Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/DyDIWVtacMTPk5N6NQ-T5Rq-3VI.roa
File: DyDIWVtacMTPk5N6NQ-T5Rq-3VI.roa (raw, json)
Hash identifier: kv7FV9B5WN+7uUrlIkLEe/LvLpi9ljxRQNkubN5tLH8=
Subject key identifier: 0F:20:C8:59:5B:5A:70:C4:CF:93:93:7A:35:0F:93:E5:1A:BE:DD:52
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0194A867535D719605C02A885D183A18AC95
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/DyDIWVtacMTPk5N6NQ-T5Rq-3VI.roa
Signing time: Mon 27 Jan 2025 15:35:31 +0000
ROA not before: Mon 27 Jan 2025 15:35:31 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213517
IP address blocks: 2a0c:b641:230::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:a8:67:53:5d:71:96:05:c0:2a:88:5d:18:3a:18:ac:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 27 15:35:31 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0f20c8595b5a70c4cf93937a350f93e51abedd52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:90:7b:ae:0b:ef:ae:b6:53:bb:9b:94:ab:ca:
ad:6a:43:54:42:2a:63:a7:5d:e4:b2:2e:45:b2:6a:
a7:d0:96:ff:74:04:78:8e:1c:5b:eb:a3:2f:c1:ec:
f6:58:45:5b:96:0f:53:41:d7:d4:dd:7f:0d:13:a9:
19:c3:ed:21:65:f3:bc:42:0e:b2:9b:69:86:e7:23:
0b:2f:55:0a:a5:50:ab:9e:f8:5c:d1:bf:4e:8a:9d:
1c:d8:ea:1f:60:d5:99:d5:01:1d:30:68:97:33:c9:
df:31:53:40:0a:a5:ef:5a:d3:c1:30:17:32:b8:14:
8d:c8:4c:df:b7:ab:4b:cb:98:b7:8a:bb:3e:87:7f:
4d:b1:3f:f6:27:94:b8:66:56:36:03:a8:af:7c:a5:
e6:b7:d9:d9:16:06:3f:ec:48:2c:ce:89:65:41:79:
bc:23:27:e1:02:b1:fe:70:f0:44:43:fb:a4:3b:95:
22:7d:a3:7f:6a:93:e0:51:80:77:03:95:73:ca:e2:
16:8c:84:46:6d:a1:1a:b5:11:c8:e4:8d:ce:07:b8:
14:d3:99:08:92:64:45:88:a7:04:89:9a:e3:0e:db:
e7:dd:2f:b4:07:e8:52:47:de:b8:e0:1c:61:02:e6:
55:46:a8:1b:79:f0:23:31:27:96:18:15:d2:d5:25:
06:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:20:C8:59:5B:5A:70:C4:CF:93:93:7A:35:0F:93:E5:1A:BE:DD:52
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/DyDIWVtacMTPk5N6NQ-T5Rq-3VI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:230::/44
Signature Algorithm: sha256WithRSAEncryption
16:0e:a3:d0:43:0d:87:57:90:03:74:77:dc:81:98:11:18:04:
02:de:86:de:c4:2f:b3:86:20:1b:e3:69:4d:9d:29:64:2f:37:
68:c8:c3:2b:f6:9c:81:84:53:1d:85:f7:66:f7:57:99:d3:17:
d3:29:24:2a:cb:a4:93:ed:86:20:d0:c4:3e:28:17:77:ad:b4:
ca:77:5e:ec:e1:fe:b0:f4:5c:19:d1:d0:22:17:1e:d4:5d:d4:
6e:c1:18:1f:41:44:b5:67:fc:99:57:b7:68:29:5b:d1:3a:75:
c5:f9:bc:85:f0:27:4d:ef:24:50:5f:67:8f:6e:d7:b0:f4:c9:
ec:69:eb:c7:b1:8b:83:9e:fa:0f:b3:a3:73:2c:d5:8b:64:d1:
17:11:e6:8d:b9:40:27:19:82:ea:2b:c2:76:ba:39:bf:6e:e1:
55:d1:01:76:41:ac:2d:af:20:2a:eb:7d:fc:40:f3:38:ed:60:
05:7d:88:00:fb:ac:1e:5f:15:7a:41:ec:1a:ce:3e:d4:4d:a6:
4d:05:dd:11:a0:f9:6e:63:73:03:7d:ef:48:09:af:52:91:0f:
99:f8:49:d0:13:e3:28:40:ba:2c:e5:5c:cd:6c:60:b5:ae:41:
49:1c:e4:2f:34:35:35:54:3f:10:dc:98:85:d0:46:6d:4e:66:
02:82:36:4c
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAZSoZ1NdcZYFwCqIXRg6GKyVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1OTc2ODAxMzYzZDM3NTc4NjE1MmU0ZDA2MWU3NWM4YmVi
MzUwNTgwHhcNMjUwMTI3MTUzNTMxWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZjIwYzg1OTViNWE3MGM0Y2Y5MzkzN2EzNTBmOTNlNTFhYmVkZDUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5JB7rgvvrrZTu5uUq8qtakNUQipj
p13ksi5Fsmqn0Jb/dAR4jhxb66Mvwez2WEVblg9TQdfU3X8NE6kZw+0hZfO8Qg6y
m2mG5yMLL1UKpVCrnvhc0b9Oip0c2OofYNWZ1QEdMGiXM8nfMVNACqXvWtPBMBcy
uBSNyEzft6tLy5i3irs+h39NsT/2J5S4ZlY2A6ivfKXmt9nZFgY/7EgszollQXm8
IyfhArH+cPBEQ/ukO5UifaN/apPgUYB3A5VzyuIWjIRGbaEatRHI5I3OB7gU05kI
kmRFiKcEiZrjDtvn3S+0B+hSR9644BxhAuZVRqgbefAjMSeWGBXS1SUGuwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFA8gyFlbWnDEz5OTejUPk+Uavt1SMB8GA1UdIwQY
MBaAFAWXaAE2PTdXhhUuTQYedci+s1BYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2Et
NWVjOGM4ZWQ2MGZkLzEvRHlESVdWdGFjTVRQazVONk5RLVQ1UnEtM1ZJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2EtNWVjOGM4ZWQ2MGZk
LzEvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgy2QQIw
MA0GCSqGSIb3DQEBCwUAA4IBAQAWDqPQQw2HV5ADdHfcgZgRGAQC3obexC+zhiAb
42lNnSlkLzdoyMMr9pyBhFMdhfdm91eZ0xfTKSQqy6ST7YYg0MQ+KBd3rbTKd17s
4f6w9FwZ0dAiFx7UXdRuwRgfQUS1Z/yZV7doKVvROnXF+byF8CdN7yRQX2ePbtew
9MnsaevHsYuDnvoPs6NzLNWLZNEXEeaNuUAnGYLqK8J2ujm/buFV0QF2QawtryAq
6338QPM47WAFfYgA+6weXxV6Qewazj7UTaZNBd0RoPluY3MDfe9ICa9SkQ+Z+EnQ
E+MoQLos5VzNbGC1rkFJHOQvNDU1VD8Q3JiF0EZtTmYCgjZM
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:23 2025 by rpki-client on console.sobornost.net