Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/xjba_8x-MV3oFBb4-I_DxFhaOXA.roa
File: xjba_8x-MV3oFBb4-I_DxFhaOXA.roa (raw, json)
Hash identifier: 3H8g/M2QwqroH9BguEb1yqaMqskEljqIWHEwETzZ04Y=
Subject key identifier: C6:36:DA:FF:CC:7E:31:5D:E8:14:16:F8:F8:8F:C3:C4:58:5A:39:70
Certificate issuer: /CN=58ad60da52671e9083cf39864eca2aa23241be9e
Certificate serial: 0194E6D44CDC5F752D7DA1CF56B571E5F11E
Authority key identifier: 58:AD:60:DA:52:67:1E:90:83:CF:39:86:4E:CA:2A:A2:32:41:BE:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WK1g2lJnHpCDzzmGTsoqojJBvp4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/xjba_8x-MV3oFBb4-I_DxFhaOXA.roa
Signing time: Sat 08 Feb 2025 18:31:00 +0000
ROA not before: Sat 08 Feb 2025 18:31:00 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 33042
IP address blocks: 2a13:dcc0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:e6:d4:4c:dc:5f:75:2d:7d:a1:cf:56:b5:71:e5:f1:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58ad60da52671e9083cf39864eca2aa23241be9e
Validity
Not Before: Feb 8 18:31:00 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c636daffcc7e315de81416f8f88fc3c4585a3970
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:7f:c0:e6:fd:1f:f2:fb:60:95:62:88:35:ed:
97:dc:30:f8:af:49:18:18:68:9e:f6:18:dc:35:56:
86:0f:fc:1c:8a:aa:ee:80:b6:53:4a:02:60:05:70:
31:09:2a:c4:a1:d2:b3:e2:30:ae:b0:16:4d:f1:7e:
cc:69:1d:22:e1:df:1d:37:67:fb:d6:b7:fa:af:82:
3c:32:3d:6a:9b:11:52:a7:0a:3d:5c:e1:4f:ce:67:
3b:a4:3b:8f:c2:ed:ba:e7:cc:8b:18:d7:cf:50:f0:
74:6f:d9:c0:49:fe:30:db:fe:fb:b5:3d:c6:9a:ff:
92:4f:3d:d9:d5:ae:3f:10:2e:33:e0:a3:21:3f:86:
e4:2f:27:62:20:9a:71:50:b5:c8:6c:0c:f3:dc:d5:
e1:54:9b:6e:02:55:a1:8b:cf:8e:26:11:4b:87:12:
6d:bc:f8:32:50:04:a5:4a:2c:81:a7:86:b7:db:d3:
5e:76:1d:d2:94:2a:ee:20:e0:d2:d9:99:b2:86:fe:
55:fa:ca:60:9a:07:3d:8e:dd:59:cf:e0:d0:48:a3:
bc:96:ce:cc:a7:1b:d7:2a:74:6a:08:5a:af:a4:1f:
24:e9:01:7c:79:f8:3e:89:a6:e0:0c:b9:17:7f:f2:
ef:2b:cc:df:e7:3a:53:02:85:ae:52:0e:7c:39:97:
2a:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:36:DA:FF:CC:7E:31:5D:E8:14:16:F8:F8:8F:C3:C4:58:5A:39:70
X509v3 Authority Key Identifier:
keyid:58:AD:60:DA:52:67:1E:90:83:CF:39:86:4E:CA:2A:A2:32:41:BE:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WK1g2lJnHpCDzzmGTsoqojJBvp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/xjba_8x-MV3oFBb4-I_DxFhaOXA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/WK1g2lJnHpCDzzmGTsoqojJBvp4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:dcc0::/29
Signature Algorithm: sha256WithRSAEncryption
