Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/iMrN4uZXLZPOfjH34VsOONfIlF4.roa
File: iMrN4uZXLZPOfjH34VsOONfIlF4.roa (raw, json)
Hash identifier: UWWNeIVR2HkAwtze2ao3ndbwTFixzMYeZPWO47BFIRQ=
Subject key identifier: 88:CA:CD:E2:E6:57:2D:93:CE:7E:31:F7:E1:5B:0E:38:D7:C8:94:5E
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 01941FFA8FFDC7B27FADE0E6FEF2ED9EBD3C
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/iMrN4uZXLZPOfjH34VsOONfIlF4.roa
Signing time: Wed 01 Jan 2025 03:48:21 +0000
ROA not before: Wed 01 Jan 2025 03:48:21 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209261
IP address blocks: 2a0c:b641:cd0::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:8f:fd:c7:b2:7f:ad:e0:e6:fe:f2:ed:9e:bd:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 1 03:48:21 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=88cacde2e6572d93ce7e31f7e15b0e38d7c8945e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:35:48:76:6a:fd:9a:49:77:0b:31:92:0b:b1:
95:c9:5b:e3:fb:34:64:b6:08:09:c6:a6:9c:e1:e6:
03:2e:fd:40:21:8c:73:22:35:c2:2c:dc:29:96:11:
de:53:e7:75:01:9b:96:2b:38:1b:69:ff:9b:b0:b7:
61:b3:4a:d7:8e:71:84:86:7f:87:bb:5c:59:db:9d:
67:95:d9:7a:17:3c:5f:8e:bf:75:15:34:34:2b:94:
16:cb:3e:f9:79:23:f9:d8:65:6a:00:61:7c:71:d1:
9b:01:6d:78:49:72:2d:0e:2c:1d:67:8a:ec:c9:2b:
1e:0b:93:e6:07:70:30:e3:e7:01:3d:13:d0:b0:50:
e8:63:6f:b3:d9:61:bb:80:30:6b:48:48:28:ac:0d:
0a:56:01:80:6a:8c:6a:97:8c:0c:74:51:bd:9b:be:
20:aa:10:fd:d1:ca:f8:c7:e8:42:b4:c0:d9:f9:78:
05:47:0a:b0:05:75:16:3c:59:1d:aa:99:68:d8:c0:
2c:c9:73:e4:fd:18:99:21:17:94:6f:ff:8a:b4:dd:
f4:81:df:fe:58:67:32:2a:6a:da:fc:c8:de:57:83:
7a:a3:e3:83:1e:17:bc:ec:62:8d:49:5b:25:9a:af:
a8:56:36:c8:20:11:4d:35:1e:a9:e8:eb:27:35:b8:
eb:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:CA:CD:E2:E6:57:2D:93:CE:7E:31:F7:E1:5B:0E:38:D7:C8:94:5E
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/iMrN4uZXLZPOfjH34VsOONfIlF4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:cd0::/44
Signature Algorithm: sha256WithRSAEncryption
90:ea:02:fc:a5:76:5a:d1:d7:ab:7d:ec:c4:81:1b:7e:e9:6c:
05:03:b9:5b:c0:8f:39:e8:ad:f6:46:fe:44:14:19:90:15:ce:
d3:ac:9b:1d:ea:28:12:95:2e:60:48:46:0a:4d:8e:31:a2:79:
87:d1:12:35:eb:c8:ea:e6:8c:39:22:5e:11:a6:b0:cd:35:86:
21:e7:40:3c:5f:0f:d0:66:b5:ee:a9:48:37:b5:2a:55:71:28:
eb:f1:87:06:67:ce:54:ea:90:44:c1:69:95:c5:8e:b1:2b:6e:
a1:3b:df:92:22:3c:31:89:0b:94:c6:99:5f:0c:30:a6:d3:21:
22:87:0f:2d:c8:bb:e1:05:17:85:60:b0:a5:4b:17:27:01:7e:
b7:28:47:0d:8e:ef:c3:db:fe:f7:fc:ce:91:a0:2e:9f:22:68:
8b:41:18:84:27:80:14:64:7b:26:87:f0:3d:27:f2:1c:e1:8b:
f9:0e:8e:b1:34:6a:63:a2:5d:c2:19:6b:e1:ef:4e:a7:4e:bb:
48:16:ca:f4:8d:99:0d:6e:ec:6f:06:79:d2:4c:e2:9e:0d:cd:
91:98:de:83:9b:68:38:49:4f:19:df:29:b0:25:f7:f1:b9:db:
23:74:74:81:07:48:63:3c:bb:a4:42:fc:9d:39:c3:80:cb:1d:
d9:ac:c4:2c
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAZQf+o/9x7J/reDm/vLtnr08MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1OTc2ODAxMzYzZDM3NTc4NjE1MmU0ZDA2MWU3NWM4YmVi
MzUwNTgwHhcNMjUwMTAxMDM0ODIxWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4OGNhY2RlMmU2NTcyZDkzY2U3ZTMxZjdlMTViMGUzOGQ3Yzg5NDVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAojVIdmr9mkl3CzGSC7GVyVvj+zRk
tggJxqac4eYDLv1AIYxzIjXCLNwplhHeU+d1AZuWKzgbaf+bsLdhs0rXjnGEhn+H
u1xZ251nldl6Fzxfjr91FTQ0K5QWyz75eSP52GVqAGF8cdGbAW14SXItDiwdZ4rs
ySseC5PmB3Aw4+cBPRPQsFDoY2+z2WG7gDBrSEgorA0KVgGAaoxql4wMdFG9m74g
qhD90cr4x+hCtMDZ+XgFRwqwBXUWPFkdqplo2MAsyXPk/RiZIReUb/+KtN30gd/+
WGcyKmra/MjeV4N6o+ODHhe87GKNSVslmq+oVjbIIBFNNR6p6OsnNbjrRQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFIjKzeLmVy2Tzn4x9+FbDjjXyJReMB8GA1UdIwQY
MBaAFAWXaAE2PTdXhhUuTQYedci+s1BYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2Et
NWVjOGM4ZWQ2MGZkLzEvaU1yTjR1WlhMWlBPZmpIMzRWc09PTmZJbEY0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2EtNWVjOGM4ZWQ2MGZk
LzEvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgy2QQzQ
MA0GCSqGSIb3DQEBCwUAA4IBAQCQ6gL8pXZa0derfezEgRt+6WwFA7lbwI856K32
Rv5EFBmQFc7TrJsd6igSlS5gSEYKTY4xonmH0RI168jq5ow5Il4RprDNNYYh50A8
Xw/QZrXuqUg3tSpVcSjr8YcGZ85U6pBEwWmVxY6xK26hO9+SIjwxiQuUxplfDDCm
0yEihw8tyLvhBReFYLClSxcnAX63KEcNju/D2/73/M6RoC6fImiLQRiEJ4AUZHsm
h/A9J/Ic4Yv5Do6xNGpjol3CGWvh706nTrtIFsr0jZkNbuxvBnnSTOKeDc2RmN6D
m2g4SU8Z3ymwJffxudsjdHSBB0hjPLukQvydOcOAyx3ZrMQs
-----END CERTIFICATE-----
Generated at Sun Apr 6 14:10:46 2025 by rpki-client