Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/c2788f-8c8c-47bb-b922-aa6ed4dafb3b/1/w3q1wrUy3n2NgVQVYrYOx0D0Low.roa
File: w3q1wrUy3n2NgVQVYrYOx0D0Low.roa (raw, json)
Hash identifier: +dMHTvR4ZE8N0MS6osIM+G5u4qHC04WNVeq5GmLIS2A=
Subject key identifier: C3:7A:B5:C2:B5:32:DE:7D:8D:81:54:15:62:B6:0E:C7:40:F4:2E:8C
Certificate issuer: /CN=12be29c956894c49c6d4be0ed98882b90d1bc77f
Certificate serial: 019426D98EE24C6C964653FE378CDFB76B18
Authority key identifier: 12:BE:29:C9:56:89:4C:49:C6:D4:BE:0E:D9:88:82:B9:0D:1B:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Er4pyVaJTEnG1L4O2YiCuQ0bx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/c2788f-8c8c-47bb-b922-aa6ed4dafb3b/1/w3q1wrUy3n2NgVQVYrYOx0D0Low.roa
Signing time: Thu 02 Jan 2025 11:49:39 +0000
ROA not before: Thu 02 Jan 2025 11:49:39 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214052
IP address blocks: 2a14:6781:1400::/38 maxlen: 38
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:8e:e2:4c:6c:96:46:53:fe:37:8c:df:b7:6b:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12be29c956894c49c6d4be0ed98882b90d1bc77f
Validity
Not Before: Jan 2 11:49:39 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c37ab5c2b532de7d8d81541562b60ec740f42e8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:a6:c2:7c:63:22:ab:df:c4:81:53:1d:3b:6c:
cf:1b:25:98:01:8e:83:59:13:ee:93:39:9d:9f:8c:
6c:2d:08:47:d4:80:aa:f9:49:10:16:92:b5:ec:65:
5a:10:f5:f8:bc:d6:86:28:59:f6:93:29:8a:ec:5b:
c7:4c:fc:56:33:38:d3:bc:b5:e8:09:93:b1:09:f8:
5d:bf:76:43:48:a6:36:1d:a4:bb:88:f1:60:26:7a:
71:59:57:87:72:5a:10:62:a4:f6:0e:c7:bc:84:c5:
94:8d:0d:f9:b7:55:e3:3a:78:89:c2:41:c6:23:48:
a6:d6:85:87:4e:cf:e7:3b:ea:e9:cb:d1:6d:dc:93:
af:0a:03:50:d9:12:97:e5:1a:93:0b:0d:1c:be:dd:
83:5b:10:05:46:30:2c:5e:8e:87:e2:d7:d4:29:d0:
c2:ee:d5:f8:36:90:68:93:6e:7b:67:6a:08:79:71:
73:18:75:a0:df:08:54:53:a3:e2:03:58:8a:d5:77:
6f:8b:92:75:bb:09:5c:e6:a2:df:9b:f2:99:af:c2:
35:f3:f8:15:11:db:75:35:1b:f6:de:50:b1:5b:7b:
f3:f1:80:1e:f7:d8:87:11:d1:6a:81:7f:4a:f2:6f:
90:af:27:65:e3:0c:0e:dd:46:2b:39:e2:7c:61:81:
90:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:7A:B5:C2:B5:32:DE:7D:8D:81:54:15:62:B6:0E:C7:40:F4:2E:8C
X509v3 Authority Key Identifier:
keyid:12:BE:29:C9:56:89:4C:49:C6:D4:BE:0E:D9:88:82:B9:0D:1B:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Er4pyVaJTEnG1L4O2YiCuQ0bx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/c2788f-8c8c-47bb-b922-aa6ed4dafb3b/1/w3q1wrUy3n2NgVQVYrYOx0D0Low.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/c2788f-8c8c-47bb-b922-aa6ed4dafb3b/1/Er4pyVaJTEnG1L4O2YiCuQ0bx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:6781:1400::/38
