Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/8990c1-1d0f-4541-846e-c9bdce9c1a49/1/b1zoobQuYRirw6zOe3ZiWtlB_Fs.roa
File: b1zoobQuYRirw6zOe3ZiWtlB_Fs.roa (raw, json)
Hash identifier: yoTkr3Ydr4cxPjwyqyjdE6QfCIuZ05Im31loM47LoN8=
Subject key identifier: 6F:5C:E8:A1:B4:2E:61:18:AB:C3:AC:CE:7B:76:62:5A:D9:41:FC:5B
Certificate issuer: /CN=66dac8a8f314ee879a6aa843b67ea47ab1e75def
Certificate serial: 0194258EFFD0A439210B56EDD536AF0C8E1E
Authority key identifier: 66:DA:C8:A8:F3:14:EE:87:9A:6A:A8:43:B6:7E:A4:7A:B1:E7:5D:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZtrIqPMU7oeaaqhDtn6kerHnXe8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/8990c1-1d0f-4541-846e-c9bdce9c1a49/1/b1zoobQuYRirw6zOe3ZiWtlB_Fs.roa
Signing time: Thu 02 Jan 2025 05:48:36 +0000
ROA not before: Thu 02 Jan 2025 05:48:36 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 52016
IP address blocks: 2001:67c:29c8::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8e:ff:d0:a4:39:21:0b:56:ed:d5:36:af:0c:8e:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66dac8a8f314ee879a6aa843b67ea47ab1e75def
Validity
Not Before: Jan 2 05:48:36 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6f5ce8a1b42e6118abc3acce7b76625ad941fc5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:86:f8:a5:4e:6c:01:2f:c4:a4:63:15:10:ea:
be:c9:93:31:c5:1a:24:ce:d0:72:93:99:58:62:23:
cc:c7:b2:9a:dd:27:14:ce:ef:4e:ba:22:a9:67:87:
95:ee:37:2e:25:f6:b1:1a:af:f3:5a:1f:82:32:90:
8e:98:9e:a5:b1:7a:13:59:d4:54:7b:0f:32:a1:94:
d6:31:ce:d1:dc:b2:dd:e5:9f:76:ca:f5:64:6b:94:
93:4d:2e:b3:3d:78:1f:0a:d1:b3:c5:fb:4b:64:c2:
98:43:2c:cc:88:c0:a3:f7:48:7e:3d:1c:67:ca:5b:
70:ca:ec:7f:ee:ae:40:3c:b9:53:e9:55:3c:c4:0b:
5f:aa:36:3b:9b:63:fa:d8:30:ac:11:7c:a6:86:07:
71:33:5c:76:a8:ce:af:16:f6:8d:c2:37:6b:20:40:
25:70:02:0e:70:ee:31:22:ea:bf:c9:4d:71:d7:62:
19:33:8c:e0:f3:2b:e7:e9:4d:b6:9c:70:52:26:15:
fd:fb:4a:95:40:51:e3:3a:fb:7a:1d:e5:aa:ea:24:
d3:6a:f0:26:d9:0b:d2:61:df:1f:ac:5f:cf:b4:34:
1b:9e:fa:5e:89:5a:85:47:04:de:65:44:ca:87:03:
35:f9:d9:11:a3:b9:25:86:61:23:8c:7b:22:94:bd:
35:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:5C:E8:A1:B4:2E:61:18:AB:C3:AC:CE:7B:76:62:5A:D9:41:FC:5B
X509v3 Authority Key Identifier:
keyid:66:DA:C8:A8:F3:14:EE:87:9A:6A:A8:43:B6:7E:A4:7A:B1:E7:5D:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZtrIqPMU7oeaaqhDtn6kerHnXe8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/8990c1-1d0f-4541-846e-c9bdce9c1a49/1/b1zoobQuYRirw6zOe3ZiWtlB_Fs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/8990c1-1d0f-4541-846e-c9bdce9c1a49/1/ZtrIqPMU7oeaaqhDtn6kerHnXe8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:29c8::/48
