Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/lKN4UVZtN90tPiHbxWVbAiES2eo.roa
File: lKN4UVZtN90tPiHbxWVbAiES2eo.roa (raw, json)
Hash identifier: z/Q5abY5hFpeI2vwI0AV9WzD16kLOgpzqlnEO3K5QQg=
Subject key identifier: 94:A3:78:51:56:6D:37:DD:2D:3E:21:DB:C5:65:5B:02:21:12:D9:EA
Certificate issuer: /CN=58ad60da52671e9083cf39864eca2aa23241be9e
Certificate serial: 01942826493D217113123E605938A5595780
Authority key identifier: 58:AD:60:DA:52:67:1E:90:83:CF:39:86:4E:CA:2A:A2:32:41:BE:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WK1g2lJnHpCDzzmGTsoqojJBvp4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/lKN4UVZtN90tPiHbxWVbAiES2eo.roa
Signing time: Thu 02 Jan 2025 17:53:05 +0000
ROA not before: Thu 02 Jan 2025 17:53:05 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215427
IP address blocks: 2a13:d0c0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:26:49:3d:21:71:13:12:3e:60:59:38:a5:59:57:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58ad60da52671e9083cf39864eca2aa23241be9e
Validity
Not Before: Jan 2 17:53:05 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=94a37851566d37dd2d3e21dbc5655b022112d9ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:63:41:25:8a:da:ca:7d:35:14:af:b1:81:a7:
b1:1d:b7:53:b0:b0:82:ee:ff:b4:34:66:d6:33:17:
dc:b4:db:88:e0:18:de:cc:db:db:de:dd:4a:72:37:
3e:ea:8a:c5:48:f6:b6:e1:56:a4:61:97:66:2b:23:
b2:d5:05:49:ab:71:f1:69:98:81:6c:eb:18:75:f3:
89:a6:e8:1e:a2:e0:d1:dc:54:75:90:a8:8e:b1:9f:
b2:42:af:58:2f:4d:e4:57:8b:ea:77:06:87:b3:5e:
32:67:92:28:47:6e:0e:e6:61:c1:52:e2:cd:4c:a9:
84:0e:82:14:bd:36:bb:6d:78:35:68:59:59:84:c4:
9f:5d:3c:53:89:d4:79:49:ea:ce:32:b2:e0:3b:04:
81:9d:97:a5:a4:53:1e:bd:0e:b8:d0:f3:86:20:e3:
98:8b:c6:16:1b:4d:ef:89:f5:8b:fc:ed:dc:a0:70:
cf:bc:98:c2:fb:0d:09:b6:3f:43:68:e6:2c:dd:c0:
3c:fc:b3:34:e1:5b:bc:d8:16:d0:65:a5:89:54:3b:
d8:c2:8e:c2:e4:f2:11:a1:f3:7f:b6:a2:4a:fb:a5:
a7:65:08:f2:e1:7f:05:f2:dc:e1:f3:1d:2a:10:db:
62:0b:e6:9f:74:05:f1:1c:cd:65:5d:40:d0:2b:2c:
33:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:A3:78:51:56:6D:37:DD:2D:3E:21:DB:C5:65:5B:02:21:12:D9:EA
X509v3 Authority Key Identifier:
keyid:58:AD:60:DA:52:67:1E:90:83:CF:39:86:4E:CA:2A:A2:32:41:BE:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WK1g2lJnHpCDzzmGTsoqojJBvp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/lKN4UVZtN90tPiHbxWVbAiES2eo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/WK1g2lJnHpCDzzmGTsoqojJBvp4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:d0c0::/29
Signature Algorithm: sha256WithRSAEncryption
