Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/7b1205-3450-4e90-8b14-17e66c1fd3d1/1/5FrtxbVMI7aKmDLhmQVLq0PYr8Q.roa
File: 5FrtxbVMI7aKmDLhmQVLq0PYr8Q.roa (raw, json)
Hash identifier: +PjVTwJaxYhIdEqMdn4kjIeM5eo464YVuJUkh0pBwCo=
Subject key identifier: E4:5A:ED:C5:B5:4C:23:B6:8A:98:32:E1:99:05:4B:AB:43:D8:AF:C4
Certificate issuer: /CN=260b2bc45477c81d774daa0c28ab44b774ba0920
Certificate serial: 01971722A0EF7B900E9FA8D04C48D8EBB725
Authority key identifier: 26:0B:2B:C4:54:77:C8:1D:77:4D:AA:0C:28:AB:44:B7:74:BA:09:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JgsrxFR3yB13TaoMKKtEt3S6CSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/7b1205-3450-4e90-8b14-17e66c1fd3d1/1/5FrtxbVMI7aKmDLhmQVLq0PYr8Q.roa
Signing time: Wed 28 May 2025 13:43:54 +0000
ROA not before: Wed 28 May 2025 13:43:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 29182
IP address blocks: 2a0c:9482::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:17:22:a0:ef:7b:90:0e:9f:a8:d0:4c:48:d8:eb:b7:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=260b2bc45477c81d774daa0c28ab44b774ba0920
Validity
Not Before: May 28 13:43:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e45aedc5b54c23b68a9832e199054bab43d8afc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:60:90:83:ea:9b:b5:f6:7b:94:ff:74:d0:bf:
5b:ce:30:b8:b7:b6:b9:5a:04:fd:6a:eb:b0:07:a5:
a2:25:d1:b6:bd:4e:c7:d0:2b:ee:48:c6:71:15:f6:
8b:1f:9e:7b:56:df:58:01:d7:f5:f5:0d:4d:7d:9b:
a7:5d:fe:85:7a:ef:aa:e3:76:38:df:03:62:7a:b0:
fb:bb:1e:d9:fa:a3:14:53:47:05:05:05:af:9f:1b:
d5:64:76:97:8e:87:16:d4:cd:ae:8e:01:cd:f1:80:
cb:b0:3b:d8:44:de:08:5a:14:92:0c:a0:36:e5:b7:
99:97:d4:ec:f8:03:80:b5:d2:aa:30:26:5f:cf:05:
2b:76:86:63:fc:3f:b7:8d:39:56:55:e5:fc:f8:0e:
0b:56:18:b5:c1:99:b3:66:24:99:56:36:2e:87:00:
85:0f:07:1a:ac:43:70:ae:13:29:19:9d:b5:a8:1b:
9e:c0:1f:d1:7d:a4:ea:98:40:df:0d:11:46:58:30:
b6:62:cc:7e:14:7a:6f:b9:f4:fd:6f:88:60:63:dc:
95:e6:45:f6:6e:00:0d:80:31:bf:45:f0:14:00:d5:
ce:d2:2a:93:4a:dc:21:ee:8c:42:f0:ce:b4:a9:3a:
47:f3:c2:e8:21:39:33:41:2a:40:71:ff:5d:22:56:
52:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:5A:ED:C5:B5:4C:23:B6:8A:98:32:E1:99:05:4B:AB:43:D8:AF:C4
X509v3 Authority Key Identifier:
keyid:26:0B:2B:C4:54:77:C8:1D:77:4D:AA:0C:28:AB:44:B7:74:BA:09:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JgsrxFR3yB13TaoMKKtEt3S6CSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7b1205-3450-4e90-8b14-17e66c1fd3d1/1/5FrtxbVMI7aKmDLhmQVLq0PYr8Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7b1205-3450-4e90-8b14-17e66c1fd3d1/1/JgsrxFR3yB13TaoMKKtEt3S6CSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9482::/32