Signature Algorithm: sha256WithRSAEncryption
93:e8:9f:da:2a:db:13:ab:f4:f5:fa:9d:40:2d:58:59:35:37:
95:16:66:e4:8a:5c:fc:a0:aa:05:ab:b9:e5:cc:ae:0a:11:96:
44:be:82:e3:36:05:3a:c0:fc:ff:bf:9c:31:5c:30:88:01:dd:
b9:d6:94:9c:2a:9b:04:03:06:af:26:07:19:74:da:18:a3:0a:
9f:7d:88:ae:ef:ec:3f:9e:c1:8f:b7:5d:ba:e6:9e:0a:42:2d:
0d:5d:a1:ce:2f:45:bb:e4:12:5f:5b:3f:a3:2b:e2:9c:82:31:
bf:a1:88:8b:f7:ab:97:9a:8c:eb:02:52:4c:10:5e:8a:40:61:
f7:38:4a:c3:61:28:dc:d4:2e:59:65:44:e1:86:f4:ad:b0:02:
c4:f9:24:0c:d0:e7:49:bb:7a:23:e1:53:68:ec:23:7c:37:db:
98:69:ff:d1:c7:63:2f:64:82:4f:0e:62:9c:d4:b2:11:f4:be:
8a:f9:e3:e6:c8:43:93:c0:e5:b2:e9:76:94:fa:39:f2:11:c5:
bf:f4:77:db:b7:ae:05:80:06:54:b4:b4:96:19:b9:8b:05:67:
c3:bf:3a:d7:ad:f4:d7:6d:b3:39:1c:26:dd:c4:bf:5c:21:55:
88:aa:50:9b:cb:16:23:1a:0f:d1:78:42:a4:45:c8:f9:69:ec:
33:1d:b2:a5
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAZQljv/QpDkhC1bt1TavDI4eMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY2ZGFjOGE4ZjMxNGVlODc5YTZhYTg0M2I2N2VhNDdhYjFl
NzVkZWYwHhcNMjUwMTAyMDU0ODM2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZjVjZThhMWI0MmU2MTE4YWJjM2FjY2U3Yjc2NjI1YWQ5NDFmYzViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyob4pU5sAS/EpGMVEOq+yZMxxRok
ztByk5lYYiPMx7Ka3ScUzu9OuiKpZ4eV7jcuJfaxGq/zWh+CMpCOmJ6lsXoTWdRU
ew8yoZTWMc7R3LLd5Z92yvVka5STTS6zPXgfCtGzxftLZMKYQyzMiMCj90h+PRxn
yltwyux/7q5APLlT6VU8xAtfqjY7m2P62DCsEXymhgdxM1x2qM6vFvaNwjdrIEAl
cAIOcO4xIuq/yU1x12IZM4zg8yvn6U22nHBSJhX9+0qVQFHjOvt6HeWq6iTTavAm
2QvSYd8frF/PtDQbnvpeiVqFRwTeZUTKhwM1+dkRo7klhmEjjHsilL01dQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFG9c6KG0LmEYq8Osznt2YlrZQfxbMB8GA1UdIwQY
MBaAFGbayKjzFO6HmmqoQ7Z+pHqx513vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWnRySXFQTVU3b2VhYXFoRHRuNmtlckhuWGU4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC84OTkwYzEtMWQwZi00NTQxLTg0NmUt
YzliZGNlOWMxYTQ5LzEvYjF6b29iUXVZUmlydzZ6T2UzWmlXdGxCX0ZzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC84OTkwYzEtMWQwZi00NTQxLTg0NmUtYzliZGNlOWMxYTQ5
LzEvWnRySXFQTVU3b2VhYXFoRHRuNmtlckhuWGU4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfCnI
MA0GCSqGSIb3DQEBCwUAA4IBAQCT6J/aKtsTq/T1+p1ALVhZNTeVFmbkilz8oKoF
q7nlzK4KEZZEvoLjNgU6wPz/v5wxXDCIAd251pScKpsEAwavJgcZdNoYowqffYiu
7+w/nsGPt1265p4KQi0NXaHOL0W75BJfWz+jK+KcgjG/oYiL96uXmozrAlJMEF6K
QGH3OErDYSjc1C5ZZUThhvStsALE+SQM0OdJu3oj4VNo7CN8N9uYaf/Rx2MvZIJP
DmKc1LIR9L6K+ePmyEOTwOWy6XaU+jnyEcW/9Hfbt64FgAZUtLSWGbmLBWfDvzrX
rfTXbbM5HCbdxL9cIVWIqlCbyxYjGg/ReEKkRcj5aewzHbKl
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:04 2025 by rpki-client on console.sobornost.net