Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/ddcbb9-8fd2-4dc1-bbd6-2890055914c5/1/ujm37J3ubbyu5Ql44pmF8ExX4hQ.roa
File: ujm37J3ubbyu5Ql44pmF8ExX4hQ.roa (raw, json)
Hash identifier: OE+0eHHx77x/+wl6GWmKStuCDxrk3hiiJvkYlOvzxhY=
Subject key identifier: BA:39:B7:EC:9D:EE:6D:BC:AE:E5:09:78:E2:99:85:F0:4C:57:E2:14
Certificate issuer: /CN=8ea26b458ad41d47d261a76d8c5dc0fc8d1a9e2c
Certificate serial: 01941FFABA6935033772BDFCD391F0EA07D5
Authority key identifier: 8E:A2:6B:45:8A:D4:1D:47:D2:61:A7:6D:8C:5D:C0:FC:8D:1A:9E:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jqJrRYrUHUfSYadtjF3A_I0aniw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/ddcbb9-8fd2-4dc1-bbd6-2890055914c5/1/ujm37J3ubbyu5Ql44pmF8ExX4hQ.roa
Signing time: Wed 01 Jan 2025 03:48:32 +0000
ROA not before: Wed 01 Jan 2025 03:48:32 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215655
IP address blocks: 2a14:1600::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:ba:69:35:03:37:72:bd:fc:d3:91:f0:ea:07:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ea26b458ad41d47d261a76d8c5dc0fc8d1a9e2c
Validity
Not Before: Jan 1 03:48:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ba39b7ec9dee6dbcaee50978e29985f04c57e214
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:16:75:53:1d:eb:65:fc:6b:4e:49:06:58:19:
f6:a1:5a:98:35:dd:56:8f:a8:d5:21:c9:5e:c4:cb:
83:6a:0e:84:ca:07:a2:b0:56:54:33:81:79:12:94:
8c:67:df:19:95:c9:40:0a:a9:14:10:86:1f:c2:e7:
68:77:40:65:6e:a9:63:09:89:ae:70:09:eb:32:c3:
49:75:9c:37:6e:c9:ea:b8:ae:c6:95:12:04:2e:02:
01:85:aa:d5:44:12:aa:f7:f9:32:79:88:ed:f3:86:
bc:e6:8e:eb:2c:2b:ab:19:1c:dd:85:c4:83:7f:f5:
df:d2:7e:19:f0:17:44:05:33:71:ae:5e:34:55:86:
9b:cc:7a:74:a2:a5:fe:79:bd:a4:26:71:f0:aa:4c:
90:96:8a:de:82:97:92:b5:49:70:b1:0d:ec:a3:23:
b3:c3:e6:55:3c:a0:5c:aa:f0:13:e0:1e:57:bf:57:
d0:7c:e1:fc:f4:18:b1:5a:f1:34:86:e5:b0:43:c3:
49:d0:e3:a5:84:07:98:8c:b8:57:f2:38:87:e7:7c:
57:30:6a:16:92:9b:dc:58:38:72:6d:cf:25:c6:58:
68:12:a9:1f:06:83:dd:c2:7c:76:05:96:ca:7e:a9:
10:da:3d:d9:05:9e:a7:17:d5:c3:01:34:0f:c2:d4:
be:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:39:B7:EC:9D:EE:6D:BC:AE:E5:09:78:E2:99:85:F0:4C:57:E2:14
X509v3 Authority Key Identifier:
keyid:8E:A2:6B:45:8A:D4:1D:47:D2:61:A7:6D:8C:5D:C0:FC:8D:1A:9E:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jqJrRYrUHUfSYadtjF3A_I0aniw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/ddcbb9-8fd2-4dc1-bbd6-2890055914c5/1/ujm37J3ubbyu5Ql44pmF8ExX4hQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/ddcbb9-8fd2-4dc1-bbd6-2890055914c5/1/jqJrRYrUHUfSYadtjF3A_I0aniw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:1600::/29
