Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/5ddee9-c1c4-4b57-b6b8-d49916b5f2b4/1/b-pP2DvAvhNxFYiGst38p6kSpEw.roa
File: b-pP2DvAvhNxFYiGst38p6kSpEw.roa (raw, json)
Hash identifier: OWrgzbHkSLo7aQ27PmujOGuFd28cotewB1lFGD+BaKA=
Subject key identifier: 6F:EA:4F:D8:3B:C0:BE:13:71:15:88:86:B2:DD:FC:A7:A9:12:A4:4C
Certificate issuer: /CN=3b0bf18d6bbdb33da82fe61a28624ba72e235040
Certificate serial: 0194258F4E41BB5C3A41598015A588BB2190
Authority key identifier: 3B:0B:F1:8D:6B:BD:B3:3D:A8:2F:E6:1A:28:62:4B:A7:2E:23:50:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OwvxjWu9sz2oL-YaKGJLpy4jUEA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/5ddee9-c1c4-4b57-b6b8-d49916b5f2b4/1/b-pP2DvAvhNxFYiGst38p6kSpEw.roa
Signing time: Thu 02 Jan 2025 05:48:56 +0000
ROA not before: Thu 02 Jan 2025 05:48:56 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215958
IP address blocks: 2a14:4900:5900::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:4e:41:bb:5c:3a:41:59:80:15:a5:88:bb:21:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b0bf18d6bbdb33da82fe61a28624ba72e235040
Validity
Not Before: Jan 2 05:48:56 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6fea4fd83bc0be1371158886b2ddfca7a912a44c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:3a:39:9c:68:5d:42:66:ab:9c:60:38:6d:21:
dc:38:ab:e3:aa:60:76:db:2f:3c:da:e0:f8:67:0c:
f0:68:8b:3d:fb:a2:61:b1:5f:06:c7:9a:55:53:26:
4f:23:53:ae:11:62:f6:d8:67:c9:3d:ed:91:a3:5d:
ac:05:02:3e:fe:c1:22:90:48:ae:39:08:a0:b1:b6:
34:05:06:ea:e8:49:eb:7e:59:af:a0:26:e8:0e:df:
d2:23:fb:39:09:ac:13:93:7c:fe:e3:7e:1d:60:c7:
c0:4e:99:4d:9e:80:7d:f1:64:f6:3a:cc:95:b4:f6:
57:da:d8:d4:a8:9e:16:90:84:8d:32:17:9c:86:a8:
c1:60:75:28:66:e4:80:4d:9a:52:4c:c4:25:cc:b9:
98:82:9f:41:a3:78:86:e7:e8:76:e8:75:f7:a8:c5:
d7:e1:50:d6:6b:51:2e:3e:28:4d:78:44:91:ea:d6:
a7:3f:53:d2:89:c5:c2:ab:b4:71:52:38:9b:bd:17:
af:07:1b:d2:b5:96:8e:15:ce:47:cb:56:32:ae:34:
2b:46:85:31:df:d8:c6:af:4e:79:e8:8b:d6:e1:49:
55:28:9a:03:3d:e3:57:97:82:88:25:a8:dc:49:1a:
c2:ce:c7:76:1f:bf:75:30:c1:45:00:aa:1c:88:32:
ca:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:EA:4F:D8:3B:C0:BE:13:71:15:88:86:B2:DD:FC:A7:A9:12:A4:4C
X509v3 Authority Key Identifier:
keyid:3B:0B:F1:8D:6B:BD:B3:3D:A8:2F:E6:1A:28:62:4B:A7:2E:23:50:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OwvxjWu9sz2oL-YaKGJLpy4jUEA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/5ddee9-c1c4-4b57-b6b8-d49916b5f2b4/1/b-pP2DvAvhNxFYiGst38p6kSpEw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/5ddee9-c1c4-4b57-b6b8-d49916b5f2b4/1/OwvxjWu9sz2oL-YaKGJLpy4jUEA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:4900:5900::/40
