Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/45abde-5b44-471a-93d9-5345f7e74083/1/NvUUBHWSZOEuKSomDXGlNPs86WI.roa
File: NvUUBHWSZOEuKSomDXGlNPs86WI.roa (raw, json)
Hash identifier: VZq6uHQkPCq+Vrt3kMguN/EgfTU60WPv/1ZHuuvQjYw=
Subject key identifier: 36:F5:14:04:75:92:64:E1:2E:29:2A:26:0D:71:A5:34:FB:3C:E9:62
Certificate issuer: /CN=77c8d8bbf05797a75a49c5d70f5971ecdec6dd93
Certificate serial: 09E926C8
Authority key identifier: 77:C8:D8:BB:F0:57:97:A7:5A:49:C5:D7:0F:59:71:EC:DE:C6:DD:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d8jYu_BXl6daScXXD1lx7N7G3ZM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/45abde-5b44-471a-93d9-5345f7e74083/1/NvUUBHWSZOEuKSomDXGlNPs86WI.roa
Signing time: Sat 01 Jan 2022 04:56:14 +0000
ROA not before: Sat 01 Jan 2022 04:56:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207960
IP address blocks: 2a0d:1a40:7900::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 166274760 (0x9e926c8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77c8d8bbf05797a75a49c5d70f5971ecdec6dd93
Validity
Not Before: Jan 1 04:56:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=36f51404759264e12e292a260d71a534fb3ce962
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:58:48:b7:58:31:dd:6f:12:df:10:b3:e0:28:
24:ff:a0:1d:42:d5:be:5b:95:a1:a5:59:d3:8d:6f:
94:83:71:62:59:06:6e:c3:77:c4:69:cd:4f:f2:5c:
1f:b5:5a:fd:3d:89:07:81:ff:c4:65:3d:10:b8:59:
6f:ad:2a:6d:3d:c4:25:66:6f:8f:59:d8:2a:f1:90:
30:84:bd:3a:db:d5:67:94:d6:6a:08:75:91:01:10:
07:6c:79:99:76:bc:a0:18:6c:1f:81:0f:c6:65:56:
d7:45:a8:8d:c4:80:2f:35:49:db:9f:76:b8:55:ad:
7f:13:27:7f:3f:4e:ba:5e:77:60:5c:20:0e:71:bc:
52:15:08:aa:49:24:0a:28:52:4d:0a:bb:03:5e:08:
92:5d:11:87:c9:4a:69:dd:2f:49:8e:fd:04:a2:0e:
71:7e:e4:fa:96:eb:d5:36:a9:77:58:8d:16:1e:bf:
5c:ea:bf:bf:05:69:96:63:3d:ca:6f:bf:b6:9e:fa:
5f:6b:5d:de:cb:95:ef:0e:25:6a:c8:cc:ae:a7:10:
18:27:bc:be:1b:32:68:d0:b6:8a:05:89:83:31:ba:
a3:4b:f2:d8:38:ee:b3:f6:72:84:7c:e5:c8:cf:77:
f4:28:99:92:a0:2b:9b:38:82:a3:5e:73:76:dd:a9:
4b:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:F5:14:04:75:92:64:E1:2E:29:2A:26:0D:71:A5:34:FB:3C:E9:62
X509v3 Authority Key Identifier:
keyid:77:C8:D8:BB:F0:57:97:A7:5A:49:C5:D7:0F:59:71:EC:DE:C6:DD:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8jYu_BXl6daScXXD1lx7N7G3ZM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/45abde-5b44-471a-93d9-5345f7e74083/1/NvUUBHWSZOEuKSomDXGlNPs86WI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/45abde-5b44-471a-93d9-5345f7e74083/1/d8jYu_BXl6daScXXD1lx7N7G3ZM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:1a40:7900::/40
