Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/_gymEXO8ZS4cCAcooBb8esW9aAk.roa
File: _gymEXO8ZS4cCAcooBb8esW9aAk.roa (raw, json)
Hash identifier: DmoSZ+ZGOGpC+b50t6KOUfNKuh6mtMPkxCQ8N5TkW5w=
Subject key identifier: FE:0C:A6:11:73:BC:65:2E:1C:08:07:28:A0:16:FC:7A:C5:BD:68:09
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 018CC80155CC5D44C0DC40347D15F76C416B
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/_gymEXO8ZS4cCAcooBb8esW9aAk.roa
Signing time: Tue 02 Jan 2024 02:29:39 +0000
ROA not before: Tue 02 Jan 2024 02:29:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199417
IP address blocks: 2a0c:b641:9c0::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:55:cc:5d:44:c0:dc:40:34:7d:15:f7:6c:41:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 02:29:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fe0ca61173bc652e1c080728a016fc7ac5bd6809
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:5c:3f:94:5b:dd:e5:17:1d:61:f7:80:55:02:
15:a9:2f:55:a8:5a:cf:85:8d:b8:74:67:d5:7d:98:
f3:a1:31:b0:71:e1:59:02:8c:e6:ec:20:86:58:d2:
ca:ee:73:a9:34:a5:46:58:73:b0:79:51:fa:82:c7:
6e:ef:d6:0b:0a:91:da:2f:f2:b3:74:9d:6c:85:59:
e5:9b:d8:65:98:cf:c6:3e:2d:b1:e3:3c:af:08:ba:
36:17:3c:90:04:51:81:9e:e9:2f:63:0c:08:88:f7:
29:4d:d2:b1:85:71:ba:84:a0:50:77:c3:37:79:2a:
fc:ae:ba:cd:30:2b:3c:9d:77:ad:cb:0f:60:d6:a4:
9e:d3:7a:19:53:89:82:b9:29:ce:21:55:31:33:a9:
d0:ae:af:ae:0a:1d:31:20:d5:ac:41:db:b2:da:2a:
69:38:18:c3:b7:ea:38:e9:aa:aa:63:95:9a:44:2f:
9e:28:b1:2d:ef:ea:e4:10:8d:c7:5f:f3:47:12:bb:
8d:b8:30:71:30:b4:12:62:11:ea:55:50:2d:c4:42:
d6:ee:6c:8e:6c:74:fc:e8:d0:1c:4c:73:7c:e5:69:
4e:35:f3:37:ce:59:be:f0:c1:df:ad:35:76:dd:a9:
d6:aa:fa:9f:24:19:46:1c:42:87:7c:d3:e1:f0:39:
03:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:0C:A6:11:73:BC:65:2E:1C:08:07:28:A0:16:FC:7A:C5:BD:68:09
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/_gymEXO8ZS4cCAcooBb8esW9aAk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:9c0::/44
Signature Algorithm: sha256WithRSAEncryption
3d:63:bf:24:56:a3:a2:fa:cf:0a:d1:25:0e:ae:6a:72:d8:87:
b6:bc:08:7b:7c:58:ed:5d:b3:0a:91:71:bf:24:64:9d:4f:2a:
98:76:0a:12:0e:2c:3a:58:84:ec:3a:d1:a2:e2:bd:79:38:02:
8f:b5:c8:a3:a1:4b:6e:1e:9e:ed:df:2c:ec:12:e9:4d:05:92:
fd:fa:93:a2:20:1f:8b:46:50:fd:2c:fd:16:a2:f5:32:0a:8a:
ab:b5:e3:3f:22:b5:6b:74:8a:db:d7:0f:43:83:9a:ae:69:eb:
8d:aa:d8:6f:7b:12:01:c8:2a:de:a0:34:d2:4d:7c:d1:33:eb:
a3:30:79:dd:21:ea:26:0c:92:17:20:55:d9:74:c4:73:aa:e4:
42:b2:c2:ed:63:70:82:d4:a4:ed:c0:8c:14:b3:66:74:89:98:
07:ad:25:fa:82:bd:cd:88:a3:92:59:a6:05:2a:2e:00:9a:ce:
d9:c0:1d:e4:27:e0:51:4f:28:09:7d:c5:b1:10:0e:66:ed:70:
26:59:3a:84:6c:f8:8f:c2:db:9a:aa:2c:e7:93:9d:8f:70:39:
76:85:74:89:dd:c6:0d:84:96:7c:71:a2:b6:78:6b:87:b5:14:
60:f0:3d:14:e2:8d:6b:df:b4:1c:67:39:4b:9a:86:7d:4a:19:
c7:18:43:5f
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYzIAVXMXUTA3EA0fRX3bEFrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1OTc2ODAxMzYzZDM3NTc4NjE1MmU0ZDA2MWU3NWM4YmVi
MzUwNTgwHhcNMjQwMTAyMDIyOTM5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZTBjYTYxMTczYmM2NTJlMWMwODA3MjhhMDE2ZmM3YWM1YmQ2ODA5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArFw/lFvd5RcdYfeAVQIVqS9VqFrP
hY24dGfVfZjzoTGwceFZAozm7CCGWNLK7nOpNKVGWHOweVH6gsdu79YLCpHaL/Kz
dJ1shVnlm9hlmM/GPi2x4zyvCLo2FzyQBFGBnukvYwwIiPcpTdKxhXG6hKBQd8M3
eSr8rrrNMCs8nXetyw9g1qSe03oZU4mCuSnOIVUxM6nQrq+uCh0xINWsQduy2ipp
OBjDt+o46aqqY5WaRC+eKLEt7+rkEI3HX/NHEruNuDBxMLQSYhHqVVAtxELW7myO
bHT86NAcTHN85WlONfM3zlm+8MHfrTV23anWqvqfJBlGHEKHfNPh8DkDuQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFP4MphFzvGUuHAgHKKAW/HrFvWgJMB8GA1UdIwQY
MBaAFAWXaAE2PTdXhhUuTQYedci+s1BYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2Et
NWVjOGM4ZWQ2MGZkLzEvX2d5bUVYTzhaUzRjQ0Fjb29CYjhlc1c5YUFrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2EtNWVjOGM4ZWQ2MGZk
LzEvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgy2QQnA
MA0GCSqGSIb3DQEBCwUAA4IBAQA9Y78kVqOi+s8K0SUOrmpy2Ie2vAh7fFjtXbMK
kXG/JGSdTyqYdgoSDiw6WITsOtGi4r15OAKPtcijoUtuHp7t3yzsEulNBZL9+pOi
IB+LRlD9LP0WovUyCoqrteM/IrVrdIrb1w9Dg5quaeuNqthvexIByCreoDTSTXzR
M+ujMHndIeomDJIXIFXZdMRzquRCssLtY3CC1KTtwIwUs2Z0iZgHrSX6gr3NiKOS
WaYFKi4Ams7ZwB3kJ+BRTygJfcWxEA5m7XAmWTqEbPiPwtuaqiznk52PcDl2hXSJ
3cYNhJZ8caK2eGuHtRRg8D0U4o1r37QcZzlLmoZ9ShnHGENf
-----END CERTIFICATE-----
Generated at Sun Apr 6 14:13:34 2025 by rpki-client