Signature Algorithm: sha256WithRSAEncryption
06:cc:26:16:91:a7:4f:41:13:0c:5c:dd:c1:0a:00:7b:82:58:
df:43:1a:aa:43:e9:02:4e:fc:f0:37:13:b6:6b:26:75:e0:bf:
02:fc:e8:a4:8b:4f:4e:8f:9c:25:82:fb:e5:bc:57:1d:8f:f9:
a9:86:4f:a9:76:3f:df:52:4f:6c:b1:81:dd:8c:a2:0d:2e:e1:
72:53:69:fc:36:89:d3:ea:c7:4c:da:2f:04:3f:41:14:ca:2b:
95:00:76:9e:20:9f:ad:b4:a3:41:78:cc:f2:01:c4:85:32:cc:
51:41:6c:12:78:8d:cc:02:4f:e2:bb:45:15:b6:a9:dd:4d:8b:
07:a7:38:89:a2:32:e5:27:2a:a3:a2:38:12:64:fc:49:d3:a8:
12:44:7b:41:85:32:f9:f2:fa:6a:52:c2:a0:c6:38:f7:28:0d:
84:ea:fb:41:60:b1:0a:0d:6c:f3:6a:f2:50:09:7d:28:ad:d1:
eb:81:8d:33:0f:6a:3f:b1:33:c8:d3:a0:81:62:9d:dc:79:65:
43:b0:6b:39:dc:63:b6:b2:f4:82:1e:06:bd:a5:4e:28:92:e9:
d3:2e:e0:44:c4:2c:ea:be:90:fd:63:fd:ba:ec:57:45:74:a3:
f5:21:b4:dd:4a:8d:8c:3e:93:d7:e1:e0:63:72:85:31:67:f7:
6c:73:24:dd
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAZQlj05Bu1w6QVmAFaWIuyGQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiMGJmMThkNmJiZGIzM2RhODJmZTYxYTI4NjI0YmE3MmUy
MzUwNDAwHhcNMjUwMTAyMDU0ODU2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZmVhNGZkODNiYzBiZTEzNzExNTg4ODZiMmRkZmNhN2E5MTJhNDRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmDo5nGhdQmarnGA4bSHcOKvjqmB2
2y882uD4ZwzwaIs9+6JhsV8Gx5pVUyZPI1OuEWL22GfJPe2Ro12sBQI+/sEikEiu
OQigsbY0BQbq6EnrflmvoCboDt/SI/s5CawTk3z+434dYMfATplNnoB98WT2OsyV
tPZX2tjUqJ4WkISNMhechqjBYHUoZuSATZpSTMQlzLmYgp9Bo3iG5+h26HX3qMXX
4VDWa1EuPihNeESR6tanP1PSicXCq7RxUjibvRevBxvStZaOFc5Hy1YyrjQrRoUx
39jGr0556IvW4UlVKJoDPeNXl4KIJajcSRrCzsd2H791MMFFAKociDLKYQIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFG/qT9g7wL4TcRWIhrLd/KepEqRMMB8GA1UdIwQY
MBaAFDsL8Y1rvbM9qC/mGihiS6cuI1BAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT3d2eGpXdTlzejJvTC1ZYUtHSkxweTRqVUVBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OS81ZGRlZTktYzFjNC00YjU3LWI2Yjgt
ZDQ5OTE2YjVmMmI0LzEvYi1wUDJEdkF2aE54RllpR3N0MzhwNmtTcEV3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OS81ZGRlZTktYzFjNC00YjU3LWI2YjgtZDQ5OTE2YjVmMmI0
LzEvT3d2eGpXdTlzejJvTC1ZYUtHSkxweTRqVUVBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKhRJAFkw
DQYJKoZIhvcNAQELBQADggEBAAbMJhaRp09BEwxc3cEKAHuCWN9DGqpD6QJO/PA3
E7ZrJnXgvwL86KSLT06PnCWC++W8Vx2P+amGT6l2P99ST2yxgd2Mog0u4XJTafw2
idPqx0zaLwQ/QRTKK5UAdp4gn620o0F4zPIBxIUyzFFBbBJ4jcwCT+K7RRW2qd1N
iwenOImiMuUnKqOiOBJk/EnTqBJEe0GFMvny+mpSwqDGOPcoDYTq+0FgsQoNbPNq
8lAJfSit0euBjTMPaj+xM8jToIFindx5ZUOwazncY7ay9IIeBr2lTiiS6dMu4ETE
LOq+kP1j/brsV0V0o/UhtN1KjYw+k9fh4GNyhTFn92xzJN0=
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:00 2025 by rpki-client on console.sobornost.net