Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/3e2165-3bb5-45c3-989a-2953894b1f6d/1/K0e97lq8to45G4bjAY8oagFU4QI.roa
File: K0e97lq8to45G4bjAY8oagFU4QI.roa (raw, json)
Hash identifier: bTG+6EZ7O3xegYBqouKDHymp2EvAOOtKRJXkBxvyI8c=
Subject key identifier: 2B:47:BD:EE:5A:BC:B6:8E:39:1B:86:E3:01:8F:28:6A:01:54:E1:02
Certificate issuer: /CN=351a14ce9d25239b92fe5abce532515044c1aba4
Certificate serial: 01942368F2A24C5E87A98B78A0C0EBC2826A
Authority key identifier: 35:1A:14:CE:9D:25:23:9B:92:FE:5A:BC:E5:32:51:50:44:C1:AB:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NRoUzp0lI5uS_lq85TJRUETBq6Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/3e2165-3bb5-45c3-989a-2953894b1f6d/1/K0e97lq8to45G4bjAY8oagFU4QI.roa
Signing time: Wed 01 Jan 2025 19:47:47 +0000
ROA not before: Wed 01 Jan 2025 19:47:47 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 39511
IP address blocks: 2a05:91c3:1::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:68:f2:a2:4c:5e:87:a9:8b:78:a0:c0:eb:c2:82:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=351a14ce9d25239b92fe5abce532515044c1aba4
Validity
Not Before: Jan 1 19:47:47 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2b47bdee5abcb68e391b86e3018f286a0154e102
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:ee:5c:e3:4c:65:3f:07:c7:dc:8b:2a:db:f4:
4d:a2:73:ec:f0:3c:f2:92:77:f5:2f:ca:aa:03:ae:
ec:8c:e4:38:dd:fb:62:28:6d:7a:58:4e:c1:18:32:
3e:04:6e:eb:d8:69:cf:c0:b2:17:c5:32:b5:db:8b:
ea:e5:2b:3e:1b:e1:70:b1:ac:33:45:57:42:a6:1d:
fa:2d:8e:d1:38:21:7d:7f:20:bb:b7:6a:e0:8f:72:
2c:f6:83:a0:54:c2:51:9b:74:a9:99:30:70:3b:9a:
ba:9c:98:4b:73:c9:33:5b:37:cb:2b:f7:b7:c4:96:
93:79:cc:33:fc:64:28:7f:2f:d0:07:7b:3a:e6:73:
04:f4:d5:16:00:a4:eb:6a:2b:dd:34:fe:bc:62:c6:
ce:2a:8f:5e:4f:21:1e:ed:89:08:a9:7e:8d:cf:24:
b9:c9:17:38:ec:d4:43:fa:04:2c:80:e2:1e:74:77:
0a:19:6b:45:c5:7c:19:d7:1d:44:98:b4:34:e4:64:
c5:65:fb:eb:b3:3e:9e:42:19:77:a5:5c:fb:ab:0a:
25:87:87:43:af:95:53:ab:9a:2d:04:55:79:b1:da:
28:9d:a3:c5:ed:8c:64:07:8c:04:c6:59:c2:ae:d8:
fa:a2:bc:ab:e5:00:46:46:8f:7b:96:1a:c8:35:d6:
72:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:47:BD:EE:5A:BC:B6:8E:39:1B:86:E3:01:8F:28:6A:01:54:E1:02
X509v3 Authority Key Identifier:
keyid:35:1A:14:CE:9D:25:23:9B:92:FE:5A:BC:E5:32:51:50:44:C1:AB:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NRoUzp0lI5uS_lq85TJRUETBq6Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/3e2165-3bb5-45c3-989a-2953894b1f6d/1/K0e97lq8to45G4bjAY8oagFU4QI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/3e2165-3bb5-45c3-989a-2953894b1f6d/1/NRoUzp0lI5uS_lq85TJRUETBq6Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:91c3:1::/48
