Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/7QylZxlyluwHJG3ae_G0ogDRCoA.roa
File: 7QylZxlyluwHJG3ae_G0ogDRCoA.roa (raw, json)
Hash identifier: 07XtykUxEb4po2EwrbJGIDaI8k5hSqtNyPTI088uyRM=
Subject key identifier: ED:0C:A5:67:19:72:96:EC:07:24:6D:DA:7B:F1:B4:A2:00:D1:0A:80
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01943B19E0C9B0930247F960B3162C6ADEAB
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/7QylZxlyluwHJG3ae_G0ogDRCoA.roa
Signing time: Mon 06 Jan 2025 10:12:19 +0000
ROA not before: Mon 06 Jan 2025 10:12:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:194:2c0d:6680/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:3b:19:e0:c9:b0:93:02:47:f9:60:b3:16:2c:6a:de:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jan 6 10:12:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ed0ca567197296ec07246dda7bf1b4a200d10a80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:5c:60:e4:ea:cc:0c:87:7b:d8:b4:97:77:55:
f1:b9:b4:2c:86:45:dc:33:22:bb:d4:83:43:de:a4:
82:95:fa:e2:75:84:d3:0d:8c:09:b3:47:47:fc:43:
85:87:a4:24:58:2e:cf:45:47:8e:7e:a0:94:0b:0b:
05:89:36:0c:7e:3b:89:f1:40:69:b3:ac:65:e8:89:
9c:47:c9:dd:72:03:2f:d1:5e:59:9d:da:21:57:74:
d2:9e:a5:56:49:cc:ef:47:4d:80:80:10:f9:48:02:
76:ca:b9:38:9d:5b:21:c0:17:ad:87:a0:78:ae:c5:
99:e9:94:27:f7:f4:97:eb:d7:d2:f5:57:1d:4f:df:
09:4b:d5:d2:0d:e3:fe:3c:60:b5:95:52:08:e4:8d:
20:f4:a4:83:cd:06:40:20:37:fe:e6:9b:6a:2b:a1:
ca:84:b6:93:2a:f0:37:66:be:88:76:cd:eb:5d:5a:
3b:52:81:8f:e4:3e:b3:c0:25:af:4f:ba:a4:78:7f:
88:6f:95:ce:b1:ba:0f:72:8c:83:bb:f6:b9:8a:e3:
88:3a:54:d7:07:a9:ea:9c:84:ea:f9:f2:18:d3:00:
c7:a0:04:09:69:1c:4c:b1:a8:3b:b1:3f:80:d3:73:
ed:59:ca:1b:ab:86:e3:0b:a1:51:43:a3:86:3a:c2:
96:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:0C:A5:67:19:72:96:EC:07:24:6D:DA:7B:F1:B4:A2:00:D1:0A:80
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/7QylZxlyluwHJG3ae_G0ogDRCoA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:194:2c0d:6680/128
Signature Algorithm: sha256WithRSAEncryption
64:c3:4d:43:bf:93:97:26:05:0c:e1:21:7c:9d:69:9b:7d:83:
76:b3:53:25:2d:b5:e5:ad:ec:61:5b:a3:3d:92:83:8e:05:b6:
5a:bd:62:7d:b9:4d:0f:56:7e:3a:43:b2:1b:8f:a0:b9:f2:68:
45:54:bd:5c:21:0d:24:17:c0:cd:8e:4b:95:a6:87:54:85:cc:
64:0a:1f:31:30:78:f3:3d:27:24:f5:ae:14:1a:b4:e9:e0:70:
07:3f:4a:f7:57:4f:d4:04:7a:47:c4:eb:d4:e6:9a:dc:aa:f0:
61:5a:4a:b8:12:4c:5d:a8:98:a0:cc:31:dc:76:58:80:2e:90:
4a:86:ff:74:01:93:e2:42:e4:0f:a1:49:3f:e9:c9:22:89:96:
f1:c9:b3:39:1b:28:39:b9:1f:be:15:b1:00:3f:96:d1:09:d1:
33:02:82:07:ab:9e:a5:0c:b9:e5:45:75:78:ca:33:57:4c:c9:
45:ac:1d:be:be:69:f3:61:48:fc:d0:97:a3:9d:26:4c:7d:61:
f8:5d:df:81:59:c5:d9:45:00:ff:16:42:8a:d4:2d:cf:19:88:
9e:5c:73:f7:d5:aa:e4:bd:ca:ca:fb:19:fd:38:02:e5:47:e4:
e5:59:35:61:3b:11:5b:aa:21:3d:ef:26:aa:e6:18:9c:b2:37:
0f:b0:d7:ab
-----BEGIN CERTIFICATE-----
MIIFCjCCA/KgAwIBAgISAZQ7GeDJsJMCR/lgsxYsat6rMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyNjIwNDE1ZDI0OTBhNWVjM2Y2OTI1YjlmNzkwNDBlOGUy
MmRkYmYwHhcNMjUwMTA2MTAxMjE5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZDBjYTU2NzE5NzI5NmVjMDcyNDZkZGE3YmYxYjRhMjAwZDEwYTgwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmVxg5OrMDId72LSXd1XxubQshkXc
MyK71IND3qSClfridYTTDYwJs0dH/EOFh6QkWC7PRUeOfqCUCwsFiTYMfjuJ8UBp
s6xl6ImcR8ndcgMv0V5ZndohV3TSnqVWSczvR02AgBD5SAJ2yrk4nVshwBeth6B4
rsWZ6ZQn9/SX69fS9VcdT98JS9XSDeP+PGC1lVII5I0g9KSDzQZAIDf+5ptqK6HK
hLaTKvA3Zr6Ids3rXVo7UoGP5D6zwCWvT7qkeH+Ib5XOsboPcoyDu/a5iuOIOlTX
B6nqnITq+fIY0wDHoAQJaRxMsag7sT+A03PtWcobq4bjC6FRQ6OGOsKWfwIDAQAB
o4ICFjCCAhIwHQYDVR0OBBYEFO0MpWcZcpbsByRt2nvxtKIA0QqAMB8GA1UdIwQY
MBaAFFJiBBXSSQpew/aSW595BA6OIt2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYt
ODgxNDg4ZmZkYmIwLzEvN1F5bFp4bHlsdXdISkczYWVfRzBvZ0RSQ29BLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYtODgxNDg4ZmZkYmIw
LzEvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCwGCCsGAQUFBwEHAQH/BB0wGzAZBAIAAjATAxEAIAEGfABk
//8AAAGULA1mgDANBgkqhkiG9w0BAQsFAAOCAQEAZMNNQ7+TlyYFDOEhfJ1pm32D
drNTJS215a3sYVujPZKDjgW2Wr1ifblND1Z+OkOyG4+gufJoRVS9XCENJBfAzY5L
laaHVIXMZAofMTB48z0nJPWuFBq06eBwBz9K91dP1AR6R8Tr1Oaa3KrwYVpKuBJM
XaiYoMwx3HZYgC6QSob/dAGT4kLkD6FJP+nJIomW8cmzORsoObkfvhWxAD+W0QnR
MwKCB6uepQy55UV1eMozV0zJRawdvr5p82FI/NCXo50mTH1h+F3fgVnF2UUA/xZC
itQtzxmInlxz99Wq5L3KyvsZ/TgC5Ufk5Vk1YTsRW6ohPe8mquYYnLI3D7DXqw==
-----END CERTIFICATE-----
Generated at Sun Apr 20 04:20:30 2025 by rpki-client