Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/1-D0qTHooOxIdqt7ZIYnizCf8O3s.roa
File: 1-D0qTHooOxIdqt7ZIYnizCf8O3s.roa (raw, json)
Hash identifier: VGnUD5ogFXIvaPNBoPY9PC6FnMXacR8PIkSmw7ad/6c=
Subject key identifier: F8:3D:2A:4C:7A:28:3B:12:1D:AA:DE:D9:21:89:E2:CC:27:FC:3B:7B
Certificate issuer: /CN=58ad60da52671e9083cf39864eca2aa23241be9e
Certificate serial: 019428264805162BFC71DB291D55D359CB37
Authority key identifier: 58:AD:60:DA:52:67:1E:90:83:CF:39:86:4E:CA:2A:A2:32:41:BE:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WK1g2lJnHpCDzzmGTsoqojJBvp4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/1-D0qTHooOxIdqt7ZIYnizCf8O3s.roa
Signing time: Thu 02 Jan 2025 17:53:04 +0000
ROA not before: Thu 02 Jan 2025 17:53:04 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212477
IP address blocks: 2a0b:b480::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:26:48:05:16:2b:fc:71:db:29:1d:55:d3:59:cb:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58ad60da52671e9083cf39864eca2aa23241be9e
Validity
Not Before: Jan 2 17:53:04 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f83d2a4c7a283b121daaded92189e2cc27fc3b7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:d1:2f:0a:e6:19:d4:7a:89:4c:cd:9b:3d:ec:
76:ec:d7:f7:26:48:1c:35:fb:40:ea:36:cd:41:7d:
eb:fe:b2:11:63:bb:ef:fa:40:75:6f:46:e0:75:7a:
e9:fb:43:8d:cc:23:34:f3:fa:27:df:b4:5b:dd:0d:
35:21:02:a3:4f:2f:e9:49:c6:06:d1:73:fe:fd:b1:
0f:56:44:da:1d:9b:6a:c0:f0:13:76:0c:09:0a:76:
1c:f4:1e:ed:59:65:06:71:9c:e4:d4:6d:37:ef:ff:
8e:0b:23:c9:86:3f:2b:c5:85:4a:97:be:ea:cb:26:
d1:df:28:bc:d7:72:f1:f7:81:35:87:7e:6c:a6:55:
f1:84:f8:ee:0d:80:1c:ae:19:55:7a:ec:90:bc:d4:
e3:1f:6a:7b:4b:33:8d:6c:aa:74:f7:f8:3a:6f:97:
e9:0e:70:87:f5:32:87:65:85:c3:ae:f4:dc:87:ac:
d1:a0:78:8c:fc:d7:f2:f6:6e:b6:86:11:50:0a:28:
4e:97:1a:9c:7a:97:45:3f:9b:77:65:aa:54:45:61:
30:12:de:72:e0:26:96:62:8e:04:d8:91:8d:79:ec:
3c:38:79:d7:cf:a5:da:49:58:ed:d5:fb:de:13:ce:
fd:27:6a:b4:f0:2c:66:da:3d:d6:21:c2:bf:c2:bf:
b8:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:3D:2A:4C:7A:28:3B:12:1D:AA:DE:D9:21:89:E2:CC:27:FC:3B:7B
X509v3 Authority Key Identifier:
keyid:58:AD:60:DA:52:67:1E:90:83:CF:39:86:4E:CA:2A:A2:32:41:BE:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WK1g2lJnHpCDzzmGTsoqojJBvp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/1-D0qTHooOxIdqt7ZIYnizCf8O3s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/WK1g2lJnHpCDzzmGTsoqojJBvp4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:b480::/29
Signature Algorithm: sha256WithRSAEncryption
