Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/34011d-01bf-48a1-a8c3-c9fc5f452995/1/mTtxU7O_lRz_UT2tjl3cUWas7pA.roa
File: mTtxU7O_lRz_UT2tjl3cUWas7pA.roa (raw, json)
Hash identifier: lHDy75xFNayt8SROCAEJF8vDi//tAi35Yjt2Fy8OX04=
Subject key identifier: 99:3B:71:53:B3:BF:95:1C:FF:51:3D:AD:8E:5D:DC:51:66:AC:EE:90
Certificate issuer: /CN=9df4e80b4cad4e50b788edf16976712deeff6c0d
Certificate serial: 019427B567B826FA8DAC34E42059C788A3BC
Authority key identifier: 9D:F4:E8:0B:4C:AD:4E:50:B7:88:ED:F1:69:76:71:2D:EE:FF:6C:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nfToC0ytTlC3iO3xaXZxLe7_bA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/34011d-01bf-48a1-a8c3-c9fc5f452995/1/mTtxU7O_lRz_UT2tjl3cUWas7pA.roa
Signing time: Thu 02 Jan 2025 15:49:47 +0000
ROA not before: Thu 02 Jan 2025 15:49:47 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206321
IP address blocks: 2001:67c:2d2c::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:67:b8:26:fa:8d:ac:34:e4:20:59:c7:88:a3:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9df4e80b4cad4e50b788edf16976712deeff6c0d
Validity
Not Before: Jan 2 15:49:47 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=993b7153b3bf951cff513dad8e5ddc5166acee90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:eb:61:e7:4e:c4:5e:5c:80:a8:19:cc:94:b7:
7d:4f:21:b2:22:d7:b7:c0:2d:a6:e0:c8:52:cb:b9:
87:34:de:a0:bb:21:ac:40:a3:cb:12:c6:44:92:8b:
44:3e:e9:d0:cd:82:46:ee:2b:29:7e:ec:93:6d:22:
66:22:be:cb:30:7d:04:1d:79:24:78:f5:4e:1b:aa:
ce:e4:00:6a:e4:49:74:d4:23:84:7c:8e:f3:25:31:
df:c9:f5:a2:0c:9e:e6:00:4f:e4:c1:e3:a0:da:09:
a5:70:db:5f:1e:2b:ab:86:30:3a:be:71:ee:87:34:
d1:b3:03:5f:5e:b2:7e:0c:c4:5a:07:c3:2e:f9:64:
1c:09:16:c3:01:f5:6d:59:e5:f8:20:3a:83:c4:07:
09:36:4e:5a:85:6e:4b:b7:76:98:ad:fb:7b:30:43:
de:fa:ab:fb:05:49:e8:9f:96:01:d2:57:39:03:0f:
f9:a3:60:84:07:51:5b:eb:8c:fd:8e:6a:7b:0a:f9:
86:ad:8b:f5:40:76:d9:54:75:cd:e2:17:77:84:52:
8b:6c:ab:28:6c:05:7f:6c:a1:4a:99:d5:f6:44:ea:
ad:01:b0:4f:55:3f:05:8b:5e:4f:88:b9:5d:ec:9d:
08:2e:50:b0:1a:f1:78:c9:18:cb:1f:8d:03:c2:18:
e5:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:3B:71:53:B3:BF:95:1C:FF:51:3D:AD:8E:5D:DC:51:66:AC:EE:90
X509v3 Authority Key Identifier:
keyid:9D:F4:E8:0B:4C:AD:4E:50:B7:88:ED:F1:69:76:71:2D:EE:FF:6C:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nfToC0ytTlC3iO3xaXZxLe7_bA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/34011d-01bf-48a1-a8c3-c9fc5f452995/1/mTtxU7O_lRz_UT2tjl3cUWas7pA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/34011d-01bf-48a1-a8c3-c9fc5f452995/1/nfToC0ytTlC3iO3xaXZxLe7_bA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2d2c::/48
