Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/098cf4-07c0-4ab7-9cc7-be8c78c06fc7/1/Mu4iTpkBhKid85hQkXUqPdd3l28.roa
File: Mu4iTpkBhKid85hQkXUqPdd3l28.roa (raw, json)
Hash identifier: m9wF2k+Ifz07DvZ8KG/nCFZD2LO8ELnkwbys5hG5IQw=
Subject key identifier: 32:EE:22:4E:99:01:84:A8:9D:F3:98:50:91:75:2A:3D:D7:77:97:6F
Certificate issuer: /CN=3acd90cb637d3d2c73d99dea9a4fe813e6485843
Certificate serial: 019420680BA3947B63BFF203D478DA44DE6D
Authority key identifier: 3A:CD:90:CB:63:7D:3D:2C:73:D9:9D:EA:9A:4F:E8:13:E6:48:58:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Os2Qy2N9PSxz2Z3qmk_oE-ZIWEM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/098cf4-07c0-4ab7-9cc7-be8c78c06fc7/1/Mu4iTpkBhKid85hQkXUqPdd3l28.roa
Signing time: Wed 01 Jan 2025 05:47:57 +0000
ROA not before: Wed 01 Jan 2025 05:47:57 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211042
IP address blocks: 2001:678:fb8::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:68:0b:a3:94:7b:63:bf:f2:03:d4:78:da:44:de:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3acd90cb637d3d2c73d99dea9a4fe813e6485843
Validity
Not Before: Jan 1 05:47:57 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=32ee224e990184a89df3985091752a3dd777976f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:90:05:54:e2:dc:73:67:80:cc:22:a8:fb:e9:
99:4f:f2:16:b8:31:45:4e:3c:01:6d:ae:a8:65:a3:
e3:3f:ac:2e:08:4f:c7:07:13:e9:17:18:31:49:26:
05:7e:fa:29:1c:c6:ab:04:9c:b8:bc:84:52:3f:f5:
30:1b:fe:52:f9:53:d3:82:9a:18:39:2c:05:e3:f7:
11:a5:b3:b0:b7:40:b8:ab:c4:38:ca:7d:be:cb:06:
17:3d:d9:88:e6:78:26:99:3f:63:87:67:e6:bb:b1:
3b:d2:f1:78:2b:4c:be:59:a2:0d:03:76:bc:94:0c:
f5:f9:93:78:20:dc:db:b3:dd:a9:bf:d7:db:96:f8:
fb:db:08:eb:98:a7:15:7a:5c:6d:81:08:9c:6f:21:
8a:12:a7:6f:f3:b7:06:2f:43:64:6a:3e:7a:1e:46:
ab:d5:8b:1a:78:4a:e1:ca:c5:e0:7e:ea:18:cf:4f:
ff:d3:f3:88:02:33:2c:e1:06:49:f1:8c:45:1e:79:
01:3e:50:9b:1e:d6:89:2b:c0:a2:70:fb:48:30:3b:
7b:b2:30:13:45:bb:dd:41:ef:8f:82:c2:7c:d1:b2:
45:8c:1c:e1:20:db:92:63:dd:d6:bd:b3:92:c4:64:
85:cb:1f:45:1e:21:82:fb:c3:e7:ab:55:9f:fe:77:
91:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:EE:22:4E:99:01:84:A8:9D:F3:98:50:91:75:2A:3D:D7:77:97:6F
X509v3 Authority Key Identifier:
keyid:3A:CD:90:CB:63:7D:3D:2C:73:D9:9D:EA:9A:4F:E8:13:E6:48:58:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Os2Qy2N9PSxz2Z3qmk_oE-ZIWEM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/098cf4-07c0-4ab7-9cc7-be8c78c06fc7/1/Mu4iTpkBhKid85hQkXUqPdd3l28.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/098cf4-07c0-4ab7-9cc7-be8c78c06fc7/1/Os2Qy2N9PSxz2Z3qmk_oE-ZIWEM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:fb8::/48
