Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/72d226-c3b0-41f3-b4db-83fd7382ff13/1/wIyZBzJneqhUlXlaakPHp1mJEkI.roa
File: wIyZBzJneqhUlXlaakPHp1mJEkI.roa (raw, json)
Hash identifier: hrey/EDrGMPSjQU4U1zyy5HO3BAm/rsGZPPkPZgKLTk=
Subject key identifier: C0:8C:99:07:32:67:7A:A8:54:95:79:5A:6A:43:C7:A7:59:89:12:42
Certificate issuer: /CN=50b90a5e158ba0908fdc83cc4243fe40c6dab423
Certificate serial: 09E8E71B
Authority key identifier: 50:B9:0A:5E:15:8B:A0:90:8F:DC:83:CC:42:43:FE:40:C6:DA:B4:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ULkKXhWLoJCP3IPMQkP-QMbatCM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/72d226-c3b0-41f3-b4db-83fd7382ff13/1/wIyZBzJneqhUlXlaakPHp1mJEkI.roa
Signing time: Sat 01 Jan 2022 09:59:05 +0000
ROA not before: Sat 01 Jan 2022 09:59:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207586
IP address blocks: 2a09:be40:3410::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 166258459 (0x9e8e71b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50b90a5e158ba0908fdc83cc4243fe40c6dab423
Validity
Not Before: Jan 1 09:59:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c08c990732677aa85495795a6a43c7a759891242
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:9b:a0:13:28:f5:58:54:27:d6:e6:04:10:08:
bb:8b:51:0c:75:a0:3c:3f:57:3b:06:0e:dd:c8:e0:
2b:31:ca:66:9d:a0:4a:4e:20:d5:bb:56:88:eb:b2:
71:b2:b1:25:dd:6d:b1:99:ea:29:c7:17:06:29:2b:
b9:70:20:31:5d:38:46:35:be:be:2e:76:7b:7c:80:
19:98:6c:98:ab:ab:30:d2:3c:b8:ac:75:14:69:0e:
04:a3:e1:4b:ea:f6:38:c0:ef:39:1a:7b:c6:01:92:
84:b9:e1:51:98:7f:e2:a9:f7:16:f9:0b:74:ea:dc:
61:75:8b:f5:1a:90:98:d4:76:3a:c0:db:0f:f2:27:
4d:68:2c:f8:16:a0:22:13:4f:d5:2b:ca:ff:3d:76:
47:3f:07:3a:06:1b:b6:6e:f8:4c:ee:f2:ae:4a:7c:
ce:51:08:9f:4c:2b:6d:c2:4a:3f:76:e1:fd:82:d5:
29:cc:cc:36:26:4c:e5:64:7f:12:1f:c0:4d:c5:ec:
59:4e:11:47:91:ee:ad:1f:04:a7:bb:d6:a2:f4:d8:
0e:1c:39:1c:ff:83:14:36:e6:1f:94:6c:91:bf:11:
19:cd:81:40:ec:8c:bf:b7:8b:f2:34:60:bb:01:0d:
28:2e:23:f5:ca:96:4b:d0:76:3f:37:a4:a3:0b:ce:
e4:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:8C:99:07:32:67:7A:A8:54:95:79:5A:6A:43:C7:A7:59:89:12:42
X509v3 Authority Key Identifier:
keyid:50:B9:0A:5E:15:8B:A0:90:8F:DC:83:CC:42:43:FE:40:C6:DA:B4:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ULkKXhWLoJCP3IPMQkP-QMbatCM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/72d226-c3b0-41f3-b4db-83fd7382ff13/1/wIyZBzJneqhUlXlaakPHp1mJEkI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/72d226-c3b0-41f3-b4db-83fd7382ff13/1/ULkKXhWLoJCP3IPMQkP-QMbatCM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:be40:3410::/44