Signature Algorithm: sha256WithRSAEncryption
9c:c6:ac:c6:0f:26:50:de:18:ba:80:38:e4:45:f3:a4:7c:1e:
2d:f2:53:22:62:f1:c4:d4:14:49:5f:5a:52:f1:8d:51:9b:50:
dc:30:6a:d7:05:25:5e:97:f3:53:60:a9:d9:4c:be:d0:2e:b3:
ac:67:29:35:c2:61:ca:c0:a4:3a:0c:d2:6f:38:75:2c:c3:7c:
f2:02:81:0f:5e:84:f1:37:47:aa:51:9b:e0:e4:24:1f:2b:2b:
8a:95:83:61:af:ad:b6:96:f1:27:cf:93:fb:44:c1:ea:91:83:
4c:f0:15:5e:6b:26:03:13:6e:44:1d:ef:7a:7e:d0:2d:97:48:
83:36:27:f4:4f:72:4c:46:06:c8:2b:02:07:41:e2:c3:5b:f4:
e9:91:a6:bf:63:e8:f5:36:b1:be:da:87:54:32:4d:9c:52:64:
27:1e:ae:0c:3a:41:bb:e1:e7:ad:23:35:81:0c:78:6a:c3:a4:
8b:33:e2:6d:75:d4:d6:bb:03:48:34:25:09:72:90:69:5e:2e:
ce:40:03:a7:47:06:ef:c6:35:bd:fb:67:da:98:db:cc:7e:d4:
7c:9c:75:12:05:d9:0a:5b:e9:ca:0c:d2:88:20:98:b7:4b:0a:
f3:29:96:1d:66:ac:af:a5:49:44:d7:9d:88:18:13:76:d6:6c:
4d:9a:e8:37
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAZQf+rppNQM3cr3805Hw6gfVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhlYTI2YjQ1OGFkNDFkNDdkMjYxYTc2ZDhjNWRjMGZjOGQx
YTllMmMwHhcNMjUwMTAxMDM0ODMyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYTM5YjdlYzlkZWU2ZGJjYWVlNTA5NzhlMjk5ODVmMDRjNTdlMjE0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4hZ1Ux3rZfxrTkkGWBn2oVqYNd1W
j6jVIclexMuDag6EygeisFZUM4F5EpSMZ98ZlclACqkUEIYfwudod0BlbqljCYmu
cAnrMsNJdZw3bsnquK7GlRIELgIBharVRBKq9/kyeYjt84a85o7rLCurGRzdhcSD
f/Xf0n4Z8BdEBTNxrl40VYabzHp0oqX+eb2kJnHwqkyQloregpeStUlwsQ3soyOz
w+ZVPKBcqvAT4B5Xv1fQfOH89BixWvE0huWwQ8NJ0OOlhAeYjLhX8jiH53xXMGoW
kpvcWDhybc8lxlhoEqkfBoPdwnx2BZbKfqkQ2j3ZBZ6nF9XDATQPwtS+1QIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFLo5t+yd7m28ruUJeOKZhfBMV+IUMB8GA1UdIwQY
MBaAFI6ia0WK1B1H0mGnbYxdwPyNGp4sMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvanFKclJZclVIVWZTWWFkdGpGM0FfSTBhbml3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yy9kZGNiYjktOGZkMi00ZGMxLWJiZDYt
Mjg5MDA1NTkxNGM1LzEvdWptMzdKM3ViYnl1NVFsNDRwbUY4RXhYNGhRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yy9kZGNiYjktOGZkMi00ZGMxLWJiZDYtMjg5MDA1NTkxNGM1
LzEvanFKclJZclVIVWZTWWFkdGpGM0FfSTBhbml3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhQWADAN
BgkqhkiG9w0BAQsFAAOCAQEAnMasxg8mUN4YuoA45EXzpHweLfJTImLxxNQUSV9a
UvGNUZtQ3DBq1wUlXpfzU2Cp2Uy+0C6zrGcpNcJhysCkOgzSbzh1LMN88gKBD16E
8TdHqlGb4OQkHysripWDYa+ttpbxJ8+T+0TB6pGDTPAVXmsmAxNuRB3ven7QLZdI
gzYn9E9yTEYGyCsCB0Hiw1v06ZGmv2Po9TaxvtqHVDJNnFJkJx6uDDpBu+HnrSM1
gQx4asOkizPibXXU1rsDSDQlCXKQaV4uzkADp0cG78Y1vftn2pjbzH7UfJx1EgXZ
ClvpygzSiCCYt0sK8ymWHWasr6VJRNediBgTdtZsTZroNw==
-----END CERTIFICATE-----
Generated at Sun Apr 6 20:39:22 2025 by rpki-client