Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/72d226-c3b0-41f3-b4db-83fd7382ff13/1/wip0GYMIlYrkgEDhv4sh_HfLqn4.roa
File: wip0GYMIlYrkgEDhv4sh_HfLqn4.roa (raw, json)
Hash identifier: VEJChUNW5xKeIC8xvLGhWrZJWFk1Z6bNps2VaFGDoWI=
Subject key identifier: C2:2A:74:19:83:08:95:8A:E4:80:40:E1:BF:8B:21:FC:77:CB:AA:7E
Certificate issuer: /CN=50b90a5e158ba0908fdc83cc4243fe40c6dab423
Certificate serial: 09E60A07
Authority key identifier: 50:B9:0A:5E:15:8B:A0:90:8F:DC:83:CC:42:43:FE:40:C6:DA:B4:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ULkKXhWLoJCP3IPMQkP-QMbatCM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/72d226-c3b0-41f3-b4db-83fd7382ff13/1/wip0GYMIlYrkgEDhv4sh_HfLqn4.roa
Signing time: Sat 01 Jan 2022 09:59:03 +0000
ROA not before: Sat 01 Jan 2022 09:59:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50236
IP address blocks: 2a0e:ec00::/32 maxlen: 36
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 166070791 (0x9e60a07)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50b90a5e158ba0908fdc83cc4243fe40c6dab423
Validity
Not Before: Jan 1 09:59:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c22a74198308958ae48040e1bf8b21fc77cbaa7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:d9:da:f7:fc:7d:1d:1a:69:9b:4d:f0:f6:5e:
14:84:80:ca:41:c3:5b:fc:e2:4c:83:1f:9a:1a:4e:
b1:0e:a6:49:78:84:30:6b:65:35:fe:33:69:09:1b:
cc:71:68:2a:14:ca:ab:df:19:ce:99:b1:ed:e6:79:
3b:46:6c:bc:e8:54:fe:b6:f7:e7:18:c0:52:40:a0:
8c:86:83:6f:75:0d:a0:d8:cb:2a:3d:24:8d:05:38:
b1:31:f9:11:be:9c:bf:25:d5:de:1c:11:92:7f:b5:
9a:3a:b7:a8:09:9e:1c:ea:ae:fc:1b:fb:8f:58:5a:
bd:f0:29:fd:76:41:4f:3d:ca:64:d0:d8:43:97:d7:
2d:4f:e8:4a:06:54:20:33:2f:dc:ca:13:e2:54:25:
d5:d0:34:50:18:7a:14:8f:6c:7d:b0:ec:ce:f1:0d:
84:05:2e:5c:26:71:cb:1d:21:06:24:af:e8:ea:38:
dd:ea:93:18:00:3c:8e:b7:e1:a3:0e:27:ec:c7:37:
88:e9:2c:43:b1:15:53:0f:5f:1f:b0:b7:ea:d4:7c:
06:29:8d:e9:8a:44:67:d4:90:90:5d:c2:02:63:76:
56:a0:64:e0:0f:94:c1:87:ea:84:c1:c5:e3:fa:82:
85:4f:2f:96:63:44:5c:c3:95:a0:8d:8b:9c:0d:28:
d5:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:2A:74:19:83:08:95:8A:E4:80:40:E1:BF:8B:21:FC:77:CB:AA:7E
X509v3 Authority Key Identifier:
keyid:50:B9:0A:5E:15:8B:A0:90:8F:DC:83:CC:42:43:FE:40:C6:DA:B4:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ULkKXhWLoJCP3IPMQkP-QMbatCM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/72d226-c3b0-41f3-b4db-83fd7382ff13/1/wip0GYMIlYrkgEDhv4sh_HfLqn4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/72d226-c3b0-41f3-b4db-83fd7382ff13/1/ULkKXhWLoJCP3IPMQkP-QMbatCM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:ec00::/32
