Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/745bdb-104b-49c7-99d5-cec33ba1bdf5/1/6wuhUyQ6B8hcKFtpQPLF4a8xiLM.roa
File: 6wuhUyQ6B8hcKFtpQPLF4a8xiLM.roa (raw, json)
Hash identifier: PVP/CIAq5vbBthYH2NgEEDe22Dw5jd7urf5cJiuVvXo=
Subject key identifier: EB:0B:A1:53:24:3A:07:C8:5C:28:5B:69:40:F2:C5:E1:AF:31:88:B3
Certificate issuer: /CN=9d5de490ff874e9689cecf726cbb4e2f51f6c731
Certificate serial: 019421B19DF994D577CDBD555CAE935C5A75
Authority key identifier: 9D:5D:E4:90:FF:87:4E:96:89:CE:CF:72:6C:BB:4E:2F:51:F6:C7:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nV3kkP-HTpaJzs9ybLtOL1H2xzE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/745bdb-104b-49c7-99d5-cec33ba1bdf5/1/6wuhUyQ6B8hcKFtpQPLF4a8xiLM.roa
Signing time: Wed 01 Jan 2025 11:47:55 +0000
ROA not before: Wed 01 Jan 2025 11:47:55 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20594
IP address blocks: 2a01:8180:2000::/36 maxlen: 42
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b1:9d:f9:94:d5:77:cd:bd:55:5c:ae:93:5c:5a:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d5de490ff874e9689cecf726cbb4e2f51f6c731
Validity
Not Before: Jan 1 11:47:55 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=eb0ba153243a07c85c285b6940f2c5e1af3188b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:b1:69:10:ad:71:d2:07:31:8d:61:36:1d:4a:
c4:ae:9a:53:28:ee:e9:0d:72:ef:f3:86:d9:4b:48:
5b:6e:b8:95:02:5a:81:46:89:3b:a4:ad:79:20:4f:
ea:73:b4:0a:df:f7:28:60:8f:c9:09:2b:c8:c3:a1:
d3:11:f6:57:9f:50:d9:e7:12:ef:18:17:6c:bd:c8:
22:dd:e0:0e:c5:dc:d1:33:a8:29:c3:29:9f:89:c9:
55:dc:43:ab:7b:73:76:25:e4:3e:88:67:65:0c:61:
7c:b1:ad:b4:99:21:7c:a3:71:f0:60:c7:78:49:a0:
f0:b4:81:1e:5e:9e:d0:a6:8e:f8:91:a1:bc:da:55:
74:80:cd:f0:f7:f8:5b:17:9d:9a:a2:ef:15:bf:ea:
a7:a2:41:d4:8c:77:f3:e4:c9:15:8e:7e:a3:22:db:
2b:15:c9:86:63:31:bf:fd:23:64:c9:7c:62:e3:ed:
6d:eb:09:f9:a0:2f:14:bc:68:f0:00:d7:d4:0e:20:
61:b0:78:5c:d1:3c:9b:ff:b0:d8:31:ed:58:f1:bf:
ee:bb:59:a0:ae:02:6f:30:81:60:63:ed:04:d3:9c:
b4:42:d5:0c:10:63:fc:6a:5d:19:4a:c3:c8:fb:47:
da:04:f4:97:ba:8e:aa:0f:a1:fc:7a:db:ce:e7:e3:
9a:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:0B:A1:53:24:3A:07:C8:5C:28:5B:69:40:F2:C5:E1:AF:31:88:B3
X509v3 Authority Key Identifier:
keyid:9D:5D:E4:90:FF:87:4E:96:89:CE:CF:72:6C:BB:4E:2F:51:F6:C7:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nV3kkP-HTpaJzs9ybLtOL1H2xzE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/745bdb-104b-49c7-99d5-cec33ba1bdf5/1/6wuhUyQ6B8hcKFtpQPLF4a8xiLM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/745bdb-104b-49c7-99d5-cec33ba1bdf5/1/nV3kkP-HTpaJzs9ybLtOL1H2xzE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:8180:2000::/36
