Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/vCF1JkoRbox-gxDMqnzPH_KqH-c.roa
File: vCF1JkoRbox-gxDMqnzPH_KqH-c.roa (raw, json)
Hash identifier: R77x21+4U8d9x4/wi4/juppjfBOeSD4cwa8yX3WMbJw=
Subject key identifier: BC:21:75:26:4A:11:6E:8C:7E:83:10:CC:AA:7C:CF:1F:F2:AA:1F:E7
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 019108B376476EAEFB03E65F3E6CFE967A79
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/vCF1JkoRbox-gxDMqnzPH_KqH-c.roa
Signing time: Wed 31 Jul 2024 12:11:04 +0000
ROA not before: Wed 31 Jul 2024 12:11:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:08:b3:76:47:6e:ae:fb:03:e6:5f:3e:6c:fe:96:7a:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jul 31 12:11:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bc2175264a116e8c7e8310ccaa7ccf1ff2aa1fe7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:e1:f2:0a:52:2e:c3:25:82:53:a0:7e:5b:06:
e9:65:ad:e4:56:78:54:8d:2d:25:10:5a:26:3f:cb:
3b:c3:b6:2f:78:1e:c6:5d:d0:e8:d6:86:37:27:1c:
17:9f:a5:c3:89:0c:84:e1:42:ae:08:bc:3a:8d:79:
d7:51:90:df:f3:55:42:c7:aa:7a:e6:1e:cc:b6:d6:
38:5b:ec:38:df:bc:58:51:48:ef:c2:59:70:49:20:
06:e0:44:84:e4:39:50:85:98:e6:87:cd:ca:40:8a:
c6:3a:30:3c:10:fe:8a:44:28:7f:16:cd:e9:41:1d:
44:ce:c8:0f:e7:97:e3:79:79:3a:b8:12:b9:84:ed:
33:7f:71:6a:52:1e:2f:bc:ae:89:8d:dc:64:a4:bf:
b4:f5:b0:ed:54:a8:5f:c7:b2:f2:a9:ea:0f:bf:d8:
74:21:60:e8:6f:26:07:3d:84:50:8b:d0:df:b2:f4:
6e:3c:f9:ab:83:49:86:f5:5e:8c:e2:b1:0c:3f:99:
12:83:e6:e3:b4:4e:58:51:d3:bb:bf:5f:dc:d5:dc:
1e:f4:a2:a3:03:48:f2:ae:dd:a6:90:05:7c:dd:d4:
6f:a4:34:23:1a:82:b4:f2:55:47:be:c9:43:7b:4c:
ae:f6:38:dc:31:47:c6:7b:16:87:bc:26:69:db:53:
0f:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:21:75:26:4A:11:6E:8C:7E:83:10:CC:AA:7C:CF:1F:F2:AA:1F:E7
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/vCF1JkoRbox-gxDMqnzPH_KqH-c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
Signature Algorithm: sha256WithRSAEncryption
58:68:9e:ab:2d:67:e3:b8:65:92:31:2f:de:c4:8f:77:e8:ad:
08:dd:de:0c:88:f2:69:0a:5e:e6:05:fe:6e:48:3f:f0:7d:e6:
06:fb:fd:38:50:18:22:53:9f:11:ca:ae:36:4c:d4:b7:aa:6a:
17:ec:cd:fd:bf:28:2a:97:b2:f2:a5:40:ef:96:fb:99:5e:26:
d8:65:fc:ed:a0:8d:8f:d1:20:cd:07:0f:23:66:ce:13:c3:5a:
98:bd:2f:29:0f:72:cf:fc:48:23:34:4a:d3:0b:91:6a:09:0a:
e5:cd:83:dc:55:e9:74:8e:07:a5:18:1b:3f:f1:6f:d7:12:37:
2f:56:58:49:b5:d8:47:71:07:c7:d3:79:fa:46:13:d0:b9:1a:
a0:9d:63:dc:83:7c:58:3d:fd:e6:3d:82:ec:97:4c:00:89:37:
f3:35:d8:5c:e1:85:40:77:e0:cc:81:0e:59:2e:c5:88:ab:55:
af:f4:e8:95:d3:9a:79:e8:dd:c9:56:de:74:65:c0:3a:71:18:
82:b8:77:5b:63:21:ba:ec:3d:a8:b4:3b:b7:b9:a3:c6:3a:4d:
aa:c4:e5:0e:c0:68:d8:b5:4d:a1:11:88:d5:7a:e4:a7:02:ec:
a9:3b:da:1f:0d:7d:78:f0:b9:d8:ee:db:a5:8f:45:1c:d2:91:
5a:61:33:b2
-----BEGIN CERTIFICATE-----
MIIFCjCCA/KgAwIBAgISAZEIs3ZHbq77A+ZfPmz+lnp5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyNjIwNDE1ZDI0OTBhNWVjM2Y2OTI1YjlmNzkwNDBlOGUy
MmRkYmYwHhcNMjQwNzMxMTIxMTA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYzIxNzUyNjRhMTE2ZThjN2U4MzEwY2NhYTdjY2YxZmYyYWExZmU3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1uHyClIuwyWCU6B+WwbpZa3kVnhU
jS0lEFomP8s7w7YveB7GXdDo1oY3JxwXn6XDiQyE4UKuCLw6jXnXUZDf81VCx6p6
5h7MttY4W+w437xYUUjvwllwSSAG4ESE5DlQhZjmh83KQIrGOjA8EP6KRCh/Fs3p
QR1EzsgP55fjeXk6uBK5hO0zf3FqUh4vvK6JjdxkpL+09bDtVKhfx7LyqeoPv9h0
IWDobyYHPYRQi9DfsvRuPPmrg0mG9V6M4rEMP5kSg+bjtE5YUdO7v1/c1dwe9KKj
A0jyrt2mkAV83dRvpDQjGoK08lVHvslDe0yu9jjcMUfGexaHvCZp21MPrwIDAQAB
o4ICFjCCAhIwHQYDVR0OBBYEFLwhdSZKEW6MfoMQzKp8zx/yqh/nMB8GA1UdIwQY
MBaAFFJiBBXSSQpew/aSW595BA6OIt2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYt
ODgxNDg4ZmZkYmIwLzEvdkNGMUprb1Jib3gtZ3hETXFuelBIX0txSC1jLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYtODgxNDg4ZmZkYmIw
LzEvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCwGCCsGAQUFBwEHAQH/BB0wGzAZBAIAAjATAxEAIAEGfABk
//8AAAGQ/fLzAjANBgkqhkiG9w0BAQsFAAOCAQEAWGieqy1n47hlkjEv3sSPd+it
CN3eDIjyaQpe5gX+bkg/8H3mBvv9OFAYIlOfEcquNkzUt6pqF+zN/b8oKpey8qVA
75b7mV4m2GX87aCNj9EgzQcPI2bOE8NamL0vKQ9yz/xIIzRK0wuRagkK5c2D3FXp
dI4HpRgbP/Fv1xI3L1ZYSbXYR3EHx9N5+kYT0LkaoJ1j3IN8WD395j2C7JdMAIk3
8zXYXOGFQHfgzIEOWS7FiKtVr/ToldOaeejdyVbedGXAOnEYgrh3W2Mhuuw9qLQ7
t7mjxjpNqsTlDsBo2LVNoRGI1XrkpwLsqTvaHw19ePC52O7bpY9FHNKRWmEzsg==
-----END CERTIFICATE-----
Generated at Sat Apr 19 12:04:13 2025 by rpki-client