Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/8fe4db-8c5b-40f5-9360-e596e524cabe/1/1-rj8FQlhLsWvMYMbvavcL6U5CiM.roa
File: 1-rj8FQlhLsWvMYMbvavcL6U5CiM.roa (raw, json)
Hash identifier: 8E6Qmt3o3cHK+i2R5luR1t+APaNbJIgG6LOjICsFkYo=
Subject key identifier: FA:B8:FC:15:09:61:2E:C5:AF:31:83:1B:BD:AB:DC:2F:A5:39:0A:23
Certificate issuer: /CN=5b797fcd8433b1f489f891194862fc36bfbef66b
Certificate serial: 01958E2C688EB19833A308BFA7809EAC9430
Authority key identifier: 5B:79:7F:CD:84:33:B1:F4:89:F8:91:19:48:62:FC:36:BF:BE:F6:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W3l_zYQzsfSJ-JEZSGL8Nr--9ms.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/8fe4db-8c5b-40f5-9360-e596e524cabe/1/1-rj8FQlhLsWvMYMbvavcL6U5CiM.roa
Signing time: Thu 13 Mar 2025 06:23:49 +0000
ROA not before: Thu 13 Mar 2025 06:23:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215994
IP address blocks: 2a14:ba80::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8e:2c:68:8e:b1:98:33:a3:08:bf:a7:80:9e:ac:94:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b797fcd8433b1f489f891194862fc36bfbef66b
Validity
Not Before: Mar 13 06:23:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=fab8fc1509612ec5af31831bbdabdc2fa5390a23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:c4:3f:78:cb:bb:ff:d9:76:9d:31:86:54:94:
6f:a4:96:db:e1:eb:02:ab:94:dc:53:a8:7c:28:60:
40:16:5e:b0:cf:25:e7:a9:a7:ff:59:ae:f3:81:5d:
4b:8f:4f:cc:9b:d0:63:9e:93:24:7c:9d:ab:53:38:
71:8d:29:2d:d2:db:de:cc:b6:01:88:cb:94:e5:36:
bf:10:f0:25:be:d1:67:28:36:f2:07:e0:f0:b8:9d:
1a:60:52:fb:be:96:a0:e3:e4:d2:89:56:c3:d5:43:
4e:54:d4:2f:27:b1:8c:59:10:07:c9:93:7b:44:e2:
08:8d:20:41:00:0a:aa:7e:4e:cf:29:b2:0c:33:09:
cf:69:14:8e:80:4e:de:73:cb:b9:19:48:43:20:bc:
1c:a4:ad:57:2a:2d:44:04:c8:62:04:e0:69:2a:89:
a9:9c:32:25:a7:66:ff:4b:c6:41:94:cb:c5:95:c3:
23:23:27:b4:1e:69:df:56:aa:da:80:ff:73:d0:44:
ad:a6:c1:3f:5f:1b:4c:44:b2:64:ce:d6:87:ed:42:
ad:90:f1:c3:4f:bc:f8:c9:f4:57:aa:f1:55:a8:0b:
d1:00:5e:37:e1:7c:81:34:ad:be:1b:e0:28:91:81:
be:42:54:4b:2d:c2:b6:92:c2:f4:21:0e:02:b2:e8:
fb:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:B8:FC:15:09:61:2E:C5:AF:31:83:1B:BD:AB:DC:2F:A5:39:0A:23
X509v3 Authority Key Identifier:
keyid:5B:79:7F:CD:84:33:B1:F4:89:F8:91:19:48:62:FC:36:BF:BE:F6:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W3l_zYQzsfSJ-JEZSGL8Nr--9ms.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/8fe4db-8c5b-40f5-9360-e596e524cabe/1/1-rj8FQlhLsWvMYMbvavcL6U5CiM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/8fe4db-8c5b-40f5-9360-e596e524cabe/1/W3l_zYQzsfSJ-JEZSGL8Nr--9ms.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:ba80::/29