Signature Algorithm: sha256WithRSAEncryption
8e:95:91:4c:fc:82:dd:84:81:d2:00:24:58:2b:f5:01:80:2d:
d1:10:f4:bf:8d:f0:e0:ee:c9:f2:4d:6b:6e:ae:4c:53:9a:7d:
42:db:a1:c9:fc:ef:fc:f9:c6:ff:04:b6:e3:17:26:3d:21:3a:
a7:3b:6e:80:a4:c3:97:ec:45:ee:3b:fb:00:b5:c4:09:fb:e2:
da:bb:8d:21:26:2d:a0:91:f5:7e:8c:6e:bb:68:3a:67:7e:93:
c8:21:37:e5:38:ff:01:1e:ba:02:55:9b:66:67:e7:68:06:4b:
fe:f0:fc:66:04:a0:6b:9c:97:26:01:42:dd:99:01:af:32:5c:
ed:7a:45:5a:d8:1b:c0:ef:57:10:0e:a5:88:b0:a6:b4:3c:fe:
66:c6:11:f3:f1:8f:60:ba:2f:c4:70:c8:e5:cc:c9:1a:a7:ac:
0d:cd:8f:2c:ce:a4:b5:e7:64:c7:c5:54:a6:0f:f2:e9:24:cd:
f9:10:9a:f0:c9:52:e1:d4:c5:1e:f3:a4:46:fa:da:b0:5e:15:
3e:22:24:03:f1:c9:57:f9:01:77:02:bd:dc:05:89:cb:a6:16:
76:04:2e:90:18:28:4d:99:ee:93:42:8a:29:2f:86:fb:e6:f7:
b4:b9:4c:8a:f1:c7:d8:69:9a:04:f2:2b:b0:af:07:c2:de:77:
c8:31:60:2e
-----BEGIN CERTIFICATE-----
MIIE8TCCA9mgAwIBAgIECekmyDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
N2M4ZDhiYmYwNTc5N2E3NWE0OWM1ZDcwZjU5NzFlY2RlYzZkZDkzMB4XDTIyMDEw
MTA0NTYxNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzZmNTE0MDQ3NTky
NjRlMTJlMjkyYTI2MGQ3MWE1MzRmYjNjZTk2MjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANxYSLdYMd1vEt8Qs+AoJP+gHULVvluVoaVZ041vlINxYlkG
bsN3xGnNT/JcH7Va/T2JB4H/xGU9ELhZb60qbT3EJWZvj1nYKvGQMIS9OtvVZ5TW
agh1kQEQB2x5mXa8oBhsH4EPxmVW10WojcSALzVJ2592uFWtfxMnfz9Oul53YFwg
DnG8UhUIqkkkCihSTQq7A14Ikl0Rh8lKad0vSY79BKIOcX7k+pbr1Tapd1iNFh6/
XOq/vwVplmM9ym+/tp76X2td3suV7w4lasjMrqcQGCe8vhsyaNC2igWJgzG6o0vy
2Djus/ZyhHzlyM939CiZkqArmziCo15zdt2pS7ECAwEAAaOCAgswggIHMB0GA1Ud
DgQWBBQ29RQEdZJk4S4pKiYNcaU0+zzpYjAfBgNVHSMEGDAWgBR3yNi78FeXp1pJ
xdcPWXHs3sbdkzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2Q4all1X0JYbDZkYVNjWFhEMWx4N043RzNaTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOTQvNDVhYmRlLTViNDQtNDcxYS05M2Q5LTUzNDVmN2U3NDA4My8x
L052VVVCSFdTWk9FdUtTb21EWEdsTlBzODZXSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTQv
NDVhYmRlLTViNDQtNDcxYS05M2Q5LTUzNDVmN2U3NDA4My8xL2Q4all1X0JYbDZk
YVNjWFhEMWx4N043RzNaTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh
BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoNGkB5MA0GCSqGSIb3DQEBCwUA
A4IBAQCOlZFM/ILdhIHSACRYK/UBgC3REPS/jfDg7snyTWturkxTmn1C26HJ/O/8
+cb/BLbjFyY9ITqnO26ApMOX7EXuO/sAtcQJ++Lau40hJi2gkfV+jG67aDpnfpPI
ITflOP8BHroCVZtmZ+doBkv+8PxmBKBrnJcmAULdmQGvMlztekVa2BvA71cQDqWI
sKa0PP5mxhHz8Y9gui/EcMjlzMkap6wNzY8szqS152THxVSmD/LpJM35EJrwyVLh
1MUe86RG+tqwXhU+IiQD8clX+QF3Ar3cBYnLphZ2BC6QGChNme6TQoopL4b75ve0
uUyK8cfYaZoE8iuwrwfC3nfIMWAu
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:24:21 2025 by rpki-client