Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/sWuFeWl6SOpL7zNanKVkR2vveNw.roa
File: sWuFeWl6SOpL7zNanKVkR2vveNw.roa (raw, json)
Hash identifier: 7vs23MSwB387JrHFicIpLtLmI0CuS32OgFN7JcyuooU=
Subject key identifier: B1:6B:85:79:69:7A:48:EA:4B:EF:33:5A:9C:A5:64:47:6B:EF:78:DC
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0194252271952BBD81E958033280A7582011
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/sWuFeWl6SOpL7zNanKVkR2vveNw.roa
Signing time: Thu 02 Jan 2025 03:50:01 +0000
ROA not before: Thu 02 Jan 2025 03:50:01 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213346
IP address blocks: 2a10:2f00:129::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:22:71:95:2b:bd:81:e9:58:03:32:80:a7:58:20:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 2 03:50:01 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b16b8579697a48ea4bef335a9ca564476bef78dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:db:b6:1f:48:9c:1b:c7:5e:06:08:2b:b8:85:
e8:f8:8b:f5:1e:25:1a:a0:a9:6d:1c:24:10:84:ac:
b4:96:e9:30:18:c4:43:33:44:21:31:90:2b:85:8e:
6f:d3:38:17:37:eb:aa:c5:79:f4:dd:e2:7c:2c:bb:
41:58:fe:25:89:47:91:79:a5:87:8d:43:b3:00:34:
15:64:86:c4:8b:a4:34:71:8f:32:92:b1:22:1c:ee:
25:dd:7b:b4:9b:5e:45:c4:14:f0:db:2b:14:e7:93:
5e:50:bc:47:ef:e1:22:12:16:42:50:06:ad:12:17:
d4:d3:fc:89:18:f3:b9:07:1e:e2:90:e2:aa:cc:73:
ae:34:d3:78:d2:b1:8c:05:96:98:b3:bd:46:25:17:
f5:87:85:72:0c:95:73:6a:c6:ae:bb:55:a0:a8:93:
da:9d:6d:a4:7f:64:83:b1:c2:db:37:7e:77:c8:2c:
f2:d4:bf:30:a2:7a:d7:41:94:41:0d:73:8b:1d:a2:
cb:bc:db:1e:67:f5:f5:e7:7b:ab:4f:56:3c:c0:89:
fa:e2:c3:bd:e5:95:ee:ac:ce:7a:4f:c8:b3:64:3e:
3b:8f:7a:57:53:7f:2e:39:9d:6a:b7:2e:ce:47:8f:
7d:3f:e8:b8:3f:bb:b6:24:c4:89:b3:57:67:04:28:
63:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:6B:85:79:69:7A:48:EA:4B:EF:33:5A:9C:A5:64:47:6B:EF:78:DC
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/sWuFeWl6SOpL7zNanKVkR2vveNw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:2f00:129::/48
Signature Algorithm: sha256WithRSAEncryption
7c:5b:69:24:3e:a8:fb:b5:0b:0b:7d:d6:f9:3a:2f:a1:40:7c:
32:90:79:89:ec:e2:8d:69:76:9d:af:0f:ae:4a:52:24:57:d4:
a5:a7:d4:e5:23:ba:aa:7d:40:dc:a2:e8:bc:91:2f:c7:0f:f9:
ff:6d:4e:5f:b8:77:0e:f2:4d:62:bf:10:b6:8b:fe:b1:7c:86:
ad:57:b9:4d:17:b7:ff:72:48:bf:45:2d:57:dc:50:42:76:e2:
9f:41:01:b8:ea:42:9e:4d:9b:d7:c5:fd:18:a3:c6:20:6d:c8:
27:0e:e2:e4:35:17:fe:43:8a:e2:82:3d:bd:f5:5e:99:a3:02:
2c:b3:0d:44:3b:7e:f6:d5:36:28:44:a0:f9:b2:2f:c2:e0:3c:
3e:ec:4c:bb:e9:d4:15:91:b9:70:a5:89:91:73:8e:9b:31:54:
be:6e:90:5c:68:62:fb:2b:93:59:b4:34:8e:ad:22:c9:47:3e:
8e:8a:d0:6c:9d:6c:0e:f4:d1:d2:b2:16:ea:41:ca:53:45:e5:
9d:23:b0:95:61:14:e5:31:10:02:bb:ce:04:17:20:57:3c:40:
c4:ec:a2:d9:97:99:e8:f6:3a:6f:cb:4b:eb:94:c2:8f:c3:57:
34:62:d9:d2:73:dc:79:a8:45:e1:a8:2c:e3:ff:bd:c7:d2:b4:
73:96:1f:3b
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAZQlInGVK72B6VgDMoCnWCARMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjUwMTAyMDM1MDAxWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMTZiODU3OTY5N2E0OGVhNGJlZjMzNWE5Y2E1NjQ0NzZiZWY3OGRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAytu2H0icG8deBggruIXo+Iv1HiUa
oKltHCQQhKy0lukwGMRDM0QhMZArhY5v0zgXN+uqxXn03eJ8LLtBWP4liUeReaWH
jUOzADQVZIbEi6Q0cY8ykrEiHO4l3Xu0m15FxBTw2ysU55NeULxH7+EiEhZCUAat
EhfU0/yJGPO5Bx7ikOKqzHOuNNN40rGMBZaYs71GJRf1h4VyDJVzasauu1WgqJPa
nW2kf2SDscLbN353yCzy1L8wonrXQZRBDXOLHaLLvNseZ/X153urT1Y8wIn64sO9
5ZXurM56T8izZD47j3pXU38uOZ1qty7OR499P+i4P7u2JMSJs1dnBChjyQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFLFrhXlpekjqS+8zWpylZEdr73jcMB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvc1d1RmVXbDZTT3BMN3pOYW5LVmtSMnZ2ZU53LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhAvAAEp
MA0GCSqGSIb3DQEBCwUAA4IBAQB8W2kkPqj7tQsLfdb5Oi+hQHwykHmJ7OKNaXad
rw+uSlIkV9Slp9TlI7qqfUDcoui8kS/HD/n/bU5fuHcO8k1ivxC2i/6xfIatV7lN
F7f/cki/RS1X3FBCduKfQQG46kKeTZvXxf0Yo8YgbcgnDuLkNRf+Q4rigj299V6Z
owIssw1EO3721TYoRKD5si/C4Dw+7Ey76dQVkblwpYmRc46bMVS+bpBcaGL7K5NZ
tDSOrSLJRz6OitBsnWwO9NHSshbqQcpTReWdI7CVYRTlMRACu84EFyBXPEDE7KLZ
l5no9jpvy0vrlMKPw1c0YtnSc9x5qEXhqCzj/73H0rRzlh87
-----END CERTIFICATE-----
Generated at Tue Apr 8 06:15:21 2025 by rpki-client