Signature Algorithm: sha256WithRSAEncryption
88:b4:f2:e5:0b:99:27:1e:06:a9:48:fc:74:cb:1c:f2:c8:ee:
f5:33:0c:5e:f5:5b:19:6d:cc:e3:e4:d9:11:41:fb:87:8d:bd:
07:76:a0:db:a2:63:84:a2:6b:71:85:60:53:a0:4f:cb:92:88:
95:1e:25:6d:71:c9:e4:39:47:cb:32:f0:55:66:b3:8e:9f:b5:
9b:8b:bd:d3:1e:b7:41:b6:f4:fc:b3:a0:53:9b:25:97:96:d8:
3a:cb:19:29:56:3c:0d:7f:bd:73:d1:ed:c7:8b:10:90:65:ab:
35:71:4b:97:80:3f:de:18:8d:8d:df:d5:cd:2c:46:bc:1b:41:
00:ba:f6:e5:f2:fb:6b:6a:49:9c:a9:1c:6a:e7:6f:88:b2:5f:
f2:7c:29:5b:5f:b1:99:c8:0f:8d:73:d8:93:ff:b5:3b:8e:3a:
b4:f2:68:18:2b:4c:42:b5:10:5f:d6:1e:38:2d:7b:7c:69:2a:
c1:2a:b1:66:9e:eb:84:2f:ec:79:db:88:93:97:03:66:fe:90:
b2:16:57:b7:8e:35:20:0d:1e:56:ce:41:bd:67:6c:61:98:7c:
99:ed:c9:c3:30:71:f6:56:f4:b7:78:70:a9:06:01:3b:ac:8b:
b4:00:7e:d3:17:04:c9:4c:3a:f3:b2:f4:10:40:47:c4:62:07:
e3:68:f2:78
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAZQgaAujlHtjv/ID1HjaRN5tMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhY2Q5MGNiNjM3ZDNkMmM3M2Q5OWRlYTlhNGZlODEzZTY0
ODU4NDMwHhcNMjUwMTAxMDU0NzU3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMmVlMjI0ZTk5MDE4NGE4OWRmMzk4NTA5MTc1MmEzZGQ3Nzc5NzZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy5AFVOLcc2eAzCKo++mZT/IWuDFF
TjwBba6oZaPjP6wuCE/HBxPpFxgxSSYFfvopHMarBJy4vIRSP/UwG/5S+VPTgpoY
OSwF4/cRpbOwt0C4q8Q4yn2+ywYXPdmI5ngmmT9jh2fmu7E70vF4K0y+WaINA3a8
lAz1+ZN4INzbs92pv9fblvj72wjrmKcVelxtgQicbyGKEqdv87cGL0Nkaj56Hkar
1YsaeErhysXgfuoYz0//0/OIAjMs4QZJ8YxFHnkBPlCbHtaJK8CicPtIMDt7sjAT
RbvdQe+PgsJ80bJFjBzhINuSY93WvbOSxGSFyx9FHiGC+8Pnq1Wf/neR5wIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFDLuIk6ZAYSonfOYUJF1Kj3Xd5dvMB8GA1UdIwQY
MBaAFDrNkMtjfT0sc9md6ppP6BPmSFhDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT3MyUXkyTjlQU3h6MlozcW1rX29FLVpJV0VNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC8wOThjZjQtMDdjMC00YWI3LTljYzct
YmU4Yzc4YzA2ZmM3LzEvTXU0aVRwa0JoS2lkODVoUWtYVXFQZGQzbDI4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZC8wOThjZjQtMDdjMC00YWI3LTljYzctYmU4Yzc4YzA2ZmM3
LzEvT3MyUXkyTjlQU3h6MlozcW1rX29FLVpJV0VNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeA+4
MA0GCSqGSIb3DQEBCwUAA4IBAQCItPLlC5knHgapSPx0yxzyyO71Mwxe9VsZbczj
5NkRQfuHjb0HdqDbomOEomtxhWBToE/LkoiVHiVtccnkOUfLMvBVZrOOn7Wbi73T
HrdBtvT8s6BTmyWXltg6yxkpVjwNf71z0e3HixCQZas1cUuXgD/eGI2N39XNLEa8
G0EAuvbl8vtrakmcqRxq52+Isl/yfClbX7GZyA+Nc9iT/7U7jjq08mgYK0xCtRBf
1h44LXt8aSrBKrFmnuuEL+x524iTlwNm/pCyFle3jjUgDR5WzkG9Z2xhmHyZ7cnD
MHH2VvS3eHCpBgE7rIu0AH7TFwTJTDrzsvQQQEfEYgfjaPJ4
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:31 2025 by rpki-client on console.sobornost.net