Signature Algorithm: sha256WithRSAEncryption
48:f9:4a:fa:f0:2c:65:c2:b5:38:6f:dd:b0:b7:ab:9d:e2:cf:
a4:87:79:91:c6:74:32:c6:dd:3c:47:05:7d:77:96:d7:34:5d:
e9:52:5d:58:a2:ee:08:46:87:30:f9:cb:46:08:47:e8:71:60:
6e:18:65:87:94:cd:6a:f7:ce:0e:16:c6:a9:20:d5:39:50:64:
2f:1a:4b:2b:f0:51:e7:40:97:c2:a2:5f:b1:87:8f:f1:bc:98:
13:50:e2:72:dd:1d:c8:e3:27:51:26:dd:1a:a7:2f:9f:0a:e2:
b2:b1:6e:fc:2a:7e:02:4a:43:00:a7:1c:d5:53:76:90:d2:ab:
48:21:9d:e6:33:a2:33:55:5a:13:a8:e3:af:c5:1c:36:8c:af:
d5:71:0e:85:15:27:ad:17:6f:c1:d8:b5:5a:94:8a:a2:10:d6:
33:c3:6d:05:66:ec:20:21:b2:a7:53:8c:ce:5c:8d:5a:b5:74:
15:76:af:7b:79:50:1e:db:8f:fc:2d:7a:fe:ac:bf:f3:60:19:
9c:43:a0:fa:40:67:63:01:0f:5c:4a:45:b3:23:4f:73:3a:02:
a1:ad:0a:a3:a5:6b:3e:a7:35:86:a5:d2:d5:2f:88:ae:eb:9d:
72:3c:fb:ff:4f:ab:f1:2e:45:9b:9e:6b:60:f2:c7:01:4a:42:
81:5d:0a:5e
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAZcXIqDve5AOn6jQTEjY67clMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI2MGIyYmM0NTQ3N2M4MWQ3NzRkYWEwYzI4YWI0NGI3NzRi
YTA5MjAwHhcNMjUwNTI4MTM0MzU0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNDVhZWRjNWI1NGMyM2I2OGE5ODMyZTE5OTA1NGJhYjQzZDhhZmM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA62CQg+qbtfZ7lP900L9bzjC4t7a5
WgT9auuwB6WiJdG2vU7H0CvuSMZxFfaLH557Vt9YAdf19Q1NfZunXf6Feu+q43Y4
3wNierD7ux7Z+qMUU0cFBQWvnxvVZHaXjocW1M2ujgHN8YDLsDvYRN4IWhSSDKA2
5beZl9Ts+AOAtdKqMCZfzwUrdoZj/D+3jTlWVeX8+A4LVhi1wZmzZiSZVjYuhwCF
DwcarENwrhMpGZ21qBuewB/RfaTqmEDfDRFGWDC2Ysx+FHpvufT9b4hgY9yV5kX2
bgANgDG/RfAUANXO0iqTStwh7oxC8M60qTpH88LoITkzQSpAcf9dIlZS6wIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFORa7cW1TCO2ipgy4ZkFS6tD2K/EMB8GA1UdIwQY
MBaAFCYLK8RUd8gdd02qDCirRLd0ugkgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSmdzcnhGUjN5QjEzVGFvTUtLdEV0M1M2Q1NBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS83YjEyMDUtMzQ1MC00ZTkwLThiMTQt
MTdlNjZjMWZkM2QxLzEvNUZydHhiVk1JN2FLbURMaG1RVkxxMFBZcjhRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYS83YjEyMDUtMzQ1MC00ZTkwLThiMTQtMTdlNjZjMWZkM2Qx
LzEvSmdzcnhGUjN5QjEzVGFvTUtLdEV0M1M2Q1NBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgyUgjAN
BgkqhkiG9w0BAQsFAAOCAQEASPlK+vAsZcK1OG/dsLerneLPpId5kcZ0MsbdPEcF
fXeW1zRd6VJdWKLuCEaHMPnLRghH6HFgbhhlh5TNavfODhbGqSDVOVBkLxpLK/BR
50CXwqJfsYeP8byYE1Dict0dyOMnUSbdGqcvnwrisrFu/Cp+AkpDAKcc1VN2kNKr
SCGd5jOiM1VaE6jjr8UcNoyv1XEOhRUnrRdvwdi1WpSKohDWM8NtBWbsICGyp1OM
zlyNWrV0FXave3lQHtuP/C16/qy/82AZnEOg+kBnYwEPXEpFsyNPczoCoa0Ko6Vr
Pqc1hqXS1S+Iruudcjz7/0+r8S5Fm55rYPLHAUpCgV0KXg==
-----END CERTIFICATE-----
Generated at Sun Jun 8 06:19:57 2025 by rpki-client