Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/88c5b7-b126-4ed3-9d7a-e5ba4bfa171a/1/uulQ7vEdGhsy6Awn7kfrVQnLiMU.roa
File: uulQ7vEdGhsy6Awn7kfrVQnLiMU.roa (raw, json)
Hash identifier: tZVgJDesulw5XmQQyaxeLBz/Dpnfz7Z3L4uwLGw8CzQ=
Subject key identifier: BA:E9:50:EE:F1:1D:1A:1B:32:E8:0C:27:EE:47:EB:55:09:CB:88:C5
Certificate issuer: /CN=bd974dc8c645ed235145caaa1355ba85f5257634
Certificate serial: 01941F8C6A723CEAD54F7CDA827D2B7E2469
Authority key identifier: BD:97:4D:C8:C6:45:ED:23:51:45:CA:AA:13:55:BA:85:F5:25:76:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vZdNyMZF7SNRRcqqE1W6hfUldjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/88c5b7-b126-4ed3-9d7a-e5ba4bfa171a/1/uulQ7vEdGhsy6Awn7kfrVQnLiMU.roa
Signing time: Wed 01 Jan 2025 01:48:03 +0000
ROA not before: Wed 01 Jan 2025 01:48:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48724
IP address blocks: 2001:67c:2e4c::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:6a:72:3c:ea:d5:4f:7c:da:82:7d:2b:7e:24:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd974dc8c645ed235145caaa1355ba85f5257634
Validity
Not Before: Jan 1 01:48:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bae950eef11d1a1b32e80c27ee47eb5509cb88c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:68:f9:8f:e4:bf:b2:a1:b7:5f:32:d0:a6:ec:
2d:86:b4:c6:27:59:c6:1e:b5:11:34:c2:f3:6d:78:
4b:1a:84:05:f6:83:36:25:bb:4b:5f:ee:54:d7:20:
b3:dc:51:0b:c3:7d:f3:27:ce:e4:ac:62:fd:35:21:
3f:b5:50:2c:69:4f:40:0e:5d:e7:53:40:b8:a0:b2:
46:b5:7b:22:be:9c:56:05:27:d3:15:89:f1:a9:19:
d6:c1:15:70:2e:5d:2d:fa:8a:14:cd:aa:89:06:f7:
f3:28:16:9a:ac:22:49:4a:6b:4a:2d:bf:dc:96:a4:
9f:93:f1:a6:ff:cf:6a:06:e4:fe:f8:8d:9e:36:67:
82:2e:8a:17:65:9c:8c:dd:3a:84:86:5e:2c:4a:2f:
14:45:48:1f:f2:98:8b:20:d4:7b:01:7d:3c:a4:6a:
d1:28:f3:62:8b:75:d6:f6:b3:8b:b0:a5:4c:a7:e9:
d8:4c:e2:44:3c:62:c8:1d:11:d1:33:b7:a5:9e:b3:
6d:e6:c8:7f:00:47:0b:ee:9f:23:a2:eb:7c:14:51:
66:43:93:08:f6:49:0b:25:ef:d6:e5:c7:68:e5:3b:
d2:96:de:93:3f:bc:5b:22:4c:3e:80:02:52:14:4c:
e6:3d:df:80:7c:3c:1a:bb:b5:c0:ed:ee:d1:cb:83:
c1:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:E9:50:EE:F1:1D:1A:1B:32:E8:0C:27:EE:47:EB:55:09:CB:88:C5
X509v3 Authority Key Identifier:
keyid:BD:97:4D:C8:C6:45:ED:23:51:45:CA:AA:13:55:BA:85:F5:25:76:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vZdNyMZF7SNRRcqqE1W6hfUldjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/88c5b7-b126-4ed3-9d7a-e5ba4bfa171a/1/uulQ7vEdGhsy6Awn7kfrVQnLiMU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/88c5b7-b126-4ed3-9d7a-e5ba4bfa171a/1/vZdNyMZF7SNRRcqqE1W6hfUldjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2e4c::/48
