Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/WPS14cKrKqJHCAKCdlR3KwHp1-0.roa
File: WPS14cKrKqJHCAKCdlR3KwHp1-0.roa (raw, json)
Hash identifier: Yl210eMGmQtdgLjJXLvDZtgHt37I57K+v0vbY7bqylY=
Subject key identifier: 58:F4:B5:E1:C2:AB:2A:A2:47:08:02:82:76:54:77:2B:01:E9:D7:ED
Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Certificate serial: 0194A977C6B00A797D5D8B5BA36EF3240520
Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/WPS14cKrKqJHCAKCdlR3KwHp1-0.roa
Signing time: Mon 27 Jan 2025 20:33:06 +0000
ROA not before: Mon 27 Jan 2025 20:33:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214079
IP address blocks: 2a12:bec4:1570::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:a9:77:c6:b0:0a:79:7d:5d:8b:5b:a3:6e:f3:24:05:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Validity
Not Before: Jan 27 20:33:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=58f4b5e1c2ab2aa2470802827654772b01e9d7ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:d9:cf:b6:2b:0a:65:50:77:46:ba:e8:3b:6c:
82:4f:06:fe:df:b1:32:55:0d:8e:46:32:cd:19:8a:
46:0c:e4:46:8f:91:17:86:7b:93:5e:54:28:5a:cd:
eb:fd:b8:81:27:b8:c4:ea:c9:85:76:f6:55:4d:04:
60:cf:58:55:5c:d1:2f:03:c1:10:71:c8:9c:46:64:
37:29:09:0f:20:41:f0:fb:fe:a0:a1:0d:43:96:84:
84:66:86:64:0b:b2:76:af:7c:65:a0:11:3d:6d:e1:
c1:39:fa:51:b7:46:e2:62:7b:a1:63:10:85:1a:b5:
0b:ce:cb:45:62:9a:b8:b9:1e:71:78:f2:b4:41:a7:
f7:eb:81:72:9a:78:a3:b8:5c:12:fd:fe:b5:9f:84:
24:96:f8:48:48:db:9f:3e:d1:28:41:b0:59:06:6f:
c6:32:93:b5:d7:51:cb:45:92:95:1c:d1:13:e4:bf:
0d:a5:46:9f:be:22:a1:1c:2e:63:2f:0d:6c:09:a2:
a0:3a:af:aa:69:cb:ad:d7:f6:04:8d:1c:dc:36:20:
b4:b3:4e:70:fe:f0:8a:e9:da:e1:7d:5c:11:bf:ea:
b6:b6:93:77:e9:cf:0d:60:7f:10:ec:61:86:39:a5:
f8:48:4e:c5:eb:10:48:72:41:3d:13:12:97:6f:5d:
4a:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:F4:B5:E1:C2:AB:2A:A2:47:08:02:82:76:54:77:2B:01:E9:D7:ED
X509v3 Authority Key Identifier:
keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/WPS14cKrKqJHCAKCdlR3KwHp1-0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:bec4:1570::/48
Signature Algorithm: sha256WithRSAEncryption
95:ca:ab:36:19:79:2f:d8:b7:7d:7c:13:c9:ad:0c:bd:18:73:
f4:24:5e:c0:b1:39:38:c7:68:98:e1:13:f8:41:e7:4d:9d:7e:
d5:60:f8:29:38:8a:9c:1f:e9:9e:79:fa:12:c0:dd:4a:60:96:
7c:9b:7f:32:ec:e3:7b:d5:5c:fe:99:9a:5d:f2:25:35:22:e6:
d8:09:03:59:84:85:1c:a6:e7:e7:04:3a:f9:48:f6:52:c5:4b:
98:36:9d:14:0d:24:06:2e:85:cc:e5:c8:bc:bd:79:01:28:53:
b4:57:e0:f5:89:a1:98:5a:dd:b2:a1:61:6e:a6:5b:d3:41:0b:
fc:b3:73:e3:1e:83:8c:db:3f:fd:20:5c:15:4b:4a:1a:06:53:
68:1d:84:d7:29:58:38:2e:23:33:e7:b3:fa:26:19:3d:e7:b2:
26:e1:22:b4:71:97:1a:c5:0a:66:4d:03:85:ad:3e:d5:de:ef:
1e:51:18:37:80:db:f1:d5:92:21:74:16:6b:29:c5:f3:2f:e8:
39:85:8f:71:91:34:22:3b:be:d4:4f:e5:b9:71:94:70:51:58:
ad:57:d8:87:0a:08:8d:f7:be:64:4a:55:a8:08:9e:d5:14:30:
48:2a:b1:41:aa:b8:09:16:74:d4:f3:73:14:d6:7b:95:69:30:
9c:26:74:16
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAZSpd8awCnl9XYtbo27zJAUgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIzN2UyMTVhNDE1ZWQ3YjVkZTRiNmRjMTJmMmY3Yjc3NTBj
M2Q2NmYwHhcNMjUwMTI3MjAzMzA2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1OGY0YjVlMWMyYWIyYWEyNDcwODAyODI3NjU0NzcyYjAxZTlkN2VkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx9nPtisKZVB3RrroO2yCTwb+37Ey
VQ2ORjLNGYpGDORGj5EXhnuTXlQoWs3r/biBJ7jE6smFdvZVTQRgz1hVXNEvA8EQ
ccicRmQ3KQkPIEHw+/6goQ1DloSEZoZkC7J2r3xloBE9beHBOfpRt0biYnuhYxCF
GrULzstFYpq4uR5xePK0Qaf364FymnijuFwS/f61n4QklvhISNufPtEoQbBZBm/G
MpO111HLRZKVHNET5L8NpUafviKhHC5jLw1sCaKgOq+qacut1/YEjRzcNiC0s05w
/vCK6drhfVwRv+q2tpN36c8NYH8Q7GGGOaX4SE7F6xBIckE9ExKXb11KbQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFFj0teHCqyqiRwgCgnZUdysB6dftMB8GA1UdIwQY
MBaAFLN+IVpBXte13kttwS8ve3dQw9ZvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQt
NTUzNjljZjUwN2VlLzEvV1BTMTRjS3JLcUpIQ0FLQ2RsUjNLd0hwMS0wLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQtNTUzNjljZjUwN2Vl
LzEvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhK+xBVw
MA0GCSqGSIb3DQEBCwUAA4IBAQCVyqs2GXkv2Ld9fBPJrQy9GHP0JF7AsTk4x2iY
4RP4QedNnX7VYPgpOIqcH+meefoSwN1KYJZ8m38y7ON71Vz+mZpd8iU1IubYCQNZ
hIUcpufnBDr5SPZSxUuYNp0UDSQGLoXM5ci8vXkBKFO0V+D1iaGYWt2yoWFuplvT
QQv8s3PjHoOM2z/9IFwVS0oaBlNoHYTXKVg4LiMz57P6Jhk957Im4SK0cZcaxQpm
TQOFrT7V3u8eURg3gNvx1ZIhdBZrKcXzL+g5hY9xkTQiO77UT+W5cZRwUVitV9iH
CgiN975kSlWoCJ7VFDBIKrFBqrgJFnTU83MU1nuVaTCcJnQW
-----END CERTIFICATE-----
Generated at Tue Apr 1 23:55:21 2025 by rpki-client on console.sobornost.net