Signature Algorithm: sha256WithRSAEncryption
83:1b:6d:72:e3:fa:79:b7:ee:f1:7a:08:e9:a2:b6:1e:04:4f:
b1:fd:a5:e8:db:6d:4c:99:36:c2:45:c5:29:a1:12:b6:55:9a:
fd:61:55:7a:af:c1:52:9b:0c:f4:ee:b4:5e:4e:5c:1e:1f:7b:
74:6c:f1:51:97:bf:86:b7:37:10:a6:84:09:36:98:9c:eb:85:
05:39:4e:84:a5:46:7c:3b:53:f6:66:7f:35:af:df:ec:5b:2a:
72:25:df:4b:88:40:df:65:3f:b7:63:36:81:a3:ca:8c:e3:bc:
00:a6:ef:4d:52:ca:2a:25:91:ca:c7:77:2a:4d:36:5a:96:7c:
a9:b7:20:d7:81:e6:01:eb:5d:28:bc:be:e7:f3:ba:53:16:18:
6f:19:cf:4e:9c:b6:8c:b8:41:e4:ad:78:5f:d5:0a:2f:c5:5f:
db:63:ed:60:c5:01:14:fd:b0:77:3c:39:2f:3b:d7:ab:8b:73:
5d:fa:ae:4f:74:b0:92:5a:2e:54:25:10:75:2f:6d:dd:58:2d:
42:8e:79:20:6b:90:01:cb:58:92:d2:1f:d2:b7:e3:7c:4a:76:
b6:fa:09:f9:d6:34:21:a9:65:35:27:1a:19:0e:af:ea:9b:16:
7b:8d:46:e6:61:ee:2a:06:ef:eb:e5:8e:b1:ea:d0:a1:86:05:
eb:7e:dc:a5
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAZQjaPKiTF6HqYt4oMDrwoJqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1MWExNGNlOWQyNTIzOWI5MmZlNWFiY2U1MzI1MTUwNDRj
MWFiYTQwHhcNMjUwMTAxMTk0NzQ3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyYjQ3YmRlZTVhYmNiNjhlMzkxYjg2ZTMwMThmMjg2YTAxNTRlMTAyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr+5c40xlPwfH3Isq2/RNonPs8Dzy
knf1L8qqA67sjOQ43ftiKG16WE7BGDI+BG7r2GnPwLIXxTK124vq5Ss+G+Fwsawz
RVdCph36LY7ROCF9fyC7t2rgj3Is9oOgVMJRm3SpmTBwO5q6nJhLc8kzWzfLK/e3
xJaTecwz/GQofy/QB3s65nME9NUWAKTraivdNP68YsbOKo9eTyEe7YkIqX6NzyS5
yRc47NRD+gQsgOIedHcKGWtFxXwZ1x1EmLQ05GTFZfvrsz6eQhl3pVz7qwolh4dD
r5VTq5otBFV5sdoonaPF7YxkB4wExlnCrtj6oryr5QBGRo97lhrINdZygwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFCtHve5avLaOORuG4wGPKGoBVOECMB8GA1UdIwQY
MBaAFDUaFM6dJSObkv5avOUyUVBEwaukMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTlJvVXpwMGxJNXVTX2xxODVUSlJVRVRCcTZRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYy8zZTIxNjUtM2JiNS00NWMzLTk4OWEt
Mjk1Mzg5NGIxZjZkLzEvSzBlOTdscTh0bzQ1RzRiakFZOG9hZ0ZVNFFJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYy8zZTIxNjUtM2JiNS00NWMzLTk4OWEtMjk1Mzg5NGIxZjZk
LzEvTlJvVXpwMGxJNXVTX2xxODVUSlJVRVRCcTZRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgWRwwAB
MA0GCSqGSIb3DQEBCwUAA4IBAQCDG21y4/p5t+7xegjporYeBE+x/aXo221MmTbC
RcUpoRK2VZr9YVV6r8FSmwz07rReTlweH3t0bPFRl7+GtzcQpoQJNpic64UFOU6E
pUZ8O1P2Zn81r9/sWypyJd9LiEDfZT+3YzaBo8qM47wApu9NUsoqJZHKx3cqTTZa
lnyptyDXgeYB610ovL7n87pTFhhvGc9OnLaMuEHkrXhf1QovxV/bY+1gxQEU/bB3
PDkvO9eri3Nd+q5PdLCSWi5UJRB1L23dWC1Cjnkga5ABy1iS0h/St+N8Sna2+gn5
1jQhqWU1JxoZDq/qmxZ7jUbmYe4qBu/r5Y6x6tChhgXrftyl
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:32 2025 by rpki-client on console.sobornost.net