Signature Algorithm: sha256WithRSAEncryption
6c:3a:f9:8e:fc:2e:b2:ce:72:fe:5d:c1:ae:5a:9d:ce:35:03:
f7:c5:ef:cf:01:c4:37:14:41:be:c2:29:ab:0c:92:f7:cf:bd:
cc:ff:3c:a2:31:9d:71:da:c9:42:31:42:a7:9c:7b:48:af:fe:
d3:6d:68:4a:fb:58:27:9c:68:a5:8b:ec:35:d9:6e:b2:31:44:
64:ae:04:e9:ae:cc:d0:91:e7:6d:63:be:2f:c9:fb:80:d9:5c:
ca:24:e8:27:1d:51:a3:bb:95:4a:9e:b7:51:58:a7:41:95:ec:
d4:cb:f0:f7:c8:ef:27:08:96:1e:45:c3:57:60:96:da:71:29:
02:a6:55:42:8d:1f:60:f4:00:64:6e:b4:b7:3d:8e:bb:bb:4b:
80:72:c5:7a:62:6f:26:96:09:43:75:02:2a:13:0f:31:05:ab:
67:a1:4b:fe:7a:d1:fd:e3:99:fa:18:69:40:99:73:a7:55:ec:
82:90:c5:19:04:67:35:af:fe:4b:81:f7:69:da:c2:65:24:cf:
2c:d6:c1:69:cc:de:c3:d8:87:45:16:b8:6f:92:01:c8:ed:4c:
95:a0:f7:94:57:5a:f9:a5:cb:d2:d6:bd:78:39:36:f3:47:e2:
40:28:1a:0f:d7:06:76:6f:44:e4:77:76:5e:cb:4b:ca:1c:39:
9b:54:7d:b7
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgIECeYKBzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
MGI5MGE1ZTE1OGJhMDkwOGZkYzgzY2M0MjQzZmU0MGM2ZGFiNDIzMB4XDTIyMDEw
MTA5NTkwM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzIyYTc0MTk4MzA4
OTU4YWU0ODA0MGUxYmY4YjIxZmM3N2NiYWE3ZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK/Z2vf8fR0aaZtN8PZeFISAykHDW/ziTIMfmhpOsQ6mSXiE
MGtlNf4zaQkbzHFoKhTKq98Zzpmx7eZ5O0ZsvOhU/rb35xjAUkCgjIaDb3UNoNjL
Kj0kjQU4sTH5Eb6cvyXV3hwRkn+1mjq3qAmeHOqu/Bv7j1havfAp/XZBTz3KZNDY
Q5fXLU/oSgZUIDMv3MoT4lQl1dA0UBh6FI9sfbDszvENhAUuXCZxyx0hBiSv6Oo4
3eqTGAA8jrfhow4n7Mc3iOksQ7EVUw9fH7C36tR8BimN6YpEZ9SQkF3CAmN2VqBk
4A+UwYfqhMHF4/qChU8vlmNEXMOVoI2LnA0o1dECAwEAAaOCAgowggIGMB0GA1Ud
DgQWBBTCKnQZgwiViuSAQOG/iyH8d8uqfjAfBgNVHSMEGDAWgBRQuQpeFYugkI/c
g8xCQ/5Axtq0IzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1VMa0tYaFdMb0pDUDNJUE1Ra1AtUU1iYXRDTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZGIvNzJkMjI2LWMzYjAtNDFmMy1iNGRiLTgzZmQ3MzgyZmYxMy8x
L3dpcDBHWU1JbFlya2dFRGh2NHNoX0hmTHFuNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZGIv
NzJkMjI2LWMzYjAtNDFmMy1iNGRiLTgzZmQ3MzgyZmYxMy8xL1VMa0tYaFdMb0pD
UDNJUE1Ra1AtUU1iYXRDTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAg
BggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACoO7AAwDQYJKoZIhvcNAQELBQAD
ggEBAGw6+Y78LrLOcv5dwa5anc41A/fF788BxDcUQb7CKasMkvfPvcz/PKIxnXHa
yUIxQqece0iv/tNtaEr7WCecaKWL7DXZbrIxRGSuBOmuzNCR521jvi/J+4DZXMok
6CcdUaO7lUqet1FYp0GV7NTL8PfI7ycIlh5Fw1dgltpxKQKmVUKNH2D0AGRutLc9
jru7S4ByxXpibyaWCUN1AioTDzEFq2ehS/560f3jmfoYaUCZc6dV7IKQxRkEZzWv
/kuB92nawmUkzyzWwWnM3sPYh0UWuG+SAcjtTJWg95RXWvmly9LWvXg5NvNH4kAo
Gg/XBnZvROR3dl7LS8ocOZtUfbc=
-----END CERTIFICATE-----
Generated at Sun Apr 20 13:10:06 2025 by rpki-client