Signature Algorithm: sha256WithRSAEncryption
32:1e:dc:32:cb:2e:28:67:33:70:bd:f2:ed:52:35:25:e5:38:
dc:bf:73:23:4d:a1:0d:fc:a7:c3:ff:bd:b8:20:ee:f6:38:c4:
3d:d2:07:ed:c1:ae:85:47:41:e1:18:1c:2c:2b:26:c9:4b:d6:
a1:35:22:cf:8f:78:28:c1:79:04:8a:fe:fa:9e:25:80:1b:73:
d9:c9:68:0f:46:26:36:9d:77:20:04:69:0a:15:ac:80:9b:df:
2e:31:bb:2c:5b:a6:30:0d:a6:ad:2b:a2:75:b7:3f:4a:7b:f9:
00:dd:47:99:89:82:33:16:dd:b8:fa:6c:52:2f:a7:01:f9:26:
2e:bd:66:84:8e:92:7a:35:49:34:7b:32:fc:3b:60:5b:b9:6d:
da:8a:d0:c8:85:43:d5:03:23:21:14:e8:51:8c:f5:b1:e0:29:
6b:a4:03:36:c1:59:15:e6:28:8f:f4:2d:39:44:53:d7:cd:9f:
81:6f:d6:c7:c7:44:85:0f:64:82:9c:b5:3c:52:e7:de:af:3d:
2f:c1:ae:9f:fc:18:47:06:11:d0:b3:25:2b:e7:f7:02:73:6f:
7a:f8:a6:e7:24:9e:5b:e7:e7:26:f6:a1:1e:a9:13:59:36:66:
d6:ab:1c:00:fe:b5:b1:f4:56:b8:b3:bd:5b:56:1b:dc:63:8a:
e8:78:14:98
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAZQm2Y7iTGyWRlP+N4zft2sYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEyYmUyOWM5NTY4OTRjNDljNmQ0YmUwZWQ5ODg4MmI5MGQx
YmM3N2YwHhcNMjUwMTAyMTE0OTM5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMzdhYjVjMmI1MzJkZTdkOGQ4MTU0MTU2MmI2MGVjNzQwZjQyZThjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqKbCfGMiq9/EgVMdO2zPGyWYAY6D
WRPukzmdn4xsLQhH1ICq+UkQFpK17GVaEPX4vNaGKFn2kymK7FvHTPxWMzjTvLXo
CZOxCfhdv3ZDSKY2HaS7iPFgJnpxWVeHcloQYqT2Dse8hMWUjQ35t1XjOniJwkHG
I0im1oWHTs/nO+rpy9Ft3JOvCgNQ2RKX5RqTCw0cvt2DWxAFRjAsXo6H4tfUKdDC
7tX4NpBok257Z2oIeXFzGHWg3whUU6PiA1iK1Xdvi5J1uwlc5qLfm/KZr8I18/gV
Edt1NRv23lCxW3vz8YAe99iHEdFqgX9K8m+Qrydl4wwO3UYrOeJ8YYGQPQIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFMN6tcK1Mt59jYFUFWK2DsdA9C6MMB8GA1UdIwQY
MBaAFBK+KclWiUxJxtS+DtmIgrkNG8d/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRXI0cHlWYUpURW5HMUw0TzJZaUN1UTBieDM4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS9jMjc4OGYtOGM4Yy00N2JiLWI5MjIt
YWE2ZWQ0ZGFmYjNiLzEvdzNxMXdyVXkzbjJOZ1ZRVllyWU94MEQwTG93LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS9jMjc4OGYtOGM4Yy00N2JiLWI5MjItYWE2ZWQ0ZGFmYjNi
LzEvRXI0cHlWYUpURW5HMUw0TzJZaUN1UTBieDM4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYCKhRngRQw
DQYJKoZIhvcNAQELBQADggEBADIe3DLLLihnM3C98u1SNSXlONy/cyNNoQ38p8P/
vbgg7vY4xD3SB+3BroVHQeEYHCwrJslL1qE1Is+PeCjBeQSK/vqeJYAbc9nJaA9G
JjaddyAEaQoVrICb3y4xuyxbpjANpq0ronW3P0p7+QDdR5mJgjMW3bj6bFIvpwH5
Ji69ZoSOkno1STR7Mvw7YFu5bdqK0MiFQ9UDIyEU6FGM9bHgKWukAzbBWRXmKI/0
LTlEU9fNn4Fv1sfHRIUPZIKctTxS596vPS/Brp/8GEcGEdCzJSvn9wJzb3r4puck
nlvn5yb2oR6pE1k2ZtarHAD+tbH0VrizvVtWG9xjiuh4FJg=
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:10 2025 by rpki-client on console.sobornost.net