Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/jO_QXjc1KyJBRGcJMimMbbKinjQ.roa
File: jO_QXjc1KyJBRGcJMimMbbKinjQ.roa (raw, json)
Hash identifier: AANithQJPDjM9p4QuE6NqWknGRClAZ62KkbjzoENVEc=
Subject key identifier: 8C:EF:D0:5E:37:35:2B:22:41:44:67:09:32:29:8C:6D:B2:A2:9E:34
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 019425225C9C7DFCD710CA2D87AEEDFF84CB
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/jO_QXjc1KyJBRGcJMimMbbKinjQ.roa
Signing time: Thu 02 Jan 2025 03:49:56 +0000
ROA not before: Thu 02 Jan 2025 03:49:56 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212196
IP address blocks: 2a0e:b107:ec0::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:22:5c:9c:7d:fc:d7:10:ca:2d:87:ae:ed:ff:84:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 2 03:49:56 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8cefd05e37352b224144670932298c6db2a29e34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:63:83:2c:b7:7c:8b:18:2e:ce:54:5f:4e:93:
a7:b1:84:6a:a5:fa:3f:ae:c2:12:2c:93:ee:99:b0:
8c:41:4b:1f:65:37:8f:7e:ab:80:c3:eb:92:a5:f8:
27:a5:d9:f4:f1:7f:ae:e1:ab:45:87:87:ef:d4:ec:
ed:be:58:37:1a:b2:c9:3a:91:f2:d7:c4:6f:cf:2d:
fe:42:de:25:17:63:f0:78:fc:a9:6a:b0:65:63:ee:
11:94:b7:21:1b:0e:49:77:15:9b:fc:1e:1c:1c:f7:
ca:35:5d:dd:bf:9a:fa:10:d4:39:1a:a2:0a:bb:c0:
4f:06:c3:c4:14:d9:c0:29:c7:b3:b1:4f:76:f8:1d:
8a:25:07:c8:bb:b3:7e:5b:1e:37:87:6f:63:03:6d:
24:d0:d7:9a:3b:77:e0:03:67:1a:8d:14:69:73:7c:
6b:39:94:5f:51:1a:ee:d4:76:ba:04:00:5a:32:cb:
e1:ce:1a:1c:5a:9f:7d:ce:1e:47:14:9a:a9:70:ec:
80:20:f1:65:77:19:17:5d:61:20:bf:d5:06:e5:0e:
74:81:39:12:16:a1:a2:7c:bc:4c:02:e8:49:4c:aa:
df:63:28:71:0d:a8:b3:67:2c:b1:6d:18:f0:d6:bf:
16:10:3e:37:9e:03:e9:f6:61:b6:73:ce:72:1d:24:
9e:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:EF:D0:5E:37:35:2B:22:41:44:67:09:32:29:8C:6D:B2:A2:9E:34
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/jO_QXjc1KyJBRGcJMimMbbKinjQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:ec0::/44
Signature Algorithm: sha256WithRSAEncryption
48:56:21:8f:04:34:60:7c:2b:fe:63:02:60:67:52:4e:9c:fb:
d5:4b:7a:0c:e6:2d:7f:b2:74:f0:9b:b7:5d:22:2a:05:59:29:
70:16:49:de:68:95:8f:a2:26:22:82:20:26:81:09:bf:7a:8f:
64:ec:9a:c8:49:e7:a3:bc:04:cf:e7:31:a9:53:b9:79:f6:58:
1a:a8:e2:db:e5:74:a7:71:cc:c8:ac:68:d2:79:33:bf:da:6f:
dc:ce:c4:95:a4:f9:52:42:3a:48:c8:7b:3e:ba:56:14:d2:54:
f6:69:2a:de:25:5b:3a:f6:5b:6a:e5:a5:b6:ea:86:19:03:6d:
cf:3f:29:4a:a2:46:2c:87:04:ad:19:13:a5:53:83:a8:91:f8:
50:f2:4d:27:38:ef:dd:74:a5:c3:0b:ab:f9:3c:d5:6a:4c:39:
4f:7b:aa:c5:0a:c4:b5:16:18:56:81:20:36:73:aa:52:b6:2f:
9b:7c:63:32:13:aa:76:7b:ca:22:ff:ed:c0:66:0c:ba:09:17:
40:de:2e:f5:10:8a:e0:37:c9:d7:d9:f3:c2:d1:9b:4a:17:9d:
1b:f0:37:91:5a:e3:71:5c:64:06:09:fa:c2:df:c1:78:61:2c:
07:84:fc:51:36:c3:62:ce:ec:ff:b8:95:eb:90:55:40:5f:cc:
d4:66:b5:14
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAZQlIlycffzXEMoth67t/4TLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjUwMTAyMDM0OTU2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4Y2VmZDA1ZTM3MzUyYjIyNDE0NDY3MDkzMjI5OGM2ZGIyYTI5ZTM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl2ODLLd8ixguzlRfTpOnsYRqpfo/
rsISLJPumbCMQUsfZTePfquAw+uSpfgnpdn08X+u4atFh4fv1Oztvlg3GrLJOpHy
18Rvzy3+Qt4lF2PwePyparBlY+4RlLchGw5JdxWb/B4cHPfKNV3dv5r6ENQ5GqIK
u8BPBsPEFNnAKcezsU92+B2KJQfIu7N+Wx43h29jA20k0NeaO3fgA2cajRRpc3xr
OZRfURru1Ha6BABaMsvhzhocWp99zh5HFJqpcOyAIPFldxkXXWEgv9UG5Q50gTkS
FqGifLxMAuhJTKrfYyhxDaizZyyxbRjw1r8WED43ngPp9mG2c85yHSSe3wIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFIzv0F43NSsiQURnCTIpjG2yop40MB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvak9fUVhqYzFLeUpCUkdjSk1pbU1iYktpbmpRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKg6xBw7A
MA0GCSqGSIb3DQEBCwUAA4IBAQBIViGPBDRgfCv+YwJgZ1JOnPvVS3oM5i1/snTw
m7ddIioFWSlwFkneaJWPoiYigiAmgQm/eo9k7JrISeejvATP5zGpU7l59lgaqOLb
5XSncczIrGjSeTO/2m/czsSVpPlSQjpIyHs+ulYU0lT2aSreJVs69ltq5aW26oYZ
A23PPylKokYshwStGROlU4OokfhQ8k0nOO/ddKXDC6v5PNVqTDlPe6rFCsS1FhhW
gSA2c6pSti+bfGMyE6p2e8oi/+3AZgy6CRdA3i71EIrgN8nX2fPC0ZtKF50b8DeR
WuNxXGQGCfrC38F4YSwHhPxRNsNizuz/uJXrkFVAX8zUZrUU
-----END CERTIFICATE-----
Generated at Thu Apr 10 19:35:24 2025 by rpki-client