Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/b35513-ebdb-4550-a7d4-12f9f733dc4f/1/kNp_3YkCixoFt65dB3MqrcA0XPo.roa
File: kNp_3YkCixoFt65dB3MqrcA0XPo.roa (raw, json)
Hash identifier: yKQUvFhZ+Z1swcvVEnDhUbffbwLlIa/3aCYRRPNo5TY=
Subject key identifier: 90:DA:7F:DD:89:02:8B:1A:05:B7:AE:5D:07:73:2A:AD:C0:34:5C:FA
Certificate issuer: /CN=e2636e02f1554f70d971a656849c01bdff138ce8
Certificate serial: 019423D76F011E3BC83E82E739B1D65085F6
Authority key identifier: E2:63:6E:02:F1:55:4F:70:D9:71:A6:56:84:9C:01:BD:FF:13:8C:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4mNuAvFVT3DZcaZWhJwBvf8TjOg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/b35513-ebdb-4550-a7d4-12f9f733dc4f/1/kNp_3YkCixoFt65dB3MqrcA0XPo.roa
Signing time: Wed 01 Jan 2025 21:48:28 +0000
ROA not before: Wed 01 Jan 2025 21:48:28 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 202827
IP address blocks: 2a13:89c0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:6f:01:1e:3b:c8:3e:82:e7:39:b1:d6:50:85:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2636e02f1554f70d971a656849c01bdff138ce8
Validity
Not Before: Jan 1 21:48:28 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=90da7fdd89028b1a05b7ae5d07732aadc0345cfa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:cd:59:84:0a:99:7d:25:46:67:49:ec:40:f5:
8f:b8:70:4d:d4:68:9d:1c:44:2c:93:a1:5a:fb:60:
8d:c9:6d:d4:be:12:57:3b:ba:a8:64:9d:9e:fc:15:
15:32:36:62:5e:f8:ff:2b:30:42:e2:56:62:f0:e9:
dc:f7:46:59:ce:b2:76:f3:94:3b:79:a4:38:49:a3:
51:10:05:d4:fc:65:c9:93:87:a2:35:fc:a9:bf:10:
e8:11:98:ec:56:48:88:d6:7d:f1:fb:57:05:52:ae:
83:84:8c:dd:3b:20:e1:70:5f:56:f7:43:e9:c8:5a:
72:75:00:27:29:c0:39:41:55:a8:a0:ee:5c:ec:b9:
03:80:07:5e:2d:11:02:a5:d9:a9:54:f0:50:1d:1f:
9b:eb:21:52:42:0a:c6:fc:3a:73:37:76:6b:fa:0b:
a5:c3:79:f6:ae:e1:c6:08:cd:dd:be:f3:6e:bc:da:
e9:ed:57:7f:26:9a:b3:d6:ec:11:10:8c:22:1d:30:
bb:5e:e8:c1:07:e1:d0:9f:c4:06:f9:9f:f7:f4:aa:
a6:2c:eb:0b:9c:d3:cf:09:66:29:3a:25:91:5d:b3:
b0:38:28:17:b4:81:b3:e0:98:53:43:7d:54:86:35:
90:fb:68:3d:5a:25:8a:d7:af:18:df:de:f7:c3:aa:
27:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:DA:7F:DD:89:02:8B:1A:05:B7:AE:5D:07:73:2A:AD:C0:34:5C:FA
X509v3 Authority Key Identifier:
keyid:E2:63:6E:02:F1:55:4F:70:D9:71:A6:56:84:9C:01:BD:FF:13:8C:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4mNuAvFVT3DZcaZWhJwBvf8TjOg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/b35513-ebdb-4550-a7d4-12f9f733dc4f/1/kNp_3YkCixoFt65dB3MqrcA0XPo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/b35513-ebdb-4550-a7d4-12f9f733dc4f/1/4mNuAvFVT3DZcaZWhJwBvf8TjOg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:89c0::/32
