Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/c93d87-32e0-46f1-9fb9-63451548979d/1/xj4dn4X9F3Ze69MMK18xkdCcvVM.roa
File: xj4dn4X9F3Ze69MMK18xkdCcvVM.roa (raw, json)
Hash identifier: i2JSpijukaEwTLCWCzXl/0mFG9rtjIN7i38MFp1Opfs=
Subject key identifier: C6:3E:1D:9F:85:FD:17:76:5E:EB:D3:0C:2B:5F:31:91:D0:9C:BD:53
Certificate issuer: /CN=1d43a2484569d20e3f53c17be7b9fb29c34ee5be
Certificate serial: 0194FF5F987C65F9987CA53427114C9930E5
Authority key identifier: 1D:43:A2:48:45:69:D2:0E:3F:53:C1:7B:E7:B9:FB:29:C3:4E:E5:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HUOiSEVp0g4_U8F757n7KcNO5b4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/c93d87-32e0-46f1-9fb9-63451548979d/1/xj4dn4X9F3Ze69MMK18xkdCcvVM.roa
Signing time: Thu 13 Feb 2025 12:54:02 +0000
ROA not before: Thu 13 Feb 2025 12:54:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214079
IP address blocks: 2a01:ecc0:300::/42 maxlen: 42
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ff:5f:98:7c:65:f9:98:7c:a5:34:27:11:4c:99:30:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d43a2484569d20e3f53c17be7b9fb29c34ee5be
Validity
Not Before: Feb 13 12:54:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c63e1d9f85fd17765eebd30c2b5f3191d09cbd53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:69:4c:9c:ec:c7:47:96:77:72:8c:d5:87:93:
e7:c4:28:4f:70:54:13:98:ab:6b:2e:fe:d9:6d:95:
29:16:4f:1f:85:0f:2d:e7:27:4f:d7:e4:8a:54:94:
ab:6a:b0:a5:c9:d1:04:1b:26:d2:4d:61:2b:ca:0a:
36:ae:48:46:06:df:97:68:75:fd:96:13:14:cc:22:
33:89:08:6e:be:ae:c5:b7:ec:ce:86:ab:80:8e:f1:
fa:08:48:7f:31:c4:75:73:4b:f0:3f:fb:8b:78:96:
f7:41:51:75:6b:72:a1:a4:6e:77:01:13:9a:ee:b7:
a8:cc:da:8d:11:41:be:23:80:3d:82:e1:81:b8:6d:
a4:a0:ad:07:b6:9d:7d:86:df:47:3b:c5:8f:e6:39:
4a:18:57:92:ed:2c:77:b8:18:05:ee:d7:29:7a:5e:
42:76:4f:c7:b6:65:81:99:6f:87:34:a8:75:f4:b7:
b9:f8:52:f6:5a:a4:3b:c9:9d:4a:5c:2b:0b:11:4e:
4f:cc:38:78:be:49:1d:df:09:25:d7:26:35:c9:55:
d3:ce:ef:cf:3f:b9:0e:db:a6:ac:03:51:0f:f4:4c:
bc:c8:70:28:1d:0a:39:6c:51:b3:b1:fd:62:7e:c9:
df:1d:ff:a8:d9:68:0a:49:4d:b0:b4:ae:27:c2:86:
e1:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:3E:1D:9F:85:FD:17:76:5E:EB:D3:0C:2B:5F:31:91:D0:9C:BD:53
X509v3 Authority Key Identifier:
keyid:1D:43:A2:48:45:69:D2:0E:3F:53:C1:7B:E7:B9:FB:29:C3:4E:E5:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HUOiSEVp0g4_U8F757n7KcNO5b4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/c93d87-32e0-46f1-9fb9-63451548979d/1/xj4dn4X9F3Ze69MMK18xkdCcvVM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/c93d87-32e0-46f1-9fb9-63451548979d/1/HUOiSEVp0g4_U8F757n7KcNO5b4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:ecc0:300::/42
