Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/VkgHoc_Rx9LO0thb-KJrhy8aQQ8.roa
File: VkgHoc_Rx9LO0thb-KJrhy8aQQ8.roa (raw, json)
Hash identifier: zIBkV8AorlkbljaZ5zOpi/5kWq6s1363XBg2GvdQ8pE=
Subject key identifier: 56:48:07:A1:CF:D1:C7:D2:CE:D2:D8:5B:F8:A2:6B:87:2F:1A:41:0F
Certificate issuer: /CN=4a6d2817491dd2cd0678068e35a9efc68667df02
Certificate serial: 019427B55C12F630E468A39E0A0A3218BFB7
Authority key identifier: 4A:6D:28:17:49:1D:D2:CD:06:78:06:8E:35:A9:EF:C6:86:67:DF:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sm0oF0kd0s0GeAaONanvxoZn3wI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/VkgHoc_Rx9LO0thb-KJrhy8aQQ8.roa
Signing time: Thu 02 Jan 2025 15:49:44 +0000
ROA not before: Thu 02 Jan 2025 15:49:44 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 199297
IP address blocks: 2a10:4646:430::/44 maxlen: 44
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:5c:12:f6:30:e4:68:a3:9e:0a:0a:32:18:bf:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a6d2817491dd2cd0678068e35a9efc68667df02
Validity
Not Before: Jan 2 15:49:44 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=564807a1cfd1c7d2ced2d85bf8a26b872f1a410f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:a9:fa:0b:19:f7:f8:6e:80:27:e4:e9:b7:69:
f8:a7:bd:36:35:8e:7c:7d:db:79:02:dc:93:d0:ae:
f7:a7:9e:3e:24:43:dc:76:62:7a:a2:ff:c8:8d:fa:
ce:97:72:c4:60:c0:c3:54:d9:8c:7f:ab:ad:05:1f:
72:2a:79:19:ea:3e:6d:c3:26:ab:8c:65:e2:ed:ed:
31:b5:ce:6b:0a:04:8a:2c:66:05:0c:2e:43:d3:5c:
96:96:df:6e:42:77:08:30:97:01:f7:52:d8:ad:10:
a9:05:da:86:a8:d0:32:ba:25:56:69:56:83:22:11:
e8:42:0a:0d:83:c3:5e:88:2d:b2:ee:35:d8:e1:f6:
26:8a:0c:25:60:54:c4:03:4a:ad:e5:08:da:06:f2:
2d:1a:16:a8:23:4e:32:7e:bd:ee:79:8f:d5:d4:0f:
7d:f1:0c:6c:56:e9:4f:a3:7d:0f:6b:a6:df:a2:4d:
3e:be:2b:a7:1a:21:48:c8:89:5c:45:20:d1:08:c1:
2c:a3:15:3e:1d:3d:b9:68:85:c9:bb:62:4f:e8:33:
79:56:5d:1c:10:9f:74:32:3d:76:b0:6e:0e:bb:ef:
d8:86:41:14:ad:eb:0f:48:3a:84:c9:3a:82:4f:b1:
19:77:b3:1d:a8:8d:4a:8d:77:6e:2b:87:d3:49:bc:
b9:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:48:07:A1:CF:D1:C7:D2:CE:D2:D8:5B:F8:A2:6B:87:2F:1A:41:0F
X509v3 Authority Key Identifier:
keyid:4A:6D:28:17:49:1D:D2:CD:06:78:06:8E:35:A9:EF:C6:86:67:DF:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sm0oF0kd0s0GeAaONanvxoZn3wI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/VkgHoc_Rx9LO0thb-KJrhy8aQQ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/Sm0oF0kd0s0GeAaONanvxoZn3wI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:4646:430::/44