Signature Algorithm: sha256WithRSAEncryption
08:5b:eb:f8:8e:f6:80:8e:a8:ca:4b:4f:36:7b:09:66:16:47:
47:07:30:80:5f:84:3a:3a:05:04:29:9d:cf:90:1a:eb:1d:cf:
1c:cc:bf:ea:3e:5c:bc:25:ae:d9:d4:4a:87:64:10:77:30:4e:
d8:04:c3:ba:0b:8a:41:88:ce:14:62:3e:b4:a5:c1:3f:71:b8:
8f:4a:b0:77:76:a2:01:53:9c:00:2c:09:e2:74:cb:45:80:c2:
38:77:0e:e5:bb:a0:13:b8:18:90:ab:be:2d:f0:06:fa:03:8d:
fe:f8:42:89:8d:09:8c:da:88:73:d3:7d:0a:b8:84:3c:4c:81:
5a:64:e5:8e:75:2b:27:af:4c:51:89:8a:9c:79:a6:7f:4c:d1:
fa:6f:7c:61:c3:93:6d:a0:b7:da:db:a8:ca:d9:c9:ee:65:6b:
bb:e4:9a:a7:cb:71:9b:ab:d3:e3:76:dc:fa:cc:46:42:78:c7:
83:62:5d:a1:0c:ac:d1:68:b3:5d:6e:61:fe:0e:08:3b:b4:00:
d1:ba:90:47:94:ae:fa:ca:1a:dc:be:1c:88:b5:64:b0:a1:c9:
36:a3:78:58:1f:b1:4e:53:b8:28:9c:8c:c6:a3:e7:fb:65:c9:
ae:a9:0b:25:2e:1c:dc:b9:9d:ea:7a:d9:eb:04:17:ea:ba:f0:
8d:f1:b6:cc
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAZQfjGpyPOrVT3zagn0rfiRpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJkOTc0ZGM4YzY0NWVkMjM1MTQ1Y2FhYTEzNTViYTg1ZjUy
NTc2MzQwHhcNMjUwMTAxMDE0ODAzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYWU5NTBlZWYxMWQxYTFiMzJlODBjMjdlZTQ3ZWI1NTA5Y2I4OGM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn2j5j+S/sqG3XzLQpuwthrTGJ1nG
HrURNMLzbXhLGoQF9oM2JbtLX+5U1yCz3FELw33zJ87krGL9NSE/tVAsaU9ADl3n
U0C4oLJGtXsivpxWBSfTFYnxqRnWwRVwLl0t+ooUzaqJBvfzKBaarCJJSmtKLb/c
lqSfk/Gm/89qBuT++I2eNmeCLooXZZyM3TqEhl4sSi8URUgf8piLINR7AX08pGrR
KPNii3XW9rOLsKVMp+nYTOJEPGLIHRHRM7elnrNt5sh/AEcL7p8jout8FFFmQ5MI
9kkLJe/W5cdo5TvSlt6TP7xbIkw+gAJSFEzmPd+AfDwau7XA7e7Ry4PBiwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFLrpUO7xHRobMugMJ+5H61UJy4jFMB8GA1UdIwQY
MBaAFL2XTcjGRe0jUUXKqhNVuoX1JXY0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdlpkTnlNWkY3U05SUmNxcUUxVzZoZlVsZGpRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZi84OGM1YjctYjEyNi00ZWQzLTlkN2Et
ZTViYTRiZmExNzFhLzEvdXVsUTd2RWRHaHN5NkF3bjdrZnJWUW5MaU1VLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZi84OGM1YjctYjEyNi00ZWQzLTlkN2EtZTViYTRiZmExNzFh
LzEvdlpkTnlNWkY3U05SUmNxcUUxVzZoZlVsZGpRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfC5M
MA0GCSqGSIb3DQEBCwUAA4IBAQAIW+v4jvaAjqjKS082ewlmFkdHBzCAX4Q6OgUE
KZ3PkBrrHc8czL/qPly8Ja7Z1EqHZBB3ME7YBMO6C4pBiM4UYj60pcE/cbiPSrB3
dqIBU5wALAnidMtFgMI4dw7lu6ATuBiQq74t8Ab6A43++EKJjQmM2ohz030KuIQ8
TIFaZOWOdSsnr0xRiYqceaZ/TNH6b3xhw5NtoLfa26jK2cnuZWu75Jqny3Gbq9Pj
dtz6zEZCeMeDYl2hDKzRaLNdbmH+Dgg7tADRupBHlK76yhrcvhyItWSwock2o3hY
H7FOU7gonIzGo+f7ZcmuqQslLhzcuZ3qetnrBBfquvCN8bbM
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:52 2025 by rpki-client on console.sobornost.net