Signature Algorithm: sha256WithRSAEncryption
60:40:52:30:9f:16:05:14:e2:75:d0:55:1a:5f:e3:d7:8c:48:
80:fb:19:19:c8:4b:e3:4e:05:2d:a9:80:ed:dd:f2:8f:c3:aa:
1b:9e:c5:52:c7:7d:6c:fd:c5:f0:d9:8a:7c:5e:aa:e7:c4:82:
b8:08:bc:af:eb:95:5e:c2:4a:6e:d9:28:2f:9a:03:32:ba:53:
17:a1:73:47:0f:75:17:80:39:59:08:d9:20:5a:d0:53:0e:d5:
e5:a7:4b:1b:91:12:53:c5:98:72:4e:dd:a5:e8:44:72:c1:f8:
63:01:b3:98:52:f3:eb:db:85:58:77:61:56:e3:d5:18:08:89:
04:11:5d:ea:e2:61:73:e2:14:57:d6:ee:a6:b3:eb:c5:1e:36:
6a:eb:53:13:22:b7:1f:e6:c5:b1:9b:2c:0b:25:cc:3e:c9:7b:
73:d8:5f:f3:c3:1e:ed:4a:0d:0e:f1:19:03:4d:6d:87:e2:6b:
82:72:96:83:ae:68:87:a5:27:fa:23:5e:dd:1e:3e:4e:be:4b:
1e:05:8d:dc:b3:4d:15:08:ea:68:ec:0d:33:de:eb:d4:fd:36:
23:f1:8c:cd:10:be:44:cd:1a:67:fb:20:e3:85:0c:c3:2c:f1:
2a:db:22:40:db:c8:de:3e:da:68:cd:aa:9b:0d:d8:eb:10:43:
fa:d3:5e:db
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAZT/X5h8ZfmYfKU0JxFMmTDlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFkNDNhMjQ4NDU2OWQyMGUzZjUzYzE3YmU3YjlmYjI5YzM0
ZWU1YmUwHhcNMjUwMjEzMTI1NDAyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNjNlMWQ5Zjg1ZmQxNzc2NWVlYmQzMGMyYjVmMzE5MWQwOWNiZDUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4WlMnOzHR5Z3cozVh5PnxChPcFQT
mKtrLv7ZbZUpFk8fhQ8t5ydP1+SKVJSrarClydEEGybSTWErygo2rkhGBt+XaHX9
lhMUzCIziQhuvq7Ft+zOhquAjvH6CEh/McR1c0vwP/uLeJb3QVF1a3KhpG53AROa
7reozNqNEUG+I4A9guGBuG2koK0Htp19ht9HO8WP5jlKGFeS7Sx3uBgF7tcpel5C
dk/HtmWBmW+HNKh19Le5+FL2WqQ7yZ1KXCsLEU5PzDh4vkkd3wkl1yY1yVXTzu/P
P7kO26asA1EP9Ey8yHAoHQo5bFGzsf1ifsnfHf+o2WgKSU2wtK4nwobhQQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFMY+HZ+F/Rd2XuvTDCtfMZHQnL1TMB8GA1UdIwQY
MBaAFB1DokhFadIOP1PBe+e5+ynDTuW+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSFVPaVNFVnAwZzRfVThGNzU3bjdLY05PNWI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NS9jOTNkODctMzJlMC00NmYxLTlmYjkt
NjM0NTE1NDg5NzlkLzEveGo0ZG40WDlGM1plNjlNTUsxOHhrZENjdlZNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84NS9jOTNkODctMzJlMC00NmYxLTlmYjktNjM0NTE1NDg5Nzlk
LzEvSFVPaVNFVnAwZzRfVThGNzU3bjdLY05PNWI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcGKgHswAMA
MA0GCSqGSIb3DQEBCwUAA4IBAQBgQFIwnxYFFOJ10FUaX+PXjEiA+xkZyEvjTgUt
qYDt3fKPw6obnsVSx31s/cXw2Yp8XqrnxIK4CLyv65Vewkpu2SgvmgMyulMXoXNH
D3UXgDlZCNkgWtBTDtXlp0sbkRJTxZhyTt2l6ERywfhjAbOYUvPr24VYd2FW49UY
CIkEEV3q4mFz4hRX1u6ms+vFHjZq61MTIrcf5sWxmywLJcw+yXtz2F/zwx7tSg0O
8RkDTW2H4muCcpaDrmiHpSf6I17dHj5OvkseBY3cs00VCOpo7A0z3uvU/TYj8YzN
EL5EzRpn+yDjhQzDLPEq2yJA28jePtpozaqbDdjrEEP6017b
-----END CERTIFICATE-----
Generated at Tue Apr 1 23:55:19 2025 by rpki-client on console.sobornost.net