Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/1d09e6-ae7b-434c-99ec-738c7492f768/1/vnQYA6POl1a8tK2ZzQU1CNh2rSU.roa
File: vnQYA6POl1a8tK2ZzQU1CNh2rSU.roa (raw, json)
Hash identifier: cwo0eDB9nxSSyKe/qdMpdoKv9t3e96TKN+bq+LM4mpY=
Subject key identifier: BE:74:18:03:A3:CE:97:56:BC:B4:AD:99:CD:05:35:08:D8:76:AD:25
Certificate issuer: /CN=f5314c1f9e1193c2025cb672b523573978d254d9
Certificate serial: 019427B37AF479541837D73310264114024D
Authority key identifier: F5:31:4C:1F:9E:11:93:C2:02:5C:B6:72:B5:23:57:39:78:D2:54:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9TFMH54Rk8ICXLZytSNXOXjSVNk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/1d09e6-ae7b-434c-99ec-738c7492f768/1/vnQYA6POl1a8tK2ZzQU1CNh2rSU.roa
Signing time: Thu 02 Jan 2025 15:47:41 +0000
ROA not before: Thu 02 Jan 2025 15:47:41 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20626
IP address blocks: 2001:67c:2524::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b3:7a:f4:79:54:18:37:d7:33:10:26:41:14:02:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5314c1f9e1193c2025cb672b523573978d254d9
Validity
Not Before: Jan 2 15:47:41 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=be741803a3ce9756bcb4ad99cd053508d876ad25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:95:c2:a3:a0:02:3e:14:5c:71:9e:f8:15:f7:
a9:d1:eb:f8:d4:61:60:82:f7:bd:d4:f7:c1:62:43:
e4:58:9f:ee:9d:21:bf:a9:e1:7d:cc:b2:ec:76:ad:
f3:6e:47:89:f3:86:bd:29:41:e6:2b:c4:5e:df:42:
25:a3:19:8e:fd:56:b2:52:6f:87:17:bc:0b:9d:02:
8c:cc:10:0f:41:33:44:1e:9b:3d:bd:33:67:a0:b2:
84:d7:d4:72:6f:00:ec:08:5d:df:1c:1d:d6:1b:05:
88:f3:db:ba:9d:17:4b:a0:27:4b:61:8a:9c:2a:bc:
a3:ad:9a:62:4e:05:e2:4d:03:96:2e:65:75:a6:ab:
f7:34:1b:c7:4e:8c:61:35:60:55:a9:1e:d0:5b:96:
01:c6:80:b0:3e:a6:d1:dd:0a:8e:de:28:02:9c:e9:
b6:9b:cc:74:ad:02:7d:2f:ce:1e:21:f7:4a:e4:32:
19:77:82:e0:d2:9d:3b:19:13:0d:72:66:8f:40:91:
f5:50:22:5a:38:99:ad:3e:c3:c7:98:f8:6c:c2:83:
25:e9:e3:88:8d:f4:8d:b7:65:62:d9:f2:c7:ae:27:
26:85:2b:72:5a:2e:83:9a:c4:ab:3e:ac:12:23:bc:
54:8d:4d:f9:0b:61:12:9a:e8:51:a0:b3:60:50:c7:
fd:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:74:18:03:A3:CE:97:56:BC:B4:AD:99:CD:05:35:08:D8:76:AD:25
X509v3 Authority Key Identifier:
keyid:F5:31:4C:1F:9E:11:93:C2:02:5C:B6:72:B5:23:57:39:78:D2:54:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9TFMH54Rk8ICXLZytSNXOXjSVNk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/1d09e6-ae7b-434c-99ec-738c7492f768/1/vnQYA6POl1a8tK2ZzQU1CNh2rSU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/1d09e6-ae7b-434c-99ec-738c7492f768/1/9TFMH54Rk8ICXLZytSNXOXjSVNk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2524::/48
