Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/80d087-4700-4e85-a783-bf24e775b2bc/1/vmvMz7iYINXEEkk8q3hTcUEqEpc.roa
File: vmvMz7iYINXEEkk8q3hTcUEqEpc.roa (raw, json)
Hash identifier: cIoty3QgZcrRdlAsEyLTb5L8GB5LiEjn7CzAwFabxRU=
Subject key identifier: BE:6B:CC:CF:B8:98:20:D5:C4:12:49:3C:AB:78:53:71:41:2A:12:97
Certificate issuer: /CN=dae6bdfe4278008f716d4d7b0b9f92f7e036eb26
Certificate serial: 0194258FCA29931EB6ED337254BA008E2A96
Authority key identifier: DA:E6:BD:FE:42:78:00:8F:71:6D:4D:7B:0B:9F:92:F7:E0:36:EB:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2ua9_kJ4AI9xbU17C5-S9-A26yY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/80d087-4700-4e85-a783-bf24e775b2bc/1/vmvMz7iYINXEEkk8q3hTcUEqEpc.roa
Signing time: Thu 02 Jan 2025 05:49:27 +0000
ROA not before: Thu 02 Jan 2025 05:49:27 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 37284
IP address blocks: 5.63.0.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:ca:29:93:1e:b6:ed:33:72:54:ba:00:8e:2a:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dae6bdfe4278008f716d4d7b0b9f92f7e036eb26
Validity
Not Before: Jan 2 05:49:27 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=be6bcccfb89820d5c412493cab785371412a1297
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:5a:c7:87:78:d5:2d:da:bb:a8:d8:02:d5:09:
3e:e7:dc:80:7b:15:47:e6:a2:21:1f:be:ce:90:0f:
b0:51:9e:86:96:81:ca:14:87:eb:76:1d:da:86:34:
70:56:c4:b6:a7:79:89:a6:41:d3:0f:85:d1:b5:39:
7c:4f:4e:3a:af:80:d5:0d:f7:fe:34:66:bd:00:a6:
59:48:3a:2d:92:26:8a:81:7e:39:84:a1:3e:ca:72:
79:39:ed:52:1b:76:8e:84:d8:0f:eb:ff:ce:89:ed:
4d:0e:e7:6a:f2:5a:f7:2d:21:2e:b8:cd:c8:4e:b9:
0c:88:fc:59:08:14:bf:d0:5a:fe:9d:0a:13:81:23:
74:4d:6a:dc:6d:31:76:cf:d3:a5:62:c5:f8:fc:e8:
03:3a:83:08:05:95:a3:8f:cb:28:2d:9f:02:2c:ca:
82:b0:c5:83:6e:da:ed:8f:15:7d:00:1c:f7:87:17:
40:9e:6d:de:ad:74:f2:98:43:e9:fe:84:18:e6:d0:
bf:ac:50:ea:82:ae:b7:03:98:f5:9c:ed:27:72:09:
bf:d9:6c:dd:c4:55:07:8c:d0:7e:5e:fb:b7:4a:9b:
2f:dc:22:1d:b5:c7:de:f7:ac:58:d5:32:f1:a9:db:
48:2d:a4:0b:b2:dc:8f:93:c6:b5:54:8a:6c:6a:5c:
1f:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:6B:CC:CF:B8:98:20:D5:C4:12:49:3C:AB:78:53:71:41:2A:12:97
X509v3 Authority Key Identifier:
keyid:DA:E6:BD:FE:42:78:00:8F:71:6D:4D:7B:0B:9F:92:F7:E0:36:EB:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ua9_kJ4AI9xbU17C5-S9-A26yY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/80d087-4700-4e85-a783-bf24e775b2bc/1/vmvMz7iYINXEEkk8q3hTcUEqEpc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/80d087-4700-4e85-a783-bf24e775b2bc/1/2ua9_kJ4AI9xbU17C5-S9-A26yY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.63.0.0/21
