Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/06eab0-6c6e-4c95-bbdc-916047062a22/1/XOwu2ebvUDQPT_bMtirnTz4DXtY.roa
File: XOwu2ebvUDQPT_bMtirnTz4DXtY.roa (raw, json)
Hash identifier: +WWsZzcafcQYxozcv0fQHPsnMiE94A7luCuf63M9dXs=
Subject key identifier: 5C:EC:2E:D9:E6:EF:50:34:0F:4F:F6:CC:B6:2A:E7:4F:3E:03:5E:D6
Certificate issuer: /CN=9c1cd1b3c8772956fa85535a8464b4ca19663ade
Certificate serial: 0194258F2BBE7A374F09017A9CA79A449B33
Authority key identifier: 9C:1C:D1:B3:C8:77:29:56:FA:85:53:5A:84:64:B4:CA:19:66:3A:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nBzRs8h3KVb6hVNahGS0yhlmOt4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/06eab0-6c6e-4c95-bbdc-916047062a22/1/XOwu2ebvUDQPT_bMtirnTz4DXtY.roa
Signing time: Thu 02 Jan 2025 05:48:47 +0000
ROA not before: Thu 02 Jan 2025 05:48:47 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 202685
IP address blocks: 2a06:ff80::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:2b:be:7a:37:4f:09:01:7a:9c:a7:9a:44:9b:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c1cd1b3c8772956fa85535a8464b4ca19663ade
Validity
Not Before: Jan 2 05:48:47 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5cec2ed9e6ef50340f4ff6ccb62ae74f3e035ed6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:b3:9c:29:1c:f4:c4:32:a3:95:d9:9f:71:74:
ca:75:31:72:76:70:6f:a1:31:41:24:68:c7:b4:0a:
2a:02:97:01:76:60:c2:88:eb:e4:d2:c8:8f:f9:cc:
9f:e4:bf:e1:d4:6c:e4:b6:91:cc:ba:5f:41:fd:16:
ae:3e:05:9d:de:97:ed:91:43:08:79:5b:48:96:d8:
50:9a:86:84:39:cd:cf:42:56:dd:ad:69:7a:43:1c:
5c:ae:28:65:e6:b3:db:ed:46:54:44:b9:c2:09:2d:
61:6b:39:03:29:a0:1b:88:e9:4f:55:c9:da:76:f3:
df:e4:aa:30:df:c9:16:61:43:5b:61:c4:20:43:32:
7d:43:27:89:f3:f5:fd:ea:53:c5:8b:a5:c0:e0:d9:
32:ff:d0:8d:54:23:ed:a7:69:2a:24:7b:9f:b8:d8:
27:a4:dc:89:5c:cb:2d:4f:da:cc:31:aa:46:73:10:
69:76:11:95:d3:0d:a1:78:4d:6c:4f:6f:54:32:e5:
4c:da:17:60:de:22:af:54:a0:17:9e:d4:27:47:d2:
44:43:60:75:96:69:f1:5d:7a:87:69:87:bb:30:78:
4c:ff:15:4b:4f:80:b3:71:0c:ea:7e:81:b3:fe:26:
73:32:9e:4a:01:aa:c2:5a:11:2f:cf:93:ae:b0:1f:
55:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:EC:2E:D9:E6:EF:50:34:0F:4F:F6:CC:B6:2A:E7:4F:3E:03:5E:D6
X509v3 Authority Key Identifier:
keyid:9C:1C:D1:B3:C8:77:29:56:FA:85:53:5A:84:64:B4:CA:19:66:3A:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nBzRs8h3KVb6hVNahGS0yhlmOt4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/06eab0-6c6e-4c95-bbdc-916047062a22/1/XOwu2ebvUDQPT_bMtirnTz4DXtY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/06eab0-6c6e-4c95-bbdc-916047062a22/1/nBzRs8h3KVb6hVNahGS0yhlmOt4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:ff80::/29