c2:27:c3:b0:9f:76:4f:b5:54:ef:ab:78:ee:c1:d5:64:42:71:
d2:17:79:5d:40:79:74:5a:cf:8a:03:e2:d2:6e:c4:9b:19:a0:
a0:4a:4f:e5:de:e2:9b:eb:ba:16:7e:37:43:da:70:01:f7:9d:
4e:6b:00:28:ae:be:e0:85:b0:d6:79:73:87:8a:ff:8f:ae:57:
f2:8e:e5:7a:1d:59:b0:f1:2a:0c:64:77:0c:a8:3f:c6:27:1b:
57:37:ca:45:20:6e:ce:a8:aa:06:c5:aa:e5:3b:3e:0b:bb:0e:
ec:7a:6f:81:4a:09:fb:8a:ab:7d:f0:d1:15:cf:cb:41:94:b1:
23:ec:97:84:19:d2:e6:92:77:50:22:b6:7a:ab:bf:55:58:90:
28:f0:62:b5:16:ab:af:43:1c:12:81:93:d2:ca:6e:1d:e7:60:
d4:2c:97:7c:95:3a:ea:26:03:64:35:0f:13:6e:71:15:be:e1:
ee:78:1e:b7:3e:78:46:e2:08:ed:8d:03:5f:e2:fa:76:73:e8:
f4:41:d3:72:f9:4c:b5:23:4d:bc:ae:5c:7b:8f:64:5b:0c:0e:
e9:49:73:c3:7b:09:b4:d3:39:0c:ff:e8:93:11:43:13:76:7e:
db:11:70:a1:29:16:2d:1e:8b:40:d5:32:7d:c8:b9:07:8f:01:
fd:6f:91:f1
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAZQoJkgFFiv8cdspHVXTWcs3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU4YWQ2MGRhNTI2NzFlOTA4M2NmMzk4NjRlY2EyYWEyMzI0
MWJlOWUwHhcNMjUwMTAyMTc1MzA0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmODNkMmE0YzdhMjgzYjEyMWRhYWRlZDkyMTg5ZTJjYzI3ZmMzYjdiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAudEvCuYZ1HqJTM2bPex27Nf3Jkgc
NftA6jbNQX3r/rIRY7vv+kB1b0bgdXrp+0ONzCM08/on37Rb3Q01IQKjTy/pScYG
0XP+/bEPVkTaHZtqwPATdgwJCnYc9B7tWWUGcZzk1G037/+OCyPJhj8rxYVKl77q
yybR3yi813Lx94E1h35splXxhPjuDYAcrhlVeuyQvNTjH2p7SzONbKp09/g6b5fp
DnCH9TKHZYXDrvTch6zRoHiM/Nfy9m62hhFQCihOlxqcepdFP5t3ZapURWEwEt5y
4CaWYo4E2JGNeew8OHnXz6XaSVjt1fveE879J2q08Cxm2j3WIcK/wr+4TQIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFPg9Kkx6KDsSHare2SGJ4swn/Dt7MB8GA1UdIwQY
MBaAFFitYNpSZx6Qg885hk7KKqIyQb6eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV0sxZzJsSm5IcENEenptR1Rzb3FvakpCdnA0LmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy83YTE5ODgtMjczNi00OWRjLWE5MDct
MTFiM2NmM2ZkNGUxLzEvMS1EMHFUSG9vT3hJZHF0N1pJWW5pekNmOE8zcy5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvYmMvN2ExOTg4LTI3MzYtNDlkYy1hOTA3LTExYjNjZjNmZDRl
MS8xL1dLMWcybEpuSHBDRHp6bUdUc29xb2pKQnZwNC5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFAyoLtIAw
DQYJKoZIhvcNAQELBQADggEBAMInw7Cfdk+1VO+reO7B1WRCcdIXeV1AeXRaz4oD
4tJuxJsZoKBKT+Xe4pvruhZ+N0PacAH3nU5rACiuvuCFsNZ5c4eK/4+uV/KO5Xod
WbDxKgxkdwyoP8YnG1c3ykUgbs6oqgbFquU7Pgu7Dux6b4FKCfuKq33w0RXPy0GU
sSPsl4QZ0uaSd1Aitnqrv1VYkCjwYrUWq69DHBKBk9LKbh3nYNQsl3yVOuomA2Q1
DxNucRW+4e54Hrc+eEbiCO2NA1/i+nZz6PRB03L5TLUjTbyuXHuPZFsMDulJc8N7
CbTTOQz/6JMRQxN2ftsRcKEpFi0ei0DVMn3IuQePAf1vkfE=
-----END CERTIFICATE-----
Generated at Thu Jan 23 19:16:16 2025 by rpki-client on console.sobornost.net