Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/7583cb-d31e-4e03-b14b-b20e28f5188f/1/uz7b7qFJVRiLSqWV--WgGVLTauQ.roa
File: uz7b7qFJVRiLSqWV--WgGVLTauQ.roa (raw, json)
Hash identifier: wpzxfmrcY85kS1F+ylqPRHNmG+YinHe9dDJOqmsBNC0=
Subject key identifier: BB:3E:DB:EE:A1:49:55:18:8B:4A:A5:95:FB:E5:A0:19:52:D3:6A:E4
Certificate issuer: /CN=3a0b05f40a6916394782302d1b5660737257a48b
Certificate serial: 019427470509084D693BA1DE5E7C155C41BE
Authority key identifier: 3A:0B:05:F4:0A:69:16:39:47:82:30:2D:1B:56:60:73:72:57:A4:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OgsF9AppFjlHgjAtG1Zgc3JXpIs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/7583cb-d31e-4e03-b14b-b20e28f5188f/1/uz7b7qFJVRiLSqWV--WgGVLTauQ.roa
Signing time: Thu 02 Jan 2025 13:49:13 +0000
ROA not before: Thu 02 Jan 2025 13:49:13 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 34828
IP address blocks: 2a0f:6580:10::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:47:05:09:08:4d:69:3b:a1:de:5e:7c:15:5c:41:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a0b05f40a6916394782302d1b5660737257a48b
Validity
Not Before: Jan 2 13:49:13 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bb3edbeea14955188b4aa595fbe5a01952d36ae4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:bc:0a:92:b2:42:e0:83:0b:a3:7b:fc:47:da:
1e:e9:a2:ba:ce:bc:d3:ea:56:07:91:74:4d:37:bf:
77:e1:aa:42:c2:5f:50:86:52:0e:e8:89:de:72:77:
2a:4e:4a:c3:b0:ef:8e:f4:a7:c5:58:c7:b6:15:c1:
c5:ca:cd:82:5e:57:b1:fd:34:f8:9e:af:83:1d:8e:
0d:d4:4e:20:2a:b6:e0:a7:3a:5c:10:11:cc:9c:6a:
29:5d:49:e0:c9:7b:77:f3:fc:de:86:20:b5:2b:dc:
5a:d3:63:85:ad:dc:aa:8f:f6:5b:47:80:09:71:2e:
7d:f7:59:97:ba:6a:bf:19:48:52:64:3e:07:84:7d:
61:65:01:9b:12:9d:f5:b3:76:be:e1:0c:c0:12:45:
01:56:c8:0b:94:c3:20:a3:65:18:49:85:de:86:b5:
5b:db:de:0d:73:73:21:97:cf:11:b2:e7:da:3f:bc:
4d:a7:e3:5b:82:6a:5f:0a:c1:e3:f8:b0:ca:19:73:
ac:a3:c6:8d:59:5c:aa:6c:61:9d:f7:55:ad:f3:2e:
c0:75:d6:20:b8:1c:6c:38:9d:cc:cc:36:f8:35:73:
78:8f:b9:1c:53:b7:fa:3b:13:da:92:55:58:f3:f8:
49:aa:c9:25:22:ba:c8:6d:c0:0e:50:12:15:2a:cf:
f1:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:3E:DB:EE:A1:49:55:18:8B:4A:A5:95:FB:E5:A0:19:52:D3:6A:E4
X509v3 Authority Key Identifier:
keyid:3A:0B:05:F4:0A:69:16:39:47:82:30:2D:1B:56:60:73:72:57:A4:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OgsF9AppFjlHgjAtG1Zgc3JXpIs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/7583cb-d31e-4e03-b14b-b20e28f5188f/1/uz7b7qFJVRiLSqWV--WgGVLTauQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/7583cb-d31e-4e03-b14b-b20e28f5188f/1/OgsF9AppFjlHgjAtG1Zgc3JXpIs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:6580:10::/48
Signature Algorithm: sha256WithRSAEncryption
ca:c9:18:53:fe:26:da:38:85:64:2d:63:0d:3a:91:49:81:02:
21:9e:41:99:a0:c8:63:8b:0c:90:f4:48:92:8a:eb:f4:dd:56:
f7:a5:0d:1b:9e:ee:8b:f5:ac:39:b6:f2:6e:67:5f:91:7e:fd:
a5:28:82:18:57:24:f0:32:d8:60:e9:58:17:69:40:2b:8d:d0:
d0:08:07:57:a0:b9:fb:89:fa:ec:52:16:7b:a2:0c:ae:32:39:
d2:a7:0f:00:14:87:db:a6:15:4d:66:fc:b5:0a:47:69:30:32:
20:d4:00:e9:8c:34:2c:7b:a0:25:5a:e6:74:d9:c5:bb:65:3f:
c2:f2:79:a0:86:f0:eb:94:7a:34:a8:2d:da:16:66:19:79:36:
3a:e9:6f:48:93:db:35:9b:94:b8:ca:66:f2:1f:37:a8:02:75:
eb:b0:8d:34:86:8b:62:64:49:2f:74:0e:45:f9:83:6c:a8:91:
cd:fb:88:2a:65:49:0b:c9:f3:77:8c:09:49:a9:c9:ab:ef:a5:
2e:e8:fe:17:87:ea:71:55:62:67:4b:b8:3c:4b:62:1d:a5:36:
e6:73:3c:d4:2c:5f:ab:8d:f5:5b:14:d8:bb:53:6d:a8:a1:d2:
64:b0:71:c2:e7:2e:02:0b:85:81:a3:dd:ab:02:f4:bb:2f:30:
d7:cf:d0:9b
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAZQnRwUJCE1pO6HeXnwVXEG+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhMGIwNWY0MGE2OTE2Mzk0NzgyMzAyZDFiNTY2MDczNzI1
N2E0OGIwHhcNMjUwMTAyMTM0OTEzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYjNlZGJlZWExNDk1NTE4OGI0YWE1OTVmYmU1YTAxOTUyZDM2YWU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8rwKkrJC4IMLo3v8R9oe6aK6zrzT
6lYHkXRNN7934apCwl9QhlIO6InecncqTkrDsO+O9KfFWMe2FcHFys2CXlex/TT4
nq+DHY4N1E4gKrbgpzpcEBHMnGopXUngyXt38/zehiC1K9xa02OFrdyqj/ZbR4AJ
cS5991mXumq/GUhSZD4HhH1hZQGbEp31s3a+4QzAEkUBVsgLlMMgo2UYSYXehrVb
294Nc3Mhl88RsufaP7xNp+NbgmpfCsHj+LDKGXOso8aNWVyqbGGd91Wt8y7AddYg
uBxsOJ3MzDb4NXN4j7kcU7f6OxPaklVY8/hJqsklIrrIbcAOUBIVKs/xzQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFLs+2+6hSVUYi0qllfvloBlS02rkMB8GA1UdIwQY
MBaAFDoLBfQKaRY5R4IwLRtWYHNyV6SLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT2dzRjlBcHBGamxIZ2pBdEcxWmdjM0pYcElzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC83NTgzY2ItZDMxZS00ZTAzLWIxNGIt
YjIwZTI4ZjUxODhmLzEvdXo3YjdxRkpWUmlMU3FXVi0tV2dHVkxUYXVRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZC83NTgzY2ItZDMxZS00ZTAzLWIxNGItYjIwZTI4ZjUxODhm
LzEvT2dzRjlBcHBGamxIZ2pBdEcxWmdjM0pYcElzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg9lgAAQ
MA0GCSqGSIb3DQEBCwUAA4IBAQDKyRhT/ibaOIVkLWMNOpFJgQIhnkGZoMhjiwyQ
9EiSiuv03Vb3pQ0bnu6L9aw5tvJuZ1+Rfv2lKIIYVyTwMthg6VgXaUArjdDQCAdX
oLn7ifrsUhZ7ogyuMjnSpw8AFIfbphVNZvy1CkdpMDIg1ADpjDQse6AlWuZ02cW7
ZT/C8nmghvDrlHo0qC3aFmYZeTY66W9Ik9s1m5S4ymbyHzeoAnXrsI00hotiZEkv
dA5F+YNsqJHN+4gqZUkLyfN3jAlJqcmr76Uu6P4Xh+pxVWJnS7g8S2IdpTbmczzU
LF+rjfVbFNi7U22oodJksHHC5y4CC4WBo92rAvS7LzDXz9Cb
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:19:13 2025 by rpki-client