Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/6C32NwDlwHIkaRxBq8Z3BDGKTPM.roa
File: 6C32NwDlwHIkaRxBq8Z3BDGKTPM.roa (raw, json)
Hash identifier: 4fF2aV7vJugLNrYh0Vw2x93XhW55b7t/czbAnasvzGc=
Subject key identifier: E8:2D:F6:37:00:E5:C0:72:24:69:1C:41:AB:C6:77:04:31:8A:4C:F3
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0191949C15092CA4D7FFDA6D0AFCF0E2A174
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/6C32NwDlwHIkaRxBq8Z3BDGKTPM.roa
Signing time: Tue 27 Aug 2024 16:12:22 +0000
ROA not before: Tue 27 Aug 2024 16:12:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:94:9c:15:09:2c:a4:d7:ff:da:6d:0a:fc:f0:e2:a1:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Aug 27 16:12:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e82df63700e5c07224691c41abc67704318a4cf3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:17:72:32:75:85:e4:85:f7:5c:6c:e7:93:79:
c6:fd:cd:a4:a3:b7:a0:c7:4f:5d:cb:3b:7f:e0:ce:
76:f0:fd:3b:82:d1:08:9b:86:1b:1c:a5:b5:2d:c2:
ca:98:09:05:0f:91:de:04:7e:d3:9f:d3:22:3d:a8:
2b:95:eb:66:bd:dd:a2:bb:d8:ef:d0:ef:1d:a8:52:
7b:de:6d:72:8a:b7:4a:c3:df:1a:77:14:20:04:96:
ac:0d:0c:43:b6:49:6f:6b:d4:3e:85:ff:40:33:c2:
41:18:ae:ee:1a:f0:ab:74:96:53:59:65:c8:ee:2a:
20:18:10:15:f3:3b:42:4b:04:ca:03:86:cc:a2:10:
f9:f7:a6:83:3d:40:33:96:c4:d6:af:2a:b9:b8:17:
ed:89:db:bd:51:bf:f0:dd:db:da:1f:c9:a1:c1:c6:
08:66:15:17:2f:12:99:3a:6b:4c:ea:41:65:20:a4:
2f:59:8b:92:9d:d1:d1:da:7a:e8:8d:e5:ab:d5:5d:
33:e6:56:4f:73:6b:79:fb:17:c2:88:5c:36:d3:1e:
7a:43:70:7f:0c:40:af:2c:46:9d:45:2f:0e:d4:c4:
3a:93:7a:24:e5:b4:8a:e5:d1:3a:dc:ab:3b:f4:85:
38:22:e2:a4:58:68:1d:29:b4:ba:77:9c:63:45:2b:
1d:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:2D:F6:37:00:E5:C0:72:24:69:1C:41:AB:C6:77:04:31:8A:4C:F3
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/6C32NwDlwHIkaRxBq8Z3BDGKTPM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
Signature Algorithm: sha256WithRSAEncryption
65:59:47:5a:f1:dd:43:73:28:13:70:c7:92:64:35:16:2e:dc:
aa:0f:5b:29:d4:6c:26:82:20:c1:bc:40:b4:4c:50:51:a9:b6:
5a:1c:e8:49:53:c6:81:50:bb:28:07:49:85:be:43:c6:ad:3e:
d4:56:18:da:c7:ec:f3:12:8f:f7:91:a3:b2:66:d3:12:14:d9:
9d:c2:d4:a7:52:1b:71:f9:a9:83:45:16:3d:c2:39:27:98:0c:
62:31:94:b3:08:2f:ce:79:76:e6:51:04:8c:50:a1:f5:1f:51:
7b:49:42:c2:0d:60:2d:05:88:dd:7f:97:93:54:29:b8:dd:22:
15:64:52:17:f0:8a:6f:f9:67:82:d0:2c:78:47:f5:f1:e3:cb:
5c:b0:b0:6d:79:f3:b3:a8:71:54:44:d4:35:44:f5:97:47:81:
5c:bf:ce:74:87:de:f2:9b:6f:e5:65:9b:d7:8b:b2:c6:1e:25:
0b:20:59:57:26:7d:66:9a:0f:84:ca:54:33:f9:bc:d9:1e:22:
f0:26:b2:7d:44:d9:38:4b:93:9b:15:98:53:16:a1:bf:8b:9f:
1e:9f:73:47:ad:fe:c1:a1:a9:6f:eb:65:22:8a:6a:ce:60:18:
e0:c5:6c:6b:19:62:f8:23:61:dd:68:e2:bd:6f:b0:02:b0:dd:
6c:d9:f6:8d
-----BEGIN CERTIFICATE-----
MIIFCjCCA/KgAwIBAgISAZGUnBUJLKTX/9ptCvzw4qF0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyNjIwNDE1ZDI0OTBhNWVjM2Y2OTI1YjlmNzkwNDBlOGUy
MmRkYmYwHhcNMjQwODI3MTYxMjIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlODJkZjYzNzAwZTVjMDcyMjQ2OTFjNDFhYmM2NzcwNDMxOGE0Y2YzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoRdyMnWF5IX3XGznk3nG/c2ko7eg
x09dyzt/4M528P07gtEIm4YbHKW1LcLKmAkFD5HeBH7Tn9MiPagrletmvd2iu9jv
0O8dqFJ73m1yirdKw98adxQgBJasDQxDtklva9Q+hf9AM8JBGK7uGvCrdJZTWWXI
7iogGBAV8ztCSwTKA4bMohD596aDPUAzlsTWryq5uBftidu9Ub/w3dvaH8mhwcYI
ZhUXLxKZOmtM6kFlIKQvWYuSndHR2nrojeWr1V0z5lZPc2t5+xfCiFw20x56Q3B/
DECvLEadRS8O1MQ6k3ok5bSK5dE63Ks79IU4IuKkWGgdKbS6d5xjRSsdsQIDAQAB
o4ICFjCCAhIwHQYDVR0OBBYEFOgt9jcA5cByJGkcQavGdwQxikzzMB8GA1UdIwQY
MBaAFFJiBBXSSQpew/aSW595BA6OIt2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYt
ODgxNDg4ZmZkYmIwLzEvNkMzMk53RGx3SElrYVJ4QnE4WjNCREdLVFBNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYtODgxNDg4ZmZkYmIw
LzEvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCwGCCsGAQUFBwEHAQH/BB0wGzAZBAIAAjATAxEAIAEGfABk
//8AAAGQ/fLzAjANBgkqhkiG9w0BAQsFAAOCAQEAZVlHWvHdQ3MoE3DHkmQ1Fi7c
qg9bKdRsJoIgwbxAtExQUam2WhzoSVPGgVC7KAdJhb5Dxq0+1FYY2sfs8xKP95Gj
smbTEhTZncLUp1Ibcfmpg0UWPcI5J5gMYjGUswgvznl25lEEjFCh9R9Re0lCwg1g
LQWI3X+Xk1QpuN0iFWRSF/CKb/lngtAseEf18ePLXLCwbXnzs6hxVETUNUT1l0eB
XL/OdIfe8ptv5WWb14uyxh4lCyBZVyZ9ZpoPhMpUM/m82R4i8CayfUTZOEuTmxWY
Uxahv4ufHp9zR63+waGpb+tlIopqzmAY4MVsaxli+CNh3WjivW+wArDdbNn2jQ==
-----END CERTIFICATE-----
Generated at Sun Jun 8 04:37:33 2025 by rpki-client