Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/b592dd-c711-4301-9be5-aef3fcbb7884/1/36xTaZN36e5rc-tObD7qGV8VMjE.roa
File: 36xTaZN36e5rc-tObD7qGV8VMjE.roa (raw, json)
Hash identifier: wKPGdA5BYZvtaHrrMsjhE8Um1YRHqDiekeeAKB95GHc=
Subject key identifier: DF:AC:53:69:93:77:E9:EE:6B:73:EB:4E:6C:3E:EA:19:5F:15:32:31
Certificate issuer: /CN=7dc896cb3899c5b6488d1c4653faee4b23151f1f
Certificate serial: 019422FC47E69B32B939EDD4365E2D63396D
Authority key identifier: 7D:C8:96:CB:38:99:C5:B6:48:8D:1C:46:53:FA:EE:4B:23:15:1F:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fciWyziZxbZIjRxGU_ruSyMVHx8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/b592dd-c711-4301-9be5-aef3fcbb7884/1/36xTaZN36e5rc-tObD7qGV8VMjE.roa
Signing time: Wed 01 Jan 2025 17:49:06 +0000
ROA not before: Wed 01 Jan 2025 17:49:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 6067
IP address blocks: 2001:4dc0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fc:47:e6:9b:32:b9:39:ed:d4:36:5e:2d:63:39:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7dc896cb3899c5b6488d1c4653faee4b23151f1f
Validity
Not Before: Jan 1 17:49:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=dfac53699377e9ee6b73eb4e6c3eea195f153231
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:16:cf:4b:e5:b6:20:a2:30:3a:4e:1f:00:13:
db:d2:36:bb:4a:73:53:f8:bd:2a:cf:25:84:e3:6d:
56:3c:7e:df:41:3a:f8:df:a6:80:e7:ef:d2:c8:a7:
5d:07:02:7f:06:67:64:f2:98:98:83:d9:f8:f1:f1:
26:0c:53:47:31:9e:31:7f:4c:56:aa:f1:f6:a6:56:
89:b8:7f:8c:83:f8:e1:63:39:8f:a0:37:de:26:de:
30:54:d1:de:03:6f:4f:20:f4:66:26:a4:e6:0c:30:
4a:75:e3:1a:68:cd:11:11:0b:57:c7:f5:7a:c1:16:
f3:22:2b:d2:5f:b5:3b:a8:47:65:99:1c:aa:55:5d:
8d:8a:e7:dd:0e:c0:a5:b1:e6:d0:d6:b4:35:99:fa:
63:40:42:0c:04:a6:2f:57:61:52:92:36:67:3c:57:
1f:c7:0d:9c:30:18:f4:d2:d7:89:ed:c3:59:74:b3:
ab:ad:d2:ba:29:7b:96:b1:d0:9c:74:fc:4f:a9:03:
7b:1a:d2:9e:de:8e:ef:36:e3:a0:6a:0c:c4:5b:e6:
cc:ce:cc:77:22:7d:78:77:e5:9e:05:1c:82:95:e3:
7c:19:f4:2f:21:fa:e3:52:a4:57:e3:53:ca:44:59:
af:50:13:21:33:05:85:61:fa:d5:95:0b:21:77:de:
48:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:AC:53:69:93:77:E9:EE:6B:73:EB:4E:6C:3E:EA:19:5F:15:32:31
X509v3 Authority Key Identifier:
keyid:7D:C8:96:CB:38:99:C5:B6:48:8D:1C:46:53:FA:EE:4B:23:15:1F:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fciWyziZxbZIjRxGU_ruSyMVHx8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/b592dd-c711-4301-9be5-aef3fcbb7884/1/36xTaZN36e5rc-tObD7qGV8VMjE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/b592dd-c711-4301-9be5-aef3fcbb7884/1/fciWyziZxbZIjRxGU_ruSyMVHx8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:4dc0::/32