Signature Algorithm: sha256WithRSAEncryption
2d:2e:51:a1:b7:82:53:fc:8b:96:ca:7a:07:2d:bc:b9:de:7d:
e5:58:9e:7d:c3:5a:5e:9e:8d:75:64:5c:a7:60:99:4e:f9:b3:
a5:d6:09:de:60:59:e7:c5:0c:fa:b5:f4:53:78:4c:76:3a:c8:
2e:67:aa:ea:48:8d:99:fb:ba:83:b6:f3:5d:b5:a3:7c:42:bd:
6c:0d:93:62:fb:82:b7:ea:cf:4d:5d:dc:14:27:77:b2:9b:d5:
34:94:53:76:90:68:dc:ee:93:a8:af:f5:c7:f7:8c:3c:69:6c:
df:80:af:01:b5:31:6b:24:2d:fe:33:25:0b:76:b9:0f:66:1c:
9b:41:1f:87:f0:5d:56:e7:8a:2a:fa:b2:26:54:78:b5:9c:29:
94:2a:7c:64:18:3e:c9:36:64:52:8b:08:b4:27:c3:6c:7a:c7:
87:b8:9a:d8:3d:80:46:ec:18:1f:c3:81:7d:c3:79:85:41:02:
f3:47:40:d5:51:93:08:db:70:03:76:9e:a5:a3:b7:79:9f:77:
0d:14:d0:1a:85:6b:13:14:e6:40:30:9a:97:b2:72:64:f2:67:
40:5f:95:c2:3e:8b:c3:30:5d:2e:6f:4b:f1:39:50:1d:93:7a:
ca:bc:2a:01:cf:7f:5a:bc:45:62:3a:4e:3b:36:25:6f:9a:65:
0f:33:a9:12
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAZQntVwS9jDkaKOeCgoyGL+3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRhNmQyODE3NDkxZGQyY2QwNjc4MDY4ZTM1YTllZmM2ODY2
N2RmMDIwHhcNMjUwMTAyMTU0OTQ0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NjQ4MDdhMWNmZDFjN2QyY2VkMmQ4NWJmOGEyNmI4NzJmMWE0MTBmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo6n6Cxn3+G6AJ+Tpt2n4p702NY58
fdt5AtyT0K73p54+JEPcdmJ6ov/IjfrOl3LEYMDDVNmMf6utBR9yKnkZ6j5twyar
jGXi7e0xtc5rCgSKLGYFDC5D01yWlt9uQncIMJcB91LYrRCpBdqGqNAyuiVWaVaD
IhHoQgoNg8NeiC2y7jXY4fYmigwlYFTEA0qt5QjaBvItGhaoI04yfr3ueY/V1A99
8QxsVulPo30Pa6bfok0+viunGiFIyIlcRSDRCMEsoxU+HT25aIXJu2JP6DN5Vl0c
EJ90Mj12sG4Ou+/YhkEUresPSDqEyTqCT7EZd7MdqI1KjXduK4fTSby5bQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFFZIB6HP0cfSztLYW/iia4cvGkEPMB8GA1UdIwQY
MBaAFEptKBdJHdLNBngGjjWp78aGZ98CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU20wb0Ywa2QwczBHZUFhT05hbnZ4b1puM3dJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC85NDg4YzctODQ5Yy00ZmYxLWFiNGMt
YWU5MjgzZTc5NjRlLzEvVmtnSG9jX1J4OUxPMHRoYi1LSnJoeThhUVE4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMC85NDg4YzctODQ5Yy00ZmYxLWFiNGMtYWU5MjgzZTc5NjRl
LzEvU20wb0Ywa2QwczBHZUFhT05hbnZ4b1puM3dJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKhBGRgQw
MA0GCSqGSIb3DQEBCwUAA4IBAQAtLlGht4JT/IuWynoHLby53n3lWJ59w1peno11
ZFynYJlO+bOl1gneYFnnxQz6tfRTeEx2OsguZ6rqSI2Z+7qDtvNdtaN8Qr1sDZNi
+4K36s9NXdwUJ3eym9U0lFN2kGjc7pOor/XH94w8aWzfgK8BtTFrJC3+MyULdrkP
ZhybQR+H8F1W54oq+rImVHi1nCmUKnxkGD7JNmRSiwi0J8NseseHuJrYPYBG7Bgf
w4F9w3mFQQLzR0DVUZMI23ADdp6lo7d5n3cNFNAahWsTFOZAMJqXsnJk8mdAX5XC
PovDMF0ub0vxOVAdk3rKvCoBz39avEViOk47NiVvmmUPM6kS
-----END CERTIFICATE-----
Generated at Wed Apr 9 15:47:00 2025 by rpki-client