Signature Algorithm: sha256WithRSAEncryption
4b:4a:51:e4:98:16:de:ca:51:e4:02:da:37:99:26:8f:df:a3:
60:a2:36:6c:03:71:4d:b3:2e:51:4e:fc:fb:53:33:31:28:fd:
45:24:f7:75:e7:de:5f:a9:23:49:4f:68:3e:20:c6:0f:e5:38:
96:62:59:12:39:1f:bc:7a:ae:9d:fd:22:0f:9a:b3:bc:47:32:
8a:66:ca:3e:9e:1b:9c:65:ee:c1:09:b5:ae:1b:51:38:70:81:
e8:cd:3a:2b:86:47:d2:c7:a7:b0:55:d9:4b:67:52:e5:fd:04:
26:03:c7:87:77:9f:10:38:38:28:11:8a:15:1a:7a:2a:00:24:
19:d6:6d:09:93:d8:a8:cf:5c:3c:aa:78:51:09:fd:3a:1e:db:
94:c0:e3:ff:8b:a2:39:5a:bd:75:21:a7:ad:95:6c:1b:6c:60:
f5:61:eb:a7:95:9b:57:9f:0c:68:cd:81:32:c8:e3:d1:f0:43:
2e:b8:ee:52:50:bb:09:92:e9:67:1a:57:f1:fe:06:90:fd:7c:
8b:e7:32:a8:3d:a8:d9:90:e5:db:c9:e4:20:90:21:a6:87:26:
9e:7e:bf:49:ab:d9:92:23:36:37:b6:22:f3:ce:ce:02:cd:1d:
f8:77:37:5f:24:13:6e:eb:bb:32:ec:c0:c2:36:c7:a8:a2:f4:
37:d1:7c:9a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQlj8opkx627TNyVLoAjiqWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhZTZiZGZlNDI3ODAwOGY3MTZkNGQ3YjBiOWY5MmY3ZTAz
NmViMjYwHhcNMjUwMTAyMDU0OTI3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZTZiY2NjZmI4OTgyMGQ1YzQxMjQ5M2NhYjc4NTM3MTQxMmExMjk3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAolrHh3jVLdq7qNgC1Qk+59yAexVH
5qIhH77OkA+wUZ6GloHKFIfrdh3ahjRwVsS2p3mJpkHTD4XRtTl8T046r4DVDff+
NGa9AKZZSDotkiaKgX45hKE+ynJ5Oe1SG3aOhNgP6//Oie1NDudq8lr3LSEuuM3I
TrkMiPxZCBS/0Fr+nQoTgSN0TWrcbTF2z9OlYsX4/OgDOoMIBZWjj8soLZ8CLMqC
sMWDbtrtjxV9ABz3hxdAnm3erXTymEPp/oQY5tC/rFDqgq63A5j1nO0ncgm/2Wzd
xFUHjNB+Xvu3Spsv3CIdtcfe96xY1TLxqdtILaQLstyPk8a1VIpsalwfiwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFL5rzM+4mCDVxBJJPKt4U3FBKhKXMB8GA1UdIwQY
MBaAFNrmvf5CeACPcW1NewufkvfgNusmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMnVhOV9rSjRBSTl4YlUxN0M1LVM5LUEyNnlZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy84MGQwODctNDcwMC00ZTg1LWE3ODMt
YmYyNGU3NzViMmJjLzEvdm12TXo3aVlJTlhFRWtrOHEzaFRjVUVxRXBjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMy84MGQwODctNDcwMC00ZTg1LWE3ODMtYmYyNGU3NzViMmJj
LzEvMnVhOV9rSjRBSTl4YlUxN0M1LVM5LUEyNnlZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDBT8AMA0G
CSqGSIb3DQEBCwUAA4IBAQBLSlHkmBbeylHkAto3mSaP36NgojZsA3FNsy5RTvz7
UzMxKP1FJPd1595fqSNJT2g+IMYP5TiWYlkSOR+8eq6d/SIPmrO8RzKKZso+nhuc
Ze7BCbWuG1E4cIHozTorhkfSx6ewVdlLZ1Ll/QQmA8eHd58QODgoEYoVGnoqACQZ
1m0Jk9ioz1w8qnhRCf06HtuUwOP/i6I5Wr11IaetlWwbbGD1YeunlZtXnwxozYEy
yOPR8EMuuO5SULsJkulnGlfx/gaQ/XyL5zKoPajZkOXbyeQgkCGmhyaefr9Jq9mS
IzY3tiLzzs4CzR34dzdfJBNu67sy7MDCNseoovQ30Xya
-----END CERTIFICATE-----
Generated at Mon Apr 7 23:39:08 2025 by rpki-client