Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/962fb1-3df0-4ec2-b50a-b36a24d39427/1/vYhUPeJoEUT0f-0AcAHzYSmU_qs.roa
File: vYhUPeJoEUT0f-0AcAHzYSmU_qs.roa (raw, json)
Hash identifier: RRoyuugMPPuChqxC2vWN8f9HICZNtOVgFEGaWFjtOCM=
Subject key identifier: BD:88:54:3D:E2:68:11:44:F4:7F:ED:00:70:01:F3:61:29:94:FE:AB
Certificate issuer: /CN=835bc9bb547e27788d221bc8bbd5fb02e024480f
Certificate serial: 019424454126E8FD60B72C5A6D650B72B350
Authority key identifier: 83:5B:C9:BB:54:7E:27:78:8D:22:1B:C8:BB:D5:FB:02:E0:24:48:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g1vJu1R-J3iNIhvIu9X7AuAkSA8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/962fb1-3df0-4ec2-b50a-b36a24d39427/1/vYhUPeJoEUT0f-0AcAHzYSmU_qs.roa
Signing time: Wed 01 Jan 2025 23:48:25 +0000
ROA not before: Wed 01 Jan 2025 23:48:25 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 55207
IP address blocks: 2a0b:6b86::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:41:26:e8:fd:60:b7:2c:5a:6d:65:0b:72:b3:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=835bc9bb547e27788d221bc8bbd5fb02e024480f
Validity
Not Before: Jan 1 23:48:25 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bd88543de2681144f47fed007001f3612994feab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:ba:47:b7:e1:2c:b0:32:cd:33:25:85:28:7c:
4b:42:42:cf:13:c5:41:86:d7:7c:dc:8b:c3:78:d5:
82:b3:15:88:44:2c:ad:d7:0b:43:fa:fb:e8:8e:eb:
77:73:38:a5:93:f4:3c:62:73:05:21:6b:b5:c4:c3:
ff:58:9c:9e:fd:cb:0f:f9:43:b8:28:08:f0:9e:92:
94:71:c2:4a:ec:9b:47:ba:45:76:c9:d6:b6:fe:1e:
72:f8:d5:4d:45:00:da:23:d6:bf:61:d9:de:3d:a1:
4c:d1:85:86:9d:32:3f:a4:43:0d:ec:b0:f7:8f:13:
26:68:68:3b:37:79:b2:33:e5:23:9f:06:3d:85:af:
c7:4e:c8:43:b0:c4:d7:07:bf:c3:b9:fb:3d:00:41:
f8:a1:3b:32:54:6e:64:0f:68:d7:63:a0:3b:2b:dd:
3d:1a:54:c9:09:a5:c1:d0:17:b6:8e:3e:f5:e9:35:
1e:39:c1:41:17:2e:53:a3:d9:65:ee:66:35:7f:cb:
5b:22:bf:2c:03:cd:4c:87:6b:15:7b:95:45:4f:b4:
9b:2c:c8:6e:6b:59:b0:d9:e8:27:5f:a8:02:be:24:
b2:c2:09:d3:5c:2c:a8:6c:fb:66:69:0c:d4:3e:01:
25:a8:e1:cc:15:38:ab:fd:5f:76:45:63:7e:f5:83:
32:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:88:54:3D:E2:68:11:44:F4:7F:ED:00:70:01:F3:61:29:94:FE:AB
X509v3 Authority Key Identifier:
keyid:83:5B:C9:BB:54:7E:27:78:8D:22:1B:C8:BB:D5:FB:02:E0:24:48:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g1vJu1R-J3iNIhvIu9X7AuAkSA8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/962fb1-3df0-4ec2-b50a-b36a24d39427/1/vYhUPeJoEUT0f-0AcAHzYSmU_qs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/962fb1-3df0-4ec2-b50a-b36a24d39427/1/g1vJu1R-J3iNIhvIu9X7AuAkSA8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:6b86::/48
