Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/c15e99-2965-476f-9aef-8a273f4ad15d/1/heyE1gtTjLmdNCX82aeJdr0FIAo.roa
File: heyE1gtTjLmdNCX82aeJdr0FIAo.roa (raw, json)
Hash identifier: ZejOC6mn1mNz9pg99nxI8IIG+SDEeycsyMgYYFPq42A=
Subject key identifier: 85:EC:84:D6:0B:53:8C:B9:9D:34:25:FC:D9:A7:89:76:BD:05:20:0A
Certificate issuer: /CN=fa7eb1115130fac94091061e31462a565226885a
Certificate serial: 019425221B95339B382AF6576EA3FA3FE921
Authority key identifier: FA:7E:B1:11:51:30:FA:C9:40:91:06:1E:31:46:2A:56:52:26:88:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-n6xEVEw-slAkQYeMUYqVlImiFo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/c15e99-2965-476f-9aef-8a273f4ad15d/1/heyE1gtTjLmdNCX82aeJdr0FIAo.roa
Signing time: Thu 02 Jan 2025 03:49:39 +0000
ROA not before: Thu 02 Jan 2025 03:49:39 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 202647
IP address blocks: 2a13:bc2:1000::/36 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:22:1b:95:33:9b:38:2a:f6:57:6e:a3:fa:3f:e9:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa7eb1115130fac94091061e31462a565226885a
Validity
Not Before: Jan 2 03:49:39 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=85ec84d60b538cb99d3425fcd9a78976bd05200a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:06:ca:63:02:89:0c:8a:38:21:77:f7:03:9d:
42:c4:20:eb:8b:df:23:f0:8e:1a:ca:ad:db:b8:1a:
63:ff:8c:39:e8:85:a8:cd:9c:60:a1:8c:35:44:2b:
56:1e:b6:df:94:e0:b2:fc:d2:71:86:45:fa:d3:c1:
41:90:75:78:18:ec:3c:9c:98:86:97:5a:67:e2:37:
61:92:ad:72:81:c8:00:c6:6f:28:1a:2e:6d:7b:6d:
18:11:83:5e:f0:d4:d7:8e:07:2e:00:dc:da:25:07:
27:1f:75:54:b4:6b:a2:1c:46:24:30:fe:0f:56:ec:
e8:36:31:46:0f:c1:a5:77:5c:8b:8a:57:23:9c:b8:
b8:7d:93:ba:80:d1:6d:92:8b:89:6b:9c:9a:dc:91:
be:08:a1:3e:d3:5f:ac:b4:ce:c6:c4:d9:68:e1:62:
b6:fc:1b:a2:fc:02:3d:b3:fa:2d:4a:eb:59:ff:19:
6c:10:9a:42:ef:e0:36:fa:2b:5e:9c:4d:8b:d0:b3:
d0:4b:5d:bb:8f:36:2e:d5:c3:52:a8:c4:b3:e2:58:
48:73:32:82:b4:d2:6a:18:f0:32:94:bd:1b:81:c5:
0b:2b:5f:57:ce:3e:a0:f9:be:47:38:1d:7a:ce:da:
c8:f0:6a:38:a4:a1:6f:ed:91:e7:f5:de:4d:39:f4:
60:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:EC:84:D6:0B:53:8C:B9:9D:34:25:FC:D9:A7:89:76:BD:05:20:0A
X509v3 Authority Key Identifier:
keyid:FA:7E:B1:11:51:30:FA:C9:40:91:06:1E:31:46:2A:56:52:26:88:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-n6xEVEw-slAkQYeMUYqVlImiFo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/c15e99-2965-476f-9aef-8a273f4ad15d/1/heyE1gtTjLmdNCX82aeJdr0FIAo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/c15e99-2965-476f-9aef-8a273f4ad15d/1/1-n6xEVEw-slAkQYeMUYqVlImiFo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:bc2:1000::/36
Signature Algorithm: sha256WithRSAEncryption
47:b3:0e:8d:79:29:42:de:f2:30:85:fa:13:ce:aa:fe:57:fb:
97:19:0d:8d:8d:3d:7c:73:00:6a:6d:35:69:80:18:7d:b1:49:
b4:92:ca:6e:08:60:61:67:63:3a:f8:a1:90:cc:96:6b:2c:fc:
61:e0:b7:f9:60:f4:14:bd:10:27:9d:6d:f2:f0:17:68:d9:2e:
56:90:c1:ea:a6:a4:dc:5a:f9:4b:14:a7:c2:5f:a8:f0:da:43:
45:2b:bc:58:09:d9:bd:2c:c7:39:c4:fb:f6:b9:44:bf:7d:7e:
2d:9f:9b:32:ec:5e:33:2b:eb:c5:ea:2f:ba:0b:1a:0e:f2:5b:
09:a4:80:f3:3a:37:a1:6f:dc:df:0f:a9:3e:88:e9:b9:56:52:
8d:5d:a0:3d:e3:58:26:ec:91:9d:e0:39:f9:60:57:f6:e6:9d:
7b:5a:5e:16:77:9a:01:bd:0e:c1:81:9a:86:19:3d:de:0b:cc:
25:a6:e2:c0:01:6e:2f:15:99:57:19:b3:72:fd:21:15:9b:43:
01:70:46:11:05:17:3f:29:db:d1:4b:13:d0:57:6b:22:20:af:
3b:b9:bb:c6:65:57:41:84:00:28:fd:c0:07:04:41:02:4d:d3:
fd:3f:72:6b:5b:64:86:02:89:85:bf:6c:d8:a7:89:8b:c6:b7:
14:5b:0a:c0
-----BEGIN CERTIFICATE-----
MIIFATCCA+mgAwIBAgISAZQlIhuVM5s4KvZXbqP6P+khMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZhN2ViMTExNTEzMGZhYzk0MDkxMDYxZTMxNDYyYTU2NTIy
Njg4NWEwHhcNMjUwMTAyMDM0OTM5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NWVjODRkNjBiNTM4Y2I5OWQzNDI1ZmNkOWE3ODk3NmJkMDUyMDBhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqQbKYwKJDIo4IXf3A51CxCDri98j
8I4ayq3buBpj/4w56IWozZxgoYw1RCtWHrbflOCy/NJxhkX608FBkHV4GOw8nJiG
l1pn4jdhkq1ygcgAxm8oGi5te20YEYNe8NTXjgcuANzaJQcnH3VUtGuiHEYkMP4P
VuzoNjFGD8Gld1yLilcjnLi4fZO6gNFtkouJa5ya3JG+CKE+01+stM7GxNlo4WK2
/Bui/AI9s/otSutZ/xlsEJpC7+A2+itenE2L0LPQS127jzYu1cNSqMSz4lhIczKC
tNJqGPAylL0bgcULK19Xzj6g+b5HOB16ztrI8Go4pKFv7ZHn9d5NOfRgSQIDAQAB
o4ICDTCCAgkwHQYDVR0OBBYEFIXshNYLU4y5nTQl/NmniXa9BSAKMB8GA1UdIwQY
MBaAFPp+sRFRMPrJQJEGHjFGKlZSJohaMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1uNnhFVkV3LXNsQWtRWWVNVVlxVmxJbWlGby5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmMvYzE1ZTk5LTI5NjUtNDc2Zi05YWVm
LThhMjczZjRhZDE1ZC8xL2hleUUxZ3RUakxtZE5DWDgyYWVKZHIwRklBby5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvYmMvYzE1ZTk5LTI5NjUtNDc2Zi05YWVmLThhMjczZjRhZDE1
ZC8xLzEtbjZ4RVZFdy1zbEