Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/fE26j8O82dQXrp3sqdpZi0I3_wk.roa
File: fE26j8O82dQXrp3sqdpZi0I3_wk.roa (raw, json)
Hash identifier: NaAFruMLt1CH/bkVjQ8e1WVBkFVuCfyN/oh7R21Euog=
Subject key identifier: 7C:4D:BA:8F:C3:BC:D9:D4:17:AE:9D:EC:A9:DA:59:8B:42:37:FF:09
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 0194222040F226488B19541D7E02E15DD00E
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/fE26j8O82dQXrp3sqdpZi0I3_wk.roa
Signing time: Wed 01 Jan 2025 13:48:46 +0000
ROA not before: Wed 01 Jan 2025 13:48:46 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212057
IP address blocks: 2a0e:8f02:f018::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:20:40:f2:26:48:8b:19:54:1d:7e:02:e1:5d:d0:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Jan 1 13:48:46 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7c4dba8fc3bcd9d417ae9deca9da598b4237ff09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:91:ff:09:97:a7:6f:50:24:f7:55:d0:da:bc:
1b:61:ad:87:09:9a:12:0d:d5:38:78:5d:bf:f3:61:
7c:b6:60:c8:8e:4a:34:88:1a:5d:a8:d8:bb:6d:66:
54:c4:d7:d0:db:bf:83:19:c6:92:ec:5d:75:02:2d:
cc:68:b5:13:c8:5f:7f:3a:32:7a:6c:2e:fe:74:32:
01:ab:77:79:ff:df:43:0d:13:2e:07:3b:dd:7f:7d:
6f:c0:bd:03:e0:89:87:ed:a7:93:c7:d2:19:15:b1:
a8:85:38:b4:f9:21:92:6a:ee:32:b0:a7:9c:fd:d1:
22:49:6a:90:4f:a4:f6:a9:e2:67:a6:be:a8:d8:03:
08:9e:b7:7a:9a:0a:55:bb:ac:18:80:c9:33:70:d9:
62:34:10:a1:d8:a3:16:93:b4:74:80:88:e0:5f:54:
f8:b4:66:93:ab:00:d9:77:cb:6c:fb:ad:f2:a5:82:
b9:53:ec:dc:45:9f:9d:ef:40:21:c4:9a:17:cc:47:
07:63:80:d4:6b:c9:3c:7e:19:78:12:6a:6c:6e:cc:
5a:2a:3d:51:dc:12:be:89:88:e6:6d:4b:fa:7a:bb:
09:05:ec:0a:32:9c:9a:37:1c:90:73:91:2c:dc:ea:
ec:34:36:c4:e3:a6:59:c9:7c:7d:fc:fc:4b:f7:df:
31:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:4D:BA:8F:C3:BC:D9:D4:17:AE:9D:EC:A9:DA:59:8B:42:37:FF:09
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/fE26j8O82dQXrp3sqdpZi0I3_wk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:f018::/48
Signature Algorithm: sha256WithRSAEncryption
19:db:ea:01:01:d1:d1:da:eb:d2:22:56:39:33:73:c1:4a:db:
d3:fc:1b:c2:6e:d4:2e:73:0f:3a:cd:8f:71:d0:c8:b2:1f:e9:
95:a4:20:87:b8:f6:3b:6d:5c:6b:58:2b:e2:37:32:c0:18:23:
53:02:06:6e:a4:2b:e8:6d:b4:28:33:5a:59:e7:a6:ee:1b:17:
4b:49:c8:f2:23:27:8f:af:46:ee:67:cd:92:4a:e7:53:e3:91:
ce:c7:86:f4:f1:e5:0d:aa:60:9e:14:4d:18:5d:a2:21:bf:e0:
91:a1:4e:b5:89:9b:27:2a:b6:a0:4f:06:6e:d2:f7:07:39:59:
b7:e8:31:0f:d1:e5:98:67:0a:0a:67:94:e3:56:61:53:58:70:
db:8b:37:c8:1f:ac:2b:0c:b9:08:11:36:18:f9:23:69:7b:25:
c2:80:7b:69:3f:07:ea:3b:ec:82:78:39:78:61:30:6a:08:c2:
cd:08:83:d2:40:1a:5d:a8:a2:62:58:4c:2c:b5:a6:3d:65:c1:
36:a9:06:9e:da:95:d8:91:14:17:1d:cc:55:d7:2a:fc:72:33:
78:f8:94:13:e5:ee:12:53:02:23:20:75:87:b0:e5:7b:5c:67:
37:21:42:5d:c3:b8:f5:fe:36:88:c0:bf:4b:68:4f:2a:e6:86:
42:92:5c:76
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAZQiIEDyJkiLGVQdfgLhXdAOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ1NmVmNDhlZDYxNTVkZDc4NDNlZWQzNjMyNDY5YWJhYTMx
MDBiZjMwHhcNMjUwMTAxMTM0ODQ2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3YzRkYmE4ZmMzYmNkOWQ0MTdhZTlkZWNhOWRhNTk4YjQyMzdmZjA5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqJH/CZenb1Ak91XQ2rwbYa2HCZoS
DdU4eF2/82F8tmDIjko0iBpdqNi7bWZUxNfQ27+DGcaS7F11Ai3MaLUTyF9/OjJ6
bC7+dDIBq3d5/99DDRMuBzvdf31vwL0D4ImH7aeTx9IZFbGohTi0+SGSau4ysKec
/dEiSWqQT6T2qeJnpr6o2AMInrd6mgpVu6wYgMkzcNliNBCh2KMWk7R0gIjgX1T4
tGaTqwDZd8ts+63ypYK5U+zcRZ+d70AhxJoXzEcHY4DUa8k8fhl4EmpsbsxaKj1R
3BK+iYjmbUv6ersJBewKMpyaNxyQc5Es3OrsNDbE46ZZyXx9/PxL998x7wIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFHxNuo/DvNnUF66d7KnaWYtCN/8JMB8GA1UdIwQY
MBaAFNVu9I7WFV3XhD7tNjJGmrqjEAvzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMVc3MGp0WVZYZGVFUHUwMk1rYWF1cU1RQ19NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS81OGZmNTQtMzQxMC00ZTQyLWFhYjgt
ZDJkN2YyYmI2NGRmLzEvZkUyNmo4TzgyZFFYcnAzc3FkcFppMEkzX3drLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS81OGZmNTQtMzQxMC00ZTQyLWFhYjgtZDJkN2YyYmI2NGRm
LzEvMVc3MGp0WVZYZGVFUHUwMk1rYWF1cU1RQ19NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg6PAvAY
MA0GCSqGSIb3DQEBCwUAA4IBAQAZ2+oBAdHR2uvSIlY5M3PBStvT/BvCbtQucw86
zY9x0MiyH+mVpCCHuPY7bVxrWCviNzLAGCNTAgZupCvobbQoM1pZ56buGxdLScjy
IyePr0buZ82SSudT45HOx4b08eUNqmCeFE0YXaIhv+CRoU61iZsnKragTwZu0vcH
OVm36DEP0eWYZwoKZ5TjVmFTWHDbizfIH6wrDLkIETYY+SNpeyXCgHtpPwfqO+yC
eDl4YTBqCMLNCIPSQBpdqKJiWEwstaY9ZcE2qQae2pXYkRQXHcxV1yr8cjN4+JQT
5e4SUwIjIHWHsOV7XGc3IUJdw7j1/jaIwL9LaE8q5oZCklx2
-----END CERTIFICATE-----
Generated at Wed Feb 19 20:56:04 2025 by rpki-client