Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/NIORsFXmVnTP-0-j1H4oPkqxgqM.roa
File: NIORsFXmVnTP-0-j1H4oPkqxgqM.roa (raw, json)
Hash identifier: L8gspqC0DMyy+dlQTrcjV71nX1BdV9/lLhElFTdTHVc=
Subject key identifier: 34:83:91:B0:55:E6:56:74:CF:FB:4F:A3:D4:7E:28:3E:4A:B1:82:A3
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0192B18ACF3CCAE04C9B19F41518F285A089
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/NIORsFXmVnTP-0-j1H4oPkqxgqM.roa
Signing time: Tue 22 Oct 2024 00:05:17 +0000
ROA not before: Tue 22 Oct 2024 00:05:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:192:b189:ed52/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:b1:8a:cf:3c:ca:e0:4c:9b:19:f4:15:18:f2:85:a0:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Oct 22 00:05:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=348391b055e65674cffb4fa3d47e283e4ab182a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:5b:7b:99:4e:b4:aa:9d:01:e3:21:1e:12:f1:
58:85:a2:c5:10:1d:8c:61:be:0d:42:5a:0e:6a:81:
5e:26:36:fd:48:84:46:6b:f2:f6:83:19:40:c5:26:
0f:9c:cf:30:9d:90:45:a9:ea:dc:b8:f4:aa:6c:99:
4f:e9:b1:8d:7a:b9:bb:f3:bf:22:87:aa:c4:bb:06:
3c:c6:78:21:16:0b:8e:28:bd:6b:b9:22:0b:a5:02:
06:32:5b:d9:4d:01:cd:be:8a:de:93:2e:05:d7:d0:
18:2b:90:bb:c3:87:a4:e8:97:ec:3a:3e:ad:44:a9:
9a:74:62:ed:5a:65:b6:93:f3:70:2e:a7:55:53:67:
4a:31:8a:7a:f6:d8:17:99:29:23:a8:b2:d6:9d:5c:
4e:14:37:4c:a2:53:d1:63:26:9b:fd:8b:00:37:31:
40:91:55:64:19:b7:0e:63:23:f1:cc:fa:38:8d:40:
c9:7d:aa:a0:0a:37:9c:2f:92:b5:c4:07:7d:9a:14:
51:f3:ef:13:cd:0f:86:aa:9c:13:e9:dc:bd:28:1a:
b3:af:87:7e:c0:41:a3:55:a5:f2:b9:38:29:7c:34:
16:4e:02:eb:91:18:d4:90:dc:1b:b1:fb:f3:7b:99:
90:c3:0f:f3:58:22:49:71:c3:69:92:18:8c:2c:79:
97:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:83:91:B0:55:E6:56:74:CF:FB:4F:A3:D4:7E:28:3E:4A:B1:82:A3
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/NIORsFXmVnTP-0-j1H4oPkqxgqM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:192:b189:ed52/128
Signature Algorithm: sha256WithRSAEncryption
15:79:b5:93:74:1f:9a:b3:48:eb:58:25:a6:46:27:cc:82:01:
ae:19:55:ae:66:62:c9:85:d0:0d:ec:a8:05:a8:ba:01:a5:b3:
1d:85:51:3b:84:e6:c7:2d:26:8b:10:b0:15:4c:ec:c5:85:1c:
02:12:65:b0:a7:a2:0e:84:ed:64:18:fd:e9:30:79:7a:3a:bb:
3a:7a:1d:14:70:73:3a:be:9b:7d:11:a6:34:8c:96:30:29:48:
10:f1:67:ae:17:49:16:ee:a6:23:5c:7b:04:b3:7f:47:65:3b:
38:b4:84:8e:42:01:ab:1a:9c:05:79:4f:c8:8a:6e:f6:10:c4:
5f:0a:4b:1a:14:4f:02:c6:a7:48:d3:3b:ad:2f:cc:a4:4f:f7:
fd:0f:12:6a:4f:49:29:15:3a:d5:05:0d:5c:ef:dc:ae:43:97:
fd:32:91:84:ed:52:21:40:09:ac:9e:74:7b:2a:9e:80:f1:a9:
60:13:9e:57:70:c5:e6:d5:00:76:c9:a0:e2:84:7d:dc:f8:f7:
15:ab:3b:d8:c6:1b:4c:17:59:ec:81:9b:41:d4:44:4e:98:2c:
76:a0:8f:a3:63:22:79:d8:5b:61:36:0a:c0:73:ce:e5:11:ff:
fd:1e:a9:e5:2f:85:c9:8d:f2:43:4d:d9:d6:42:ea:27:c2:91:
bc:25:9d:fd
-----BEGIN CERTIFICATE-----
MIIFCjCCA/KgAwIBAgISAZKxis88yuBMmxn0FRjyhaCJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyNjIwNDE1ZDI0OTBhNWVjM2Y2OTI1YjlmNzkwNDBlOGUy
MmRkYmYwHhcNMjQxMDIyMDAwNTE3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNDgzOTFiMDU1ZTY1Njc0Y2ZmYjRmYTNkNDdlMjgzZTRhYjE4MmEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0Ft7mU60qp0B4yEeEvFYhaLFEB2M
Yb4NQloOaoFeJjb9SIRGa/L2gxlAxSYPnM8wnZBFqercuPSqbJlP6bGNerm7878i
h6rEuwY8xnghFguOKL1ruSILpQIGMlvZTQHNvoreky4F19AYK5C7w4ek6JfsOj6t
RKmadGLtWmW2k/NwLqdVU2dKMYp69tgXmSkjqLLWnVxOFDdMolPRYyab/YsANzFA
kVVkGbcOYyPxzPo4jUDJfaqgCjecL5K1xAd9mhRR8+8TzQ+GqpwT6dy9KBqzr4d+
wEGjVaXyuTgpfDQWTgLrkRjUkNwbsfvze5mQww/zWCJJccNpkhiMLHmXIwIDAQAB
o4ICFjCCAhIwHQYDVR0OBBYEFDSDkbBV5lZ0z/tPo9R+KD5KsYKjMB8GA1UdIwQY
MBaAFFJiBBXSSQpew/aSW595BA6OIt2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYt
ODgxNDg4ZmZkYmIwLzEvTklPUnNGWG1WblRQLTAtajFING9Qa3F4Z3FNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYtODgxNDg4ZmZkYmIw
LzEvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCwGCCsGAQUFBwEHAQH/BB0wGzAZBAIAAjATAxEAIAEGfABk
//8AAAGSsYntUjANBgkqhkiG9w0BAQsFAAOCAQEAFXm1k3QfmrNI61glpkYnzIIB
rhlVrmZiyYXQDeyoBai6AaWzHYVRO4Tmxy0mixCwFUzsxYUcAhJlsKeiDoTtZBj9
6TB5ejq7OnodFHBzOr6bfRGmNIyWMClIEPFnrhdJFu6mI1x7BLN/R2U7OLSEjkIB
qxqcBXlPyIpu9hDEXwpLGhRPAsanSNM7rS/MpE/3/Q8Sak9JKRU61QUNXO/crkOX
/TKRhO1SIUAJrJ50eyqegPGpYBOeV3DF5tUAdsmg4oR93Pj3Fas72MYbTBdZ7IGb
QdRETpgsdqCPo2MiedhbYTYKwHPO5RH//R6p5S+FyY3yQ03Z1kLqJ8KRvCWd/Q==
-----END CERTIFICATE-----
Generated at Sun Jun 8 03:47:25 2025 by rpki-client