24:70:54:d6:3f:b0:14:d4:62:14:a8:c1:c6:6d:e8:bb:83:94:
fc:5a:53:a5:d0:85:e6:ca:44:e7:ad:4e:40:30:aa:31:73:8f:
2b:ef:7c:72:ae:81:3b:5b:d7:11:60:35:30:95:ab:2e:d8:cd:
18:b4:30:de:03:d5:ab:6c:08:9c:e3:4c:40:3e:6b:74:f1:46:
1d:ca:60:85:04:4e:a7:70:f9:c3:0f:01:d9:1a:41:02:dd:53:
67:4d:07:f7:27:0d:fb:79:5b:e5:29:8f:59:dd:c3:9e:ab:52:
28:bb:a5:d4:61:a1:29:3f:ea:ff:b2:26:35:08:df:3f:97:d7:
c2:1a:38:8b:1b:ae:6e:27:93:bb:7e:b4:44:e9:fd:10:c1:0e:
a3:42:b7:36:4c:27:7a:64:f9:73:f5:73:af:a2:86:c7:a2:95:
27:b5:b2:13:85:90:39:0d:26:a2:dd:a1:df:0d:7a:77:99:59:
a6:4f:1a:ff:8d:15:e9:18:59:78:86:d0:f0:79:f0:f7:d6:d2:
5a:44:9e:ab:af:f3:8f:88:fd:24:26:c1:a6:16:5f:4a:61:82:
e3:a7:73:40:85:4a:90:34:b0:c5:e4:5f:31:a6:45:ae:06:a5:
a7:cc:7f:0d:d9:94:c6:6b:24:6c:58:d2:ca:44:39:84:2b:20:
45:d7:46:1c
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAZQoJkk9IXETEj5gWTilWVeAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU4YWQ2MGRhNTI2NzFlOTA4M2NmMzk4NjRlY2EyYWEyMzI0
MWJlOWUwHhcNMjUwMTAyMTc1MzA1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NGEzNzg1MTU2NmQzN2RkMmQzZTIxZGJjNTY1NWIwMjIxMTJkOWVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnWNBJYrayn01FK+xgaexHbdTsLCC
7v+0NGbWMxfctNuI4BjezNvb3t1Kcjc+6orFSPa24VakYZdmKyOy1QVJq3HxaZiB
bOsYdfOJpugeouDR3FR1kKiOsZ+yQq9YL03kV4vqdwaHs14yZ5IoR24O5mHBUuLN
TKmEDoIUvTa7bXg1aFlZhMSfXTxTidR5SerOMrLgOwSBnZelpFMevQ640POGIOOY
i8YWG03vifWL/O3coHDPvJjC+w0Jtj9DaOYs3cA8/LM04Vu82BbQZaWJVDvYwo7C
5PIRofN/tqJK+6WnZQjy4X8F8tzh8x0qENtiC+afdAXxHM1lXUDQKywzmwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFJSjeFFWbTfdLT4h28VlWwIhEtnqMB8GA1UdIwQY
MBaAFFitYNpSZx6Qg885hk7KKqIyQb6eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV0sxZzJsSm5IcENEenptR1Rzb3FvakpCdnA0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy83YTE5ODgtMjczNi00OWRjLWE5MDct
MTFiM2NmM2ZkNGUxLzEvbEtONFVWWnROOTB0UGlIYnhXVmJBaUVTMmVvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYy83YTE5ODgtMjczNi00OWRjLWE5MDctMTFiM2NmM2ZkNGUx
LzEvV0sxZzJsSm5IcENEenptR1Rzb3FvakpCdnA0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhPQwDAN
BgkqhkiG9w0BAQsFAAOCAQEAJHBU1j+wFNRiFKjBxm3ou4OU/FpTpdCF5spE561O
QDCqMXOPK+98cq6BO1vXEWA1MJWrLtjNGLQw3gPVq2wInONMQD5rdPFGHcpghQRO
p3D5ww8B2RpBAt1TZ00H9ycN+3lb5SmPWd3DnqtSKLul1GGhKT/q/7ImNQjfP5fX
who4ixuubieTu360ROn9EMEOo0K3NkwnemT5c/Vzr6KGx6KVJ7WyE4WQOQ0mot2h
3w16d5lZpk8a/40V6RhZeIbQ8Hnw99bSWkSeq6/zj4j9JCbBphZfSmGC46dzQIVK
kDSwxeRfMaZFrgalp8x/DdmUxmskbFjSykQ5hCsgRddGHA==
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:48 2025 by rpki-client on console.sobornost.net