Signature Algorithm: sha256WithRSAEncryption
30:d5:1e:95:58:ef:fc:b6:5a:d5:e0:aa:2b:44:23:90:5f:00:
b8:69:ab:fe:2f:b4:3a:9d:60:60:b6:e5:b3:4f:01:40:63:fc:
d6:bb:f2:14:f2:39:63:77:52:f3:ee:f7:d9:54:96:9a:7f:b2:
f9:02:69:b3:ae:87:6c:b6:58:7b:32:4e:82:0e:e6:dc:43:66:
9d:2f:c2:51:e4:8a:4c:dd:5c:d7:2f:6c:69:5c:1f:e5:c2:e3:
13:a5:c3:8f:0f:5d:42:b3:43:fa:11:59:ea:02:39:28:cf:81:
d2:66:95:96:ed:74:97:c0:9d:67:89:75:00:1f:c4:80:e2:6b:
0c:dd:c2:c3:7c:8d:0c:75:96:1e:2d:ec:ae:86:36:01:0b:43:
c8:b4:38:e4:3a:f2:ff:10:05:a0:f6:81:2b:eb:bb:31:61:75:
6d:64:a4:a6:13:c9:78:e7:52:9d:92:1e:e8:60:a2:ef:53:08:
ab:1d:80:a4:76:88:12:60:fd:92:36:47:03:77:6a:47:47:fb:
3e:fe:72:ab:36:15:39:04:da:a4:59:18:57:1a:16:45:39:f8:
f5:10:5c:48:1e:ca:8d:d1:a2:4f:bc:cb:34:09:7b:89:08:52:
17:8e:e9:47:2b:87:e9:75:f7:6d:7f:c5:cb:55:df:d8:86:4d:
94:bf:2d:e0
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAZWOLGiOsZgzowi/p4CerJQwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDViNzk3ZmNkODQzM2IxZjQ4OWY4OTExOTQ4NjJmYzM2YmZi
ZWY2NmIwHhcNMjUwMzEzMDYyMzQ5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmYWI4ZmMxNTA5NjEyZWM1YWYzMTgzMWJiZGFiZGMyZmE1MzkwYTIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvsQ/eMu7/9l2nTGGVJRvpJbb4esC
q5TcU6h8KGBAFl6wzyXnqaf/Wa7zgV1Lj0/Mm9BjnpMkfJ2rUzhxjSkt0tvezLYB
iMuU5Ta/EPAlvtFnKDbyB+DwuJ0aYFL7vpag4+TSiVbD1UNOVNQvJ7GMWRAHyZN7
ROIIjSBBAAqqfk7PKbIMMwnPaRSOgE7ec8u5GUhDILwcpK1XKi1EBMhiBOBpKomp
nDIlp2b/S8ZBlMvFlcMjIye0HmnfVqragP9z0EStpsE/XxtMRLJkztaH7UKtkPHD
T7z4yfRXqvFVqAvRAF434XyBNK2+G+AokYG+QlRLLcK2ksL0IQ4Csuj70QIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFPq4/BUJYS7FrzGDG72r3C+lOQojMB8GA1UdIwQY
MBaAFFt5f82EM7H0ifiRGUhi/Da/vvZrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVzNsX3pZUXpzZlNKLUpFWlNHTDhOci0tOW1zLmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC84ZmU0ZGItOGM1Yi00MGY1LTkzNjAt
ZTU5NmU1MjRjYWJlLzEvMS1yajhGUWxoTHNXdk1ZTWJ2YXZjTDZVNUNpTS5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvYjQvOGZlNGRiLThjNWItNDBmNS05MzYwLWU1OTZlNTI0Y2Fi
ZS8xL1czbF96WVF6c2ZTSi1KRVpTR0w4TnItLTltcy5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFAyoUuoAw
DQYJKoZIhvcNAQELBQADggEBADDVHpVY7/y2WtXgqitEI5BfALhpq/4vtDqdYGC2
5bNPAUBj/Na78hTyOWN3UvPu99lUlpp/svkCabOuh2y2WHsyToIO5txDZp0vwlHk
ikzdXNcvbGlcH+XC4xOlw48PXUKzQ/oRWeoCOSjPgdJmlZbtdJfAnWeJdQAfxIDi
awzdwsN8jQx1lh4t7K6GNgELQ8i0OOQ68v8QBaD2gSvruzFhdW1kpKYTyXjnUp2S
Huhgou9TCKsdgKR2iBJg/ZI2RwN3akdH+z7+cqs2FTkE2qRZGFcaFkU5+PUQXEge
yo3Rok+8yzQJe4kIUheO6Ucrh+l1921/xctV39iGTZS/LeA=
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:41 2025 by rpki-client on console.sobornost.net