Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/ce38df-f0a7-4e34-9704-a45a6317a13d/1/aX7NVMN-Bq5pwQlcEdvH8Om7KQM.roa
File: aX7NVMN-Bq5pwQlcEdvH8Om7KQM.roa (raw, json)
Hash identifier: Txu5+rcKQBXZrGaM8SOPkpgxzz2Hrr+3tSbS+0b2hR4=
Subject key identifier: 69:7E:CD:54:C3:7E:06:AE:69:C1:09:5C:11:DB:C7:F0:E9:BB:29:03
Certificate issuer: /CN=6deeca7b9858c2de6ccb41e5d35de0795c79ed96
Certificate serial: 07AC39C6
Authority key identifier: 6D:EE:CA:7B:98:58:C2:DE:6C:CB:41:E5:D3:5D:E0:79:5C:79:ED:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/be7Ke5hYwt5sy0Hl013geVx57ZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/ce38df-f0a7-4e34-9704-a45a6317a13d/1/aX7NVMN-Bq5pwQlcEdvH8Om7KQM.roa
Signing time: Sat 01 Jan 2022 09:01:44 +0000
ROA not before: Sat 01 Jan 2022 09:01:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209833
IP address blocks: 2a0e:7d40::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128727494 (0x7ac39c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6deeca7b9858c2de6ccb41e5d35de0795c79ed96
Validity
Not Before: Jan 1 09:01:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=697ecd54c37e06ae69c1095c11dbc7f0e9bb2903
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:3c:bb:50:d9:11:7d:43:07:d5:a4:75:eb:19:
3f:ef:d6:da:d1:38:96:e1:2e:fa:24:6e:44:85:30:
cc:ac:31:91:57:85:6c:7a:2e:b1:83:04:9b:7c:19:
b9:be:6e:8f:50:a0:68:9c:a9:9b:dd:9c:16:cf:04:
9d:2d:0c:87:c1:ee:5d:78:d9:ff:0e:76:89:5e:1c:
15:28:9d:59:b3:97:ef:10:95:94:3e:b9:19:b0:41:
de:d1:66:25:a0:b2:02:5c:8c:dd:d1:07:f0:7c:8d:
7c:e9:35:b3:03:47:86:f5:3f:bb:71:b9:9d:92:42:
5f:4a:36:0c:db:1d:85:32:76:d9:4f:85:b7:29:fd:
05:11:8b:7f:c7:52:17:40:a1:b7:14:24:e0:f2:91:
44:6f:93:1e:b0:5e:8d:89:b1:98:64:8d:2d:26:e0:
4c:50:8e:cb:2a:0d:82:7c:42:bc:db:c4:4c:ed:26:
a9:62:6f:83:18:71:67:ea:6a:ac:b3:c5:cb:2e:41:
23:f0:d5:30:f0:d0:80:a8:c4:e7:32:2f:d2:c3:1d:
71:d7:20:25:64:98:f9:b8:c4:5a:f5:2c:ba:98:4e:
a3:05:89:2c:af:b7:ba:d1:d7:d8:4e:8c:b9:70:4a:
72:e7:ea:a7:e5:f7:f1:2d:5c:09:6a:66:61:06:3f:
a9:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:7E:CD:54:C3:7E:06:AE:69:C1:09:5C:11:DB:C7:F0:E9:BB:29:03
X509v3 Authority Key Identifier:
keyid:6D:EE:CA:7B:98:58:C2:DE:6C:CB:41:E5:D3:5D:E0:79:5C:79:ED:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/be7Ke5hYwt5sy0Hl013geVx57ZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/ce38df-f0a7-4e34-9704-a45a6317a13d/1/aX7NVMN-Bq5pwQlcEdvH8Om7KQM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/ce38df-f0a7-4e34-9704-a45a6317a13d/1/be7Ke5hYwt5sy0Hl013geVx57ZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:7d40::/32