Signature Algorithm: sha256WithRSAEncryption
9b:d7:3a:bc:61:e6:9f:66:56:92:4a:56:1c:27:1f:30:a6:50:
f7:23:ab:df:01:2b:4f:43:96:c7:f2:3c:ba:9b:24:8e:b7:f8:
f5:b1:cc:c5:9f:a4:a6:cf:81:9a:2a:0d:d2:51:67:88:36:a8:
58:7d:97:e2:73:7d:cc:3d:32:4e:c8:61:a5:89:23:34:5b:d9:
09:af:f6:b6:a1:4d:7d:c9:2b:95:1c:df:fd:e9:d8:41:9f:6a:
3a:bd:bc:44:c0:5b:81:9f:ce:d6:8e:d0:0f:36:1b:ac:b8:b9:
2f:08:40:b1:29:a4:d9:93:67:d8:6f:d6:df:37:2d:40:06:81:
a5:d8:9f:7a:b7:23:5f:f4:bf:a9:1c:d3:04:4c:88:6d:ab:57:
85:f7:91:8a:1a:b7:bb:e4:83:5d:17:a3:46:a8:47:00:ea:6e:
ed:c6:70:2d:91:63:c4:8a:52:dc:86:63:12:a4:7a:60:04:a2:
56:6c:3d:04:21:8b:55:31:d3:ea:26:34:99:cc:fd:78:2a:ff:
27:86:b4:e3:ce:f1:6c:1c:14:f4:c6:2f:76:6d:d2:57:93:73:
fe:7f:7e:5f:3f:11:4d:90:82:e6:0c:07:d4:cb:34:5d:3d:a7:
64:55:12:b0:f0:0e:53:5d:88:74:3f:42:78:02:e2:79:1e:f2:
cf:a2:6b:ba
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAZQkRUEm6P1gtyxabWULcrNQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgzNWJjOWJiNTQ3ZTI3Nzg4ZDIyMWJjOGJiZDVmYjAyZTAy
NDQ4MGYwHhcNMjUwMTAxMjM0ODI1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZDg4NTQzZGUyNjgxMTQ0ZjQ3ZmVkMDA3MDAxZjM2MTI5OTRmZWFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo7pHt+EssDLNMyWFKHxLQkLPE8VB
htd83IvDeNWCsxWIRCyt1wtD+vvojut3czilk/Q8YnMFIWu1xMP/WJye/csP+UO4
KAjwnpKUccJK7JtHukV2yda2/h5y+NVNRQDaI9a/YdnePaFM0YWGnTI/pEMN7LD3
jxMmaGg7N3myM+UjnwY9ha/HTshDsMTXB7/Dufs9AEH4oTsyVG5kD2jXY6A7K909
GlTJCaXB0Be2jj716TUeOcFBFy5To9ll7mY1f8tbIr8sA81Mh2sVe5VFT7SbLMhu
a1mw2egnX6gCviSywgnTXCyobPtmaQzUPgElqOHMFTir/V92RWN+9YMyEQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFL2IVD3iaBFE9H/tAHAB82EplP6rMB8GA1UdIwQY
MBaAFINbybtUfid4jSIbyLvV+wLgJEgPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZzF2SnUxUi1KM2lOSWh2SXU5WDdBdUFrU0E4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NC85NjJmYjEtM2RmMC00ZWMyLWI1MGEt
YjM2YTI0ZDM5NDI3LzEvdlloVVBlSm9FVVQwZi0wQWNBSHpZU21VX3FzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84NC85NjJmYjEtM2RmMC00ZWMyLWI1MGEtYjM2YTI0ZDM5NDI3
LzEvZzF2SnUxUi1KM2lOSWh2SXU5WDdBdUFrU0E4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgtrhgAA
MA0GCSqGSIb3DQEBCwUAA4IBAQCb1zq8YeafZlaSSlYcJx8wplD3I6vfAStPQ5bH
8jy6mySOt/j1sczFn6Smz4GaKg3SUWeINqhYfZfic33MPTJOyGGliSM0W9kJr/a2
oU19ySuVHN/96dhBn2o6vbxEwFuBn87WjtAPNhusuLkvCECxKaTZk2fYb9bfNy1A
BoGl2J96tyNf9L+pHNMETIhtq1eF95GKGre75INdF6NGqEcA6m7txnAtkWPEilLc
hmMSpHpgBKJWbD0EIYtVMdPqJjSZzP14Kv8nhrTjzvFsHBT0xi92bdJXk3P+f35f
PxFNkILmDAfUyzRdPadkVRKw8A5TXYh0P0J4AuJ5HvLPomu6
-----END CERTIFICATE-----
Generated at Wed Apr 9 17:24:55 2025 by rpki-client