Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/X_sy2DXYx4tSi9zhCRe408Ce7sQ.roa
File: X_sy2DXYx4tSi9zhCRe408Ce7sQ.roa (raw, json)
Hash identifier: XVjgi/QTYYZ4IycDkqO219gpgmLXmaFwSWeaFHSMOOc=
Subject key identifier: 5F:FB:32:D8:35:D8:C7:8B:52:8B:DC:E1:09:17:B8:D3:C0:9E:EE:C4
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 01941FFA9BD4CBB1288787674ED9D99A5D72
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/X_sy2DXYx4tSi9zhCRe408Ce7sQ.roa
Signing time: Wed 01 Jan 2025 03:48:25 +0000
ROA not before: Wed 01 Jan 2025 03:48:25 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 210821
IP address blocks: 2a0c:b641:250::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:9b:d4:cb:b1:28:87:87:67:4e:d9:d9:9a:5d:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 1 03:48:25 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5ffb32d835d8c78b528bdce10917b8d3c09eeec4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:35:af:2b:5f:f7:d2:90:ec:70:b9:cc:ed:73:
b8:9d:81:4e:06:0f:2e:cd:c1:3d:3c:5f:c5:ad:d5:
e5:4d:06:d9:90:9f:1d:ed:19:64:f0:01:b7:d5:87:
40:d9:41:d5:27:ff:00:80:c5:26:22:0b:0c:0a:ce:
df:82:e7:a6:ce:68:8e:25:f6:f3:a4:f1:d4:aa:96:
8a:f5:24:7c:58:58:37:a9:ce:64:9c:0a:be:23:d4:
07:c0:dc:9c:ef:34:c8:94:6d:bf:da:9a:aa:27:5e:
40:88:41:4a:d0:82:8f:19:ef:1d:e1:a9:4a:0b:5d:
d7:63:2b:d8:6f:cb:4d:74:03:4b:d6:5d:e3:b3:9c:
ff:a1:d2:89:60:f4:92:bc:9f:9c:11:93:c6:a6:c2:
2e:a2:15:4b:fd:2b:50:58:a5:16:da:a5:b3:f1:67:
83:a8:1e:9c:0d:a3:73:77:12:ad:cf:20:d8:fa:d8:
5f:b0:91:2a:81:5d:ed:7f:22:71:3c:c3:e9:a6:03:
28:ec:57:79:5a:28:ca:01:92:b4:a9:9f:a1:43:e6:
78:21:29:9c:42:34:cd:e7:0b:7f:08:85:d0:cf:87:
38:30:0e:e7:ba:af:2c:02:82:3e:5f:4c:15:91:98:
41:6b:71:85:d7:06:6f:ca:46:b5:11:e9:c6:33:23:
fe:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:FB:32:D8:35:D8:C7:8B:52:8B:DC:E1:09:17:B8:D3:C0:9E:EE:C4
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/X_sy2DXYx4tSi9zhCRe408Ce7sQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:250::/44
Signature Algorithm: sha256WithRSAEncryption
3e:25:2d:5f:94:02:95:1d:68:5a:6f:e8:8a:ee:0b:7e:19:f5:
12:19:a4:88:1e:d9:10:f3:74:52:d9:17:44:cc:c8:2b:e8:8c:
2f:87:fe:0c:b8:97:80:30:c7:c1:93:8d:54:f2:41:1f:c5:cd:
14:50:8e:4f:9d:c5:5c:e6:42:d5:30:b5:56:a4:ad:be:44:d3:
c2:91:82:97:48:35:30:b8:0e:ca:17:a0:f0:10:b7:0f:fa:b5:
6d:0b:22:cc:ab:73:dd:d6:06:06:6c:35:b5:2c:0c:11:10:fb:
96:86:b6:53:44:aa:59:eb:36:3c:55:d4:a1:60:cd:9f:ec:36:
1c:14:b4:76:63:33:c9:a4:49:0c:e4:f5:b3:09:0c:0f:9d:56:
b3:c1:2a:71:34:e1:3f:92:3a:ed:36:3d:3b:23:c3:5d:d5:0d:
cf:55:8b:43:c7:38:f5:d7:5c:6a:04:f2:7b:b2:8f:74:f5:95:
07:a9:08:d7:61:b2:84:63:36:cb:5c:2d:2e:e8:d1:b0:4a:b1:
0d:c2:90:a7:e0:e4:c4:f6:7c:3f:bc:ca:24:0e:d2:b7:54:71:
46:79:87:61:f3:d7:c3:55:d4:a8:ab:f7:c5:19:dc:d7:86:e5:
26:5c:ea:f5:c8:33:d5:b1:a9:87:c1:c8:d5:ec:56:34:c3:46:
b6:9b:2a:cc
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAZQf+pvUy7Eoh4dnTtnZml1yMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1OTc2ODAxMzYzZDM3NTc4NjE1MmU0ZDA2MWU3NWM4YmVi
MzUwNTgwHhcNMjUwMTAxMDM0ODI1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ZmZiMzJkODM1ZDhjNzhiNTI4YmRjZTEwOTE3YjhkM2MwOWVlZWM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgTWvK1/30pDscLnM7XO4nYFOBg8u
zcE9PF/FrdXlTQbZkJ8d7Rlk8AG31YdA2UHVJ/8AgMUmIgsMCs7fguemzmiOJfbz
pPHUqpaK9SR8WFg3qc5knAq+I9QHwNyc7zTIlG2/2pqqJ15AiEFK0IKPGe8d4alK
C13XYyvYb8tNdANL1l3js5z/odKJYPSSvJ+cEZPGpsIuohVL/StQWKUW2qWz8WeD
qB6cDaNzdxKtzyDY+thfsJEqgV3tfyJxPMPppgMo7Fd5WijKAZK0qZ+hQ+Z4ISmc
QjTN5wt/CIXQz4c4MA7nuq8sAoI+X0wVkZhBa3GF1wZvyka1EenGMyP+rQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFF/7Mtg12MeLUovc4QkXuNPAnu7EMB8GA1UdIwQY
MBaAFAWXaAE2PTdXhhUuTQYedci+s1BYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2Et
NWVjOGM4ZWQ2MGZkLzEvWF9zeTJEWFl4NHRTaTl6aENSZTQwOENlN3NRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2EtNWVjOGM4ZWQ2MGZk
LzEvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgy2QQJQ
MA0GCSqGSIb3DQEBCwUAA4IBAQA+JS1flAKVHWhab+iK7gt+GfUSGaSIHtkQ83RS
2RdEzMgr6Iwvh/4MuJeAMMfBk41U8kEfxc0UUI5PncVc5kLVMLVWpK2+RNPCkYKX
SDUwuA7KF6DwELcP+rVtCyLMq3Pd1gYGbDW1LAwREPuWhrZTRKpZ6zY8VdShYM2f
7DYcFLR2YzPJpEkM5PWzCQwPnVazwSpxNOE/kjrtNj07I8Nd1Q3PVYtDxzj111xq
BPJ7so909ZUHqQjXYbKEYzbLXC0u6NGwSrENwpCn4OTE9nw/vMokDtK3VHFGeYdh
89fDVdSoq/fFGdzXhuUmXOr1yDPVsamHwcjV7FY0w0a2myrM
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:31:32 2025 by rpki-client