Signature Algorithm: sha256WithRSAEncryption
51:da:35:9f:5c:0b:f3:86:32:f8:95:5c:c0:e4:47:c7:c1:8b:
8c:7a:1d:81:b6:f2:8f:cd:c4:eb:a0:d8:a1:8c:3b:18:e5:8b:
76:30:f1:69:64:17:ab:c3:a3:1c:ee:b3:92:0f:15:28:0f:64:
6d:ca:1c:29:76:81:8f:5e:22:14:30:fb:6d:f8:7b:85:61:f2:
b3:20:f3:3b:95:01:59:e8:38:ba:5d:0f:b4:86:bd:4d:19:73:
17:8c:76:e3:14:50:ca:70:7a:a6:2b:b1:cc:68:07:05:a1:89:
a9:64:34:a5:8b:aa:de:93:3f:60:6f:8c:9b:13:90:6b:e2:f1:
d3:58:1b:96:eb:b8:f8:7f:ac:4b:d0:bb:b1:15:4f:21:b9:3b:
d4:f1:f8:0a:e0:4a:6f:a2:f2:6e:52:b0:3d:35:b3:5a:05:eb:
5a:bc:57:d0:c2:e7:13:e5:71:27:88:d7:4f:46:c4:b4:dd:f9:
1a:68:26:4a:5e:e4:2a:2f:15:8b:df:10:99:36:3e:fc:c2:a2:
1d:36:6e:82:80:59:e7:76:20:e3:e2:e1:44:bf:c3:c2:06:c5:
22:92:78:bf:d0:4b:a2:67:df:1b:09:05:2c:a5:e0:73:b0:34:
0f:71:77:06:9a:9b:b3:90:a0:3f:15:42:ab:62:93:c9:53:68:
c5:5d:af:0b
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAZQj128BHjvIPoLnObHWUIX2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUyNjM2ZTAyZjE1NTRmNzBkOTcxYTY1Njg0OWMwMWJkZmYx
MzhjZTgwHhcNMjUwMTAxMjE0ODI4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MGRhN2ZkZDg5MDI4YjFhMDViN2FlNWQwNzczMmFhZGMwMzQ1Y2ZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5M1ZhAqZfSVGZ0nsQPWPuHBN1Gid
HEQsk6Fa+2CNyW3UvhJXO7qoZJ2e/BUVMjZiXvj/KzBC4lZi8Onc90ZZzrJ285Q7
eaQ4SaNREAXU/GXJk4eiNfypvxDoEZjsVkiI1n3x+1cFUq6DhIzdOyDhcF9W90Pp
yFpydQAnKcA5QVWooO5c7LkDgAdeLRECpdmpVPBQHR+b6yFSQgrG/DpzN3Zr+gul
w3n2ruHGCM3dvvNuvNrp7Vd/Jpqz1uwREIwiHTC7XujBB+HQn8QG+Z/39KqmLOsL
nNPPCWYpOiWRXbOwOCgXtIGz4JhTQ31UhjWQ+2g9WiWK168Y3973w6onJwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFJDaf92JAosaBbeuXQdzKq3ANFz6MB8GA1UdIwQY
MBaAFOJjbgLxVU9w2XGmVoScAb3/E4zoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNG1OdUF2RlZUM0RaY2FaV2hKd0J2ZjhUak9nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NC9iMzU1MTMtZWJkYi00NTUwLWE3ZDQt
MTJmOWY3MzNkYzRmLzEva05wXzNZa0NpeG9GdDY1ZEIzTXFyY0EwWFBvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85NC9iMzU1MTMtZWJkYi00NTUwLWE3ZDQtMTJmOWY3MzNkYzRm
LzEvNG1OdUF2RlZUM0RaY2FaV2hKd0J2ZjhUak9nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKhOJwDAN
BgkqhkiG9w0BAQsFAAOCAQEAUdo1n1wL84Yy+JVcwORHx8GLjHodgbbyj83E66DY
oYw7GOWLdjDxaWQXq8OjHO6zkg8VKA9kbcocKXaBj14iFDD7bfh7hWHysyDzO5UB
Weg4ul0PtIa9TRlzF4x24xRQynB6piuxzGgHBaGJqWQ0pYuq3pM/YG+MmxOQa+Lx
01gbluu4+H+sS9C7sRVPIbk71PH4CuBKb6LyblKwPTWzWgXrWrxX0MLnE+VxJ4jX
T0bEtN35GmgmSl7kKi8Vi98QmTY+/MKiHTZugoBZ53Yg4+LhRL/DwgbFIpJ4v9BL
omffGwkFLKXgc7A0D3F3Bpqbs5CgPxVCq2KTyVNoxV2vCw==
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:27 2025 by rpki-client on console.sobornost.net