Signature Algorithm: sha256WithRSAEncryption
97:f3:17:44:45:6b:ee:31:af:96:b8:ff:b3:cb:c5:12:f4:41:
34:ad:cf:f4:6a:24:19:4e:a1:88:e1:e8:c8:a1:e7:51:b0:c9:
e6:16:2d:0c:e8:d8:f3:6a:b4:a7:df:3e:6c:d2:42:67:82:b3:
b8:f7:12:2a:c6:96:0e:14:29:d0:1a:4d:c9:1f:4e:0a:7b:98:
42:46:93:70:03:e4:d7:83:67:b9:08:37:15:ad:8c:00:24:05:
c3:02:af:72:3a:59:3c:e9:ac:34:2d:15:9d:31:b8:e0:92:d2:
5b:28:61:07:5f:ed:d8:a0:dc:c1:67:04:5e:09:a4:16:78:19:
ea:a8:ab:80:9c:37:bf:f9:d1:f9:e8:78:af:00:8e:b8:27:d9:
9b:57:56:09:09:1b:90:cb:bb:84:87:c3:14:87:c4:cf:b8:c7:
32:7a:55:87:47:6f:ae:f6:b6:a7:e3:e2:6b:e4:34:2a:6b:f9:
01:79:f9:46:ec:da:85:29:8a:93:cb:5b:34:93:47:36:d6:7f:
0f:21:8d:89:ad:4c:0b:62:db:95:d9:4a:2b:f2:dc:1f:98:f2:
64:a6:d8:1f:d8:89:5d:ca:25:f1:aa:4f:41:45:4e:5c:37:e0:
eb:4d:92:e3:a2:bc:70:45:74:0f:9a:2f:cd:11:59:6e:14:f2:
04:94:12:cd
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAZQns3r0eVQYN9czECZBFAJNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY1MzE0YzFmOWUxMTkzYzIwMjVjYjY3MmI1MjM1NzM5Nzhk
MjU0ZDkwHhcNMjUwMTAyMTU0NzQxWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZTc0MTgwM2EzY2U5NzU2YmNiNGFkOTljZDA1MzUwOGQ4NzZhZDI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj5XCo6ACPhRccZ74Ffep0ev41GFg
gve91PfBYkPkWJ/unSG/qeF9zLLsdq3zbkeJ84a9KUHmK8Re30IloxmO/VayUm+H
F7wLnQKMzBAPQTNEHps9vTNnoLKE19RybwDsCF3fHB3WGwWI89u6nRdLoCdLYYqc
KryjrZpiTgXiTQOWLmV1pqv3NBvHToxhNWBVqR7QW5YBxoCwPqbR3QqO3igCnOm2
m8x0rQJ9L84eIfdK5DIZd4Lg0p07GRMNcmaPQJH1UCJaOJmtPsPHmPhswoMl6eOI
jfSNt2Vi2fLHricmhStyWi6DmsSrPqwSI7xUjU35C2ESmuhRoLNgUMf9FwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFL50GAOjzpdWvLStmc0FNQjYdq0lMB8GA1UdIwQY
MBaAFPUxTB+eEZPCAly2crUjVzl40lTZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOVRGTUg1NFJrOElDWExaeXRTTlhPWGpTVk5rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi8xZDA5ZTYtYWU3Yi00MzRjLTk5ZWMt
NzM4Yzc0OTJmNzY4LzEvdm5RWUE2UE9sMWE4dEsyWnpRVTFDTmgyclNVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMi8xZDA5ZTYtYWU3Yi00MzRjLTk5ZWMtNzM4Yzc0OTJmNzY4
LzEvOVRGTUg1NFJrOElDWExaeXRTTlhPWGpTVk5rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfCUk
MA0GCSqGSIb3DQEBCwUAA4IBAQCX8xdERWvuMa+WuP+zy8US9EE0rc/0aiQZTqGI
4ejIoedRsMnmFi0M6NjzarSn3z5s0kJngrO49xIqxpYOFCnQGk3JH04Ke5hCRpNw
A+TXg2e5CDcVrYwAJAXDAq9yOlk86aw0LRWdMbjgktJbKGEHX+3YoNzBZwReCaQW
eBnqqKuAnDe/+dH56HivAI64J9mbV1YJCRuQy7uEh8MUh8TPuMcyelWHR2+u9ran
4+Jr5DQqa/kBeflG7NqFKYqTy1s0k0c21n8PIY2JrUwLYtuV2Uor8twfmPJkptgf
2IldyiXxqk9BRU5cN+DrTZLjorxwRXQPmi/NEVluFPIElBLN
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:19 2025 by rpki-client on console.sobornost.net