Signature Algorithm: sha256WithRSAEncryption
3b:42:cf:08:bf:7f:c5:e8:2b:8e:e4:ed:c8:00:c3:53:c4:ce:
b3:3f:81:de:b9:86:96:2f:ae:af:f7:cf:27:ac:f9:2e:43:4c:
e6:d7:a4:3e:3c:c7:50:2a:e2:f3:a1:a5:81:2e:e5:6b:df:3b:
f1:8c:fa:a7:49:3b:fa:a9:ec:e2:b9:fc:0f:3f:fe:a0:ae:66:
5c:48:5b:32:e8:85:b9:d8:4f:43:2a:e2:d5:85:c8:c4:dd:de:
90:ab:f9:49:35:28:ef:2b:46:bd:28:8e:31:f0:bf:42:75:01:
d9:9d:85:51:f5:92:37:e6:33:51:6c:63:3e:33:a2:bf:af:c5:
dd:2e:ba:13:bb:74:2d:b8:30:16:32:8a:65:b0:50:d1:74:cf:
9f:68:1e:a1:81:b1:b1:19:07:ff:4d:75:58:34:5d:9c:f2:17:
73:a5:48:4a:54:cf:88:92:99:36:46:47:d0:35:78:78:6a:9f:
36:db:dd:7e:ac:f4:f4:8b:64:54:39:fa:ce:65:8a:1a:de:18:
74:61:39:78:08:16:bc:88:99:12:74:dd:9a:16:3c:1e:45:09:
25:a4:b7:76:be:eb:b6:30:25:cb:a4:b0:3d:e3:f0:66:02:df:
11:af:28:54:12:2a:60:ea:46:87:6e:be:b8:82:f3:66:cd:d1:
e6:0e:13:d8
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAZQntWe4JvqNrDTkIFnHiKO8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlkZjRlODBiNGNhZDRlNTBiNzg4ZWRmMTY5NzY3MTJkZWVm
ZjZjMGQwHhcNMjUwMTAyMTU0OTQ3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5OTNiNzE1M2IzYmY5NTFjZmY1MTNkYWQ4ZTVkZGM1MTY2YWNlZTkwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAquth507EXlyAqBnMlLd9TyGyIte3
wC2m4MhSy7mHNN6guyGsQKPLEsZEkotEPunQzYJG7ispfuyTbSJmIr7LMH0EHXkk
ePVOG6rO5ABq5El01COEfI7zJTHfyfWiDJ7mAE/kweOg2gmlcNtfHiurhjA6vnHu
hzTRswNfXrJ+DMRaB8Mu+WQcCRbDAfVtWeX4IDqDxAcJNk5ahW5Lt3aYrft7MEPe
+qv7BUnon5YB0lc5Aw/5o2CEB1Fb64z9jmp7CvmGrYv1QHbZVHXN4hd3hFKLbKso
bAV/bKFKmdX2ROqtAbBPVT8Fi15PiLld7J0ILlCwGvF4yRjLH40DwhjlCQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFJk7cVOzv5Uc/1E9rY5d3FFmrO6QMB8GA1UdIwQY
MBaAFJ306AtMrU5Qt4jt8Wl2cS3u/2wNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbmZUb0MweXRUbEMzaU8zeGFYWnhMZTdfYkEwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MC8zNDAxMWQtMDFiZi00OGExLWE4YzMt
YzlmYzVmNDUyOTk1LzEvbVR0eFU3T19sUnpfVVQydGpsM2NVV2FzN3BBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MC8zNDAxMWQtMDFiZi00OGExLWE4YzMtYzlmYzVmNDUyOTk1
LzEvbmZUb0MweXRUbEMzaU8zeGFYWnhMZTdfYkEwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfC0s
MA0GCSqGSIb3DQEBCwUAA4IBAQA7Qs8Iv3/F6CuO5O3IAMNTxM6zP4HeuYaWL66v
988nrPkuQ0zm16Q+PMdQKuLzoaWBLuVr3zvxjPqnSTv6qeziufwPP/6grmZcSFsy
6IW52E9DKuLVhcjE3d6Qq/lJNSjvK0a9KI4x8L9CdQHZnYVR9ZI35jNRbGM+M6K/
r8XdLroTu3QtuDAWMoplsFDRdM+faB6hgbGxGQf/TXVYNF2c8hdzpUhKVM+Ikpk2
RkfQNXh4ap82291+rPT0i2RUOfrOZYoa3hh0YTl4CBa8iJkSdN2aFjweRQklpLd2
vuu2MCXLpLA94/BmAt8RryhUEipg6kaHbr64gvNmzdHmDhPY
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:08 2025 by rpki-client on console.sobornost.net