Signature Algorithm: sha256WithRSAEncryption
82:29:62:81:65:4b:41:d6:6f:37:48:a2:18:51:29:ff:46:5e:
57:83:11:4f:6e:67:e6:17:dd:45:1b:35:54:47:1a:52:9d:ea:
02:8a:27:7f:35:58:af:34:e7:60:b3:7e:97:04:4b:2c:54:c6:
68:d1:6a:43:ec:10:a0:29:bc:97:af:73:af:32:98:52:b0:c3:
32:2a:c2:7b:9f:9f:bd:62:5c:16:12:b0:4d:d9:19:bf:e9:24:
1c:fc:25:e5:94:02:68:12:fc:60:de:c0:94:ae:3c:86:d6:2f:
a8:9b:2d:17:67:0a:c0:94:4b:ab:c9:ac:67:8a:85:00:e7:0f:
06:93:81:d6:1b:c1:44:fb:b2:33:1d:6b:c2:f3:33:b1:59:53:
1a:82:d6:9a:3a:3b:0a:66:60:3e:4b:7d:cd:d5:88:9f:28:ea:
ba:82:33:7b:2d:42:d0:db:ba:3b:3a:de:72:da:b0:55:d0:10:
d1:67:6f:3e:8e:2d:89:0f:5f:43:13:05:d2:dc:2a:c7:b1:64:
cf:68:8b:5f:0a:96:98:d2:de:51:0d:5b:f8:14:7b:11:ff:a3:
94:cd:d7:19:b4:12:6d:3f:d3:32:1f:7e:70:dc:e1:ec:40:2c:
88:90:bd:28:17:00:9a:0e:bf:48:42:3c:b8:e7:2b:7c:41:f5:
5f:b6:34:64
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIECejnGzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
MGI5MGE1ZTE1OGJhMDkwOGZkYzgzY2M0MjQzZmU0MGM2ZGFiNDIzMB4XDTIyMDEw
MTA5NTkwNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzA4Yzk5MDczMjY3
N2FhODU0OTU3OTVhNmE0M2M3YTc1OTg5MTI0MjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAPGboBMo9VhUJ9bmBBAIu4tRDHWgPD9XOwYO3cjgKzHKZp2g
Sk4g1btWiOuycbKxJd1tsZnqKccXBikruXAgMV04RjW+vi52e3yAGZhsmKurMNI8
uKx1FGkOBKPhS+r2OMDvORp7xgGShLnhUZh/4qn3FvkLdOrcYXWL9RqQmNR2OsDb
D/InTWgs+BagIhNP1SvK/z12Rz8HOgYbtm74TO7yrkp8zlEIn0wrbcJKP3bh/YLV
KczMNiZM5WR/Eh/ATcXsWU4RR5HurR8Ep7vWovTYDhw5HP+DFDbmH5Rskb8RGc2B
QOyMv7eL8jRguwENKC4j9cqWS9B2PzekowvO5IMCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBTAjJkHMmd6qFSVeVpqQ8enWYkSQjAfBgNVHSMEGDAWgBRQuQpeFYugkI/c
g8xCQ/5Axtq0IzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1VMa0tYaFdMb0pDUDNJUE1Ra1AtUU1iYXRDTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZGIvNzJkMjI2LWMzYjAtNDFmMy1iNGRiLTgzZmQ3MzgyZmYxMy8x
L3dJeVpCekpuZXFoVWxYbGFha1BIcDFtSkVrSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZGIv
NzJkMjI2LWMzYjAtNDFmMy1iNGRiLTgzZmQ3MzgyZmYxMy8xL1VMa0tYaFdMb0pD
UDNJUE1Ra1AtUU1iYXRDTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHBCoJvkA0EDANBgkqhkiG9w0BAQsF
AAOCAQEAgiligWVLQdZvN0iiGFEp/0ZeV4MRT25n5hfdRRs1VEcaUp3qAoonfzVY
rzTnYLN+lwRLLFTGaNFqQ+wQoCm8l69zrzKYUrDDMirCe5+fvWJcFhKwTdkZv+kk
HPwl5ZQCaBL8YN7AlK48htYvqJstF2cKwJRLq8msZ4qFAOcPBpOB1hvBRPuyMx1r
wvMzsVlTGoLWmjo7CmZgPkt9zdWInyjquoIzey1C0Nu6OzrectqwVdAQ0WdvPo4t
iQ9fQxMF0twqx7Fkz2iLXwqWmNLeUQ1b+BR7Ef+jlM3XGbQSbT/TMh9+cNzh7EAs
iJC9KBcAmg6/SEI8uOcrfEH1X7Y0ZA==
-----END CERTIFICATE-----
Generated at Sun Apr 20 12:12:57 2025 by rpki-client