Signature Algorithm: sha256WithRSAEncryption
54:3a:5a:a8:b5:bb:fc:55:c9:26:0c:ff:5d:41:f5:35:7e:c3:
a5:df:ff:e0:08:11:13:4a:c1:bd:a4:fa:90:ad:e6:42:ce:b3:
3d:4c:f5:df:cb:a6:bd:b2:b7:f9:df:b0:b7:65:54:ad:24:e5:
94:d8:ae:de:55:04:4b:cf:0f:14:d5:7e:75:0b:fe:42:b0:ff:
1d:18:6c:f3:a0:59:3f:4a:a2:18:36:f5:ed:0d:73:ef:8d:6e:
44:3d:9e:8a:85:d6:03:46:3b:49:37:9c:7e:f1:b7:e8:20:95:
39:43:77:ae:7f:6a:2f:81:4f:40:d1:47:16:21:de:c5:62:6e:
7b:ed:13:c8:78:39:5b:77:df:8a:3a:fa:84:0b:e7:d0:f5:56:
71:6d:56:ec:53:1e:07:d4:17:e6:64:6e:68:4a:fc:9b:db:26:
ad:37:5f:a9:47:b8:46:70:17:f9:35:fd:22:b5:be:13:ac:9b:
b9:1b:3f:ee:b0:f7:de:b8:68:b6:17:b8:49:05:b1:9f:b2:b7:
96:1d:ad:d7:7b:20:28:60:d2:e5:8d:4f:cf:b5:eb:52:3c:0f:
82:a3:c9:cc:e8:45:c0:cb:74:cf:5d:b2:27:bd:72:13:2f:0e:
8a:64:f1:19:cd:c7:5e:07:27:4f:d6:7b:db:6c:2a:ff:b7:1d:
e8:75:09:d5
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAZQhsZ35lNV3zb1VXK6TXFp1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlkNWRlNDkwZmY4NzRlOTY4OWNlY2Y3MjZjYmI0ZTJmNTFm
NmM3MzEwHhcNMjUwMTAxMTE0NzU1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlYjBiYTE1MzI0M2EwN2M4NWMyODViNjk0MGYyYzVlMWFmMzE4OGIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA27FpEK1x0gcxjWE2HUrErppTKO7p
DXLv84bZS0hbbriVAlqBRok7pK15IE/qc7QK3/coYI/JCSvIw6HTEfZXn1DZ5xLv
GBdsvcgi3eAOxdzRM6gpwymficlV3EOre3N2JeQ+iGdlDGF8sa20mSF8o3HwYMd4
SaDwtIEeXp7Qpo74kaG82lV0gM3w9/hbF52aou8Vv+qnokHUjHfz5MkVjn6jItsr
FcmGYzG//SNkyXxi4+1t6wn5oC8UvGjwANfUDiBhsHhc0Tyb/7DYMe1Y8b/uu1mg
rgJvMIFgY+0E05y0QtUMEGP8al0ZSsPI+0faBPSXuo6qD6H8etvO5+OaRQIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFOsLoVMkOgfIXChbaUDyxeGvMYizMB8GA1UdIwQY
MBaAFJ1d5JD/h06Wic7Pcmy7Ti9R9scxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvblYza2tQLUhUcGFKenM5eWJMdE9MMUgyeHpFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC83NDViZGItMTA0Yi00OWM3LTk5ZDUt
Y2VjMzNiYTFiZGY1LzEvNnd1aFV5UTZCOGhjS0Z0cFFQTEY0YTh4aUxNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MC83NDViZGItMTA0Yi00OWM3LTk5ZDUtY2VjMzNiYTFiZGY1
LzEvblYza2tQLUhUcGFKenM5eWJMdE9MMUgyeHpFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYEKgGBgCAw
DQYJKoZIhvcNAQELBQADggEBAFQ6Wqi1u/xVySYM/11B9TV+w6Xf/+AIERNKwb2k
+pCt5kLOsz1M9d/Lpr2yt/nfsLdlVK0k5ZTYrt5VBEvPDxTVfnUL/kKw/x0YbPOg
WT9Kohg29e0Nc++NbkQ9noqF1gNGO0k3nH7xt+gglTlDd65/ai+BT0DRRxYh3sVi
bnvtE8h4OVt334o6+oQL59D1VnFtVuxTHgfUF+ZkbmhK/JvbJq03X6lHuEZwF/k1
/SK1vhOsm7kbP+6w9964aLYXuEkFsZ+yt5Ydrdd7IChg0uWNT8+161I8D4Kjyczo
RcDLdM9dsie9chMvDopk8RnNx14HJ0/We9tsKv+3Heh1CdU=
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:49 2025 by rpki-client on console.sobornost.net