Signature Algorithm: sha256WithRSAEncryption
8f:e7:73:a7:9e:41:b2:87:5d:bc:27:30:f4:f9:00:64:b0:7d:
e3:e3:e4:8f:16:f2:ee:2e:40:6a:5b:f7:7e:60:7c:bd:d0:35:
f7:03:42:74:67:fb:25:6c:35:35:4f:34:b7:6c:d5:32:52:8c:
e6:6c:52:db:df:15:e8:8b:2e:d8:9f:d3:2f:ac:74:87:5a:9d:
ae:b8:8b:f8:bd:7a:34:f1:b4:1f:1d:e5:81:81:73:05:2f:ff:
bf:3d:df:39:da:41:0a:99:5a:16:ad:eb:08:59:c4:52:a4:80:
bc:61:8a:11:51:1d:90:4d:9f:db:cf:71:10:86:bd:cb:20:14:
5e:39:13:6f:e5:61:24:6c:c7:68:21:11:ee:d1:40:ab:82:1c:
6a:bf:8b:a9:2c:0b:f1:0c:a1:b3:e0:f0:2b:d4:1a:3c:54:79:
5d:df:28:a8:fa:64:72:a6:a0:b2:47:41:ea:59:f0:b3:06:c8:
45:b8:19:62:e1:96:0a:4f:99:59:88:0e:6e:f1:d4:68:45:20:
02:82:dd:76:da:af:6b:a4:00:d6:dc:6d:c3:9c:22:62:5c:27:
c9:3a:5b:41:cf:f5:ff:9d:fe:13:36:db:b6:6c:eb:2f:6d:ed:
f1:cd:c3:f0:79:a6:58:fb:6b:85:45:d5:55:08:0c:ac:06:3b:
dc:97:aa:cc
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAZQljyu+ejdPCQF6nKeaRJszMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDljMWNkMWIzYzg3NzI5NTZmYTg1NTM1YTg0NjRiNGNhMTk2
NjNhZGUwHhcNMjUwMTAyMDU0ODQ3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1Y2VjMmVkOWU2ZWY1MDM0MGY0ZmY2Y2NiNjJhZTc0ZjNlMDM1ZWQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApbOcKRz0xDKjldmfcXTKdTFydnBv
oTFBJGjHtAoqApcBdmDCiOvk0siP+cyf5L/h1GzktpHMul9B/RauPgWd3pftkUMI
eVtIlthQmoaEOc3PQlbdrWl6Qxxcrihl5rPb7UZURLnCCS1hazkDKaAbiOlPVcna
dvPf5Kow38kWYUNbYcQgQzJ9QyeJ8/X96lPFi6XA4Nky/9CNVCPtp2kqJHufuNgn
pNyJXMstT9rMMapGcxBpdhGV0w2heE1sT29UMuVM2hdg3iKvVKAXntQnR9JEQ2B1
lmnxXXqHaYe7MHhM/xVLT4CzcQzqfoGz/iZzMp5KAarCWhEvz5OusB9VNQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFFzsLtnm71A0D0/2zLYq508+A17WMB8GA1UdIwQY
MBaAFJwc0bPIdylW+oVTWoRktMoZZjreMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbkJ6UnM4aDNLVmI2aFZOYWhHUzB5aGxtT3Q0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ny8wNmVhYjAtNmM2ZS00Yzk1LWJiZGMt
OTE2MDQ3MDYyYTIyLzEvWE93dTJlYnZVRFFQVF9iTXRpcm5UejREWHRZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Ny8wNmVhYjAtNmM2ZS00Yzk1LWJiZGMtOTE2MDQ3MDYyYTIy
LzEvbkJ6UnM4aDNLVmI2aFZOYWhHUzB5aGxtT3Q0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKgb/gDAN
BgkqhkiG9w0BAQsFAAOCAQEAj+dzp55BsoddvCcw9PkAZLB94+Pkjxby7i5Aalv3
fmB8vdA19wNCdGf7JWw1NU80t2zVMlKM5mxS298V6Isu2J/TL6x0h1qdrriL+L16
NPG0Hx3lgYFzBS//vz3fOdpBCplaFq3rCFnEUqSAvGGKEVEdkE2f289xEIa9yyAU
XjkTb+VhJGzHaCER7tFAq4Icar+LqSwL8Qyhs+DwK9QaPFR5Xd8oqPpkcqagskdB
6lnwswbIRbgZYuGWCk+ZWYgObvHUaEUgAoLddtqva6QA1txtw5wiYlwnyTpbQc/1
/53+EzbbtmzrL23t8c3D8HmmWPtrhUXVVQgMrAY73JeqzA==
-----END CERTIFICATE-----
Generated at Sun Apr 6 19:52:21 2025 by rpki-client