eFwhxLYRa15E4ymBFqr3+iCbxLgKE5p/5cUk83n3gpLtcA2fhiw8ceI9WwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFLe/J/saIyOXpwFIR2piakKrzJHkMB8GA1UdIwQY
MBaAFJNhtc1paCW3T8y6fZfD0KJyTvOqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvazJHMXpXbG9KYmRQekxwOWw4UFFvbkpPODZvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi83MmJmMmYtOGUzNC00OGEyLTg0OWEt
YTU0MWQxYmNlZTE5LzEvdDc4bi14b2pJNWVuQVVoSGFtSnFRcXZNa2VRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Zi83MmJmMmYtOGUzNC00OGEyLTg0OWEtYTU0MWQxYmNlZTE5
LzEvazJHMXpXbG9KYmRQekxwOWw4UFFvbkpPODZvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg6qB+Ai
MA0GCSqGSIb3DQEBCwUAA4IBAQC5CIc2hl8dBkbMWIMk33zz/oRkdoL8Ph3zUcB2
G5b23dC5DqPlmSob0l37QxAocMXIzbOZbFQfpMGsxKRLAMkGQs2S8eSj3sd0tkcu
2ELSQYy6rLpOiXEXob5H0Hrj56jcFv4xMZc4KzAVlQn0BfuWIZuB1m8BDRKeSDng
aC/5D5ZkcA2cRcRuJxroQ1vKqbkp/5Q4JiWEtrHWaFSSmpZzwb5i8LOGTaat/LVM
+eSRd5VnFKDAYElASfZ3gS+nG1rF97GDM8wgRSGWYKTh2F9peSplR1PL5WTPHcBj
UwJtzZO7pyUd9jq9LCxvBvwpRbYdaqqW1dQVLSnAyj4l1PN2
-----END CERTIFICATE-----
Generated at Sun Apr 6 05:27:23 2025 by rpki-client