6c:56:62:7c:d9:80:69:e0:69:d2:5d:b5:ce:0d:1d:02:8b:83:
e0:8e:d4:dc:a4:96:e0:26:2d:c9:8a:65:eb:75:9c:4d:21:d7:
17:56:24:cc:50:95:f5:84:b1:fe:e6:fe:68:2b:f7:07:df:f7:
86:63:2f:35:f6:77:d6:da:8e:4d:58:e4:d4:67:8f:0f:08:a1:
4a:00:d9:bb:f1:ac:43:dc:89:22:ca:9c:50:ad:a7:57:97:a6:
8d:30:e2:86:cd:77:71:83:4a:ce:4e:54:3a:dc:2d:fc:bf:4a:
86:d8:88:d1:3d:12:2f:69:67:d3:70:e5:90:64:38:f3:66:0e:
31:d2:30:1d:aa:cf:e9:b7:d5:94:74:75:55:4f:73:34:37:47:
48:8c:17:f2:ce:83:f9:09:00:f4:c0:11:99:29:ce:35:e0:32:
09:a0:ce:d7:a3:85:e3:61:a1:2a:20:ad:3a:76:fb:8e:91:97:
91:b4:04:f2:ce:ec:2d:5d:9a:4e:2a:8e:f4:e7:37:f8:54:e1:
ab:3a:40:c0:fb:86:7b:a3:77:5b:67:82:f7:47:53:9c:e0:ad:
e8:ef:bf:5b:da:9c:ef:f0:cc:25:e5:d2:51:30:32:92:c3:72:
95:f8:a2:81:da:7b:91:1c:14:2f:23:4d:c9:81:a9:23:61:0d:
7d:24:1c:af
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAZTm1EzcX3UtfaHPVrVx5fEeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU4YWQ2MGRhNTI2NzFlOTA4M2NmMzk4NjRlY2EyYWEyMzI0
MWJlOWUwHhcNMjUwMjA4MTgzMTAwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNjM2ZGFmZmNjN2UzMTVkZTgxNDE2ZjhmODhmYzNjNDU4NWEzOTcwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwn/A5v0f8vtglWKINe2X3DD4r0kY
GGie9hjcNVaGD/wciqrugLZTSgJgBXAxCSrEodKz4jCusBZN8X7MaR0i4d8dN2f7
1rf6r4I8Mj1qmxFSpwo9XOFPzmc7pDuPwu2658yLGNfPUPB0b9nASf4w2/77tT3G
mv+STz3Z1a4/EC4z4KMhP4bkLydiIJpxULXIbAzz3NXhVJtuAlWhi8+OJhFLhxJt
vPgyUASlSiyBp4a329Nedh3SlCruIODS2Zmyhv5V+spgmgc9jt1Zz+DQSKO8ls7M
pxvXKnRqCFqvpB8k6QF8efg+iabgDLkXf/LvK8zf5zpTAoWuUg58OZcqqwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFMY22v/MfjFd6BQW+PiPw8RYWjlwMB8GA1UdIwQY
MBaAFFitYNpSZx6Qg885hk7KKqIyQb6eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV0sxZzJsSm5IcENEenptR1Rzb3FvakpCdnA0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy83YTE5ODgtMjczNi00OWRjLWE5MDct
MTFiM2NmM2ZkNGUxLzEveGpiYV84eC1NVjNvRkJiNC1JX0R4RmhhT1hBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYy83YTE5ODgtMjczNi00OWRjLWE5MDctMTFiM2NmM2ZkNGUx
LzEvV0sxZzJsSm5IcENEenptR1Rzb3FvakpCdnA0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhPcwDAN
BgkqhkiG9w0BAQsFAAOCAQEAbFZifNmAaeBp0l21zg0dAouD4I7U3KSW4CYtyYpl
63WcTSHXF1YkzFCV9YSx/ub+aCv3B9/3hmMvNfZ31tqOTVjk1GePDwihSgDZu/Gs
Q9yJIsqcUK2nV5emjTDihs13cYNKzk5UOtwt/L9KhtiI0T0SL2ln03DlkGQ482YO
MdIwHarP6bfVlHR1VU9zNDdHSIwX8s6D+QkA9MARmSnONeAyCaDO16OF42GhKiCt
Onb7jpGXkbQE8s7sLV2aTiqO9Oc3+FThqzpAwPuGe6N3W2eC90dTnOCt6O+/W9qc
7/DMJeXSUTAyksNylfiigdp7kRwULyNNyYGpI2ENfSQcrw==
-----END CERTIFICATE-----
Generated at Sat Mar 8 04:54:38 2025 by rpki-client on console.sobornost.net