Signature Algorithm: sha256WithRSAEncryption
2c:f4:2a:45:aa:3b:6f:10:b8:b5:e0:32:25:f9:00:7b:cd:53:
ca:57:d2:70:9a:da:7a:04:e5:67:4f:fa:34:10:05:a3:c8:7d:
67:89:27:96:3e:a8:bd:21:f8:5f:71:d6:9d:26:4c:d9:65:6d:
f9:1a:d4:33:30:a1:d3:2b:6d:ea:b1:5c:22:0a:42:42:90:ec:
5a:83:a2:4d:eb:f9:8f:88:e1:56:37:49:fb:21:c9:ff:7a:99:
4e:e7:6c:c5:3c:7e:00:41:06:a3:00:70:70:cb:8f:7f:27:6a:
b9:e6:34:a5:c2:57:11:6e:d7:86:56:64:98:d7:1c:8d:3d:fd:
95:d7:c9:d1:b2:ba:0f:ca:37:f2:d6:e9:24:63:e5:86:04:d7:
c0:db:a8:3f:21:b1:6d:8e:b9:93:e8:a3:3b:c3:d3:b7:09:f4:
b4:94:42:b2:52:9a:cf:f5:d4:f7:36:ad:77:4c:19:f2:0c:bb:
86:a3:88:40:55:c7:0f:91:9e:23:7e:6a:d3:bb:2c:ac:3a:9c:
b2:83:6f:c9:54:fe:44:38:8d:fd:51:db:3b:e0:03:11:b3:2f:
ec:02:08:3d:fe:5e:bb:f1:5a:e7:07:0b:37:c3:de:70:9e:f3:
52:55:f3:c7:82:88:d7:00:51:f2:f4:cc:ab:3f:f9:e1:1f:70:
ae:af:fb:2f
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgIEB6w5xjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
ZGVlY2E3Yjk4NThjMmRlNmNjYjQxZTVkMzVkZTA3OTVjNzllZDk2MB4XDTIyMDEw
MTA5MDE0NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjk3ZWNkNTRjMzdl
MDZhZTY5YzEwOTVjMTFkYmM3ZjBlOWJiMjkwMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAIw8u1DZEX1DB9WkdesZP+/W2tE4luEu+iRuRIUwzKwxkVeF
bHousYMEm3wZub5uj1CgaJypm92cFs8EnS0Mh8HuXXjZ/w52iV4cFSidWbOX7xCV
lD65GbBB3tFmJaCyAlyM3dEH8HyNfOk1swNHhvU/u3G5nZJCX0o2DNsdhTJ22U+F
tyn9BRGLf8dSF0ChtxQk4PKRRG+THrBejYmxmGSNLSbgTFCOyyoNgnxCvNvETO0m
qWJvgxhxZ+pqrLPFyy5BI/DVMPDQgKjE5zIv0sMdcdcgJWSY+bjEWvUsuphOowWJ
LK+3utHX2E6MuXBKcufqp+X38S1cCWpmYQY/qTUCAwEAAaOCAgowggIGMB0GA1Ud
DgQWBBRpfs1Uw34GrmnBCVwR28fw6bspAzAfBgNVHSMEGDAWgBRt7sp7mFjC3mzL
QeXTXeB5XHntljAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2JlN0tlNWhZd3Q1c3kwSGwwMTNnZVZ4NTdaWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGMvY2UzOGRmLWYwYTctNGUzNC05NzA0LWE0NWE2MzE3YTEzZC8x
L2FYN05WTU4tQnE1cHdRbGNFZHZIOE9tN0tRTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGMv
Y2UzOGRmLWYwYTctNGUzNC05NzA0LWE0NWE2MzE3YTEzZC8xL2JlN0tlNWhZd3Q1
c3kwSGwwMTNnZVZ4NTdaWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAg
BggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACoOfUAwDQYJKoZIhvcNAQELBQAD
ggEBACz0KkWqO28QuLXgMiX5AHvNU8pX0nCa2noE5WdP+jQQBaPIfWeJJ5Y+qL0h
+F9x1p0mTNllbfka1DMwodMrbeqxXCIKQkKQ7FqDok3r+Y+I4VY3Sfshyf96mU7n
bMU8fgBBBqMAcHDLj38narnmNKXCVxFu14ZWZJjXHI09/ZXXydGyug/KN/LW6SRj
5YYE18DbqD8hsW2OuZPoozvD07cJ9LSUQrJSms/11Pc2rXdMGfIMu4ajiEBVxw+R
niN+atO7LKw6nLKDb8lU/kQ4jf1R2zvgAxGzL+wCCD3+XrvxWucHCzfD3nCe81JV
88eCiNcAUfL0zKs/+eEfcK6v+y8=
-----END CERTIFICATE-----
Generated at Thu Mar 13 20:10:13 2025 by rpki-client