Signature Algorithm: sha256WithRSAEncryption
a2:45:10:99:d5:e5:4c:ec:c1:5a:de:81:07:e9:b3:01:ed:b0:
53:1e:4f:16:66:95:bc:26:d7:fc:7d:6e:c1:05:6c:c2:0d:9c:
70:61:74:dd:48:3b:20:77:48:d5:ff:5c:05:0c:aa:6a:f4:d3:
c7:42:00:27:05:ef:11:df:e8:12:b3:52:11:4c:a8:b2:d6:0b:
ec:93:ae:f8:5f:cc:17:2c:9b:60:df:ee:83:86:1c:c3:17:e0:
cd:a8:ad:c3:40:54:8a:f9:26:41:28:a8:d7:8e:d2:19:57:87:
f8:18:84:9b:9c:f8:5b:9f:c2:1c:21:ee:81:44:19:0e:91:5d:
da:6c:a3:9f:15:a9:59:b8:66:61:67:30:b9:0f:c6:39:7a:2b:
45:d7:4f:04:3a:6d:e3:79:23:71:45:a6:fd:a7:3f:d7:92:2b:
2b:c3:5f:b5:a0:8f:e4:a9:02:9e:d5:c6:99:8f:d3:75:10:8e:
de:43:87:5f:0e:68:60:2c:57:96:f0:eb:43:ef:41:9e:52:5f:
38:f1:22:24:e9:71:93:71:34:30:84:d9:08:09:57:8a:12:f5:
ec:e5:0d:87:cd:6d:52:28:e4:73:53:e9:10:0e:06:b4:0f:6f:
7d:5a:53:9b:5e:45:19:53:1e:a4:9e:40:cb:1d:14:07:bd:d1:
a8:96:e6:3a
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAZQi/EfmmzK5Oe3UNl4tYzltMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkYzg5NmNiMzg5OWM1YjY0ODhkMWM0NjUzZmFlZTRiMjMx
NTFmMWYwHhcNMjUwMTAxMTc0OTA2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZmFjNTM2OTkzNzdlOWVlNmI3M2ViNGU2YzNlZWExOTVmMTUzMjMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzhbPS+W2IKIwOk4fABPb0ja7SnNT
+L0qzyWE421WPH7fQTr436aA5+/SyKddBwJ/Bmdk8piYg9n48fEmDFNHMZ4xf0xW
qvH2plaJuH+Mg/jhYzmPoDfeJt4wVNHeA29PIPRmJqTmDDBKdeMaaM0REQtXx/V6
wRbzIivSX7U7qEdlmRyqVV2NiufdDsClsebQ1rQ1mfpjQEIMBKYvV2FSkjZnPFcf
xw2cMBj00teJ7cNZdLOrrdK6KXuWsdCcdPxPqQN7GtKe3o7vNuOgagzEW+bMzsx3
In14d+WeBRyCleN8GfQvIfrjUqRX41PKRFmvUBMhMwWFYfrVlQshd95I1QIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFN+sU2mTd+nua3PrTmw+6hlfFTIxMB8GA1UdIwQY
MBaAFH3Ilss4mcW2SI0cRlP67ksjFR8fMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmNpV3l6aVp4YlpJalJ4R1VfcnVTeU1WSHg4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9iNTkyZGQtYzcxMS00MzAxLTliZTUt
YWVmM2ZjYmI3ODg0LzEvMzZ4VGFaTjM2ZTVyYy10T2JEN3FHVjhWTWpFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS9iNTkyZGQtYzcxMS00MzAxLTliZTUtYWVmM2ZjYmI3ODg0
LzEvZmNpV3l6aVp4YlpJalJ4R1VfcnVTeU1WSHg4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAIAFNwDAN
BgkqhkiG9w0BAQsFAAOCAQEAokUQmdXlTOzBWt6BB+mzAe2wUx5PFmaVvCbX/H1u
wQVswg2ccGF03Ug7IHdI1f9cBQyqavTTx0IAJwXvEd/oErNSEUyostYL7JOu+F/M
FyybYN/ug4Ycwxfgzaitw0BUivkmQSio147SGVeH+BiEm5z4W5/CHCHugUQZDpFd
2myjnxWpWbhmYWcwuQ/GOXorRddPBDpt43kjcUWm/ac/15IrK8NftaCP5KkCntXG
mY/TdRCO3kOHXw5oYCxXlvDrQ+9BnlJfOPEiJOlxk3E0MITZCAlXihL17OUNh81t
Uijkc1PpEA4GtA9vfVpTm15FGVMepJ5Ayx0UB73RqJbmOg==
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:23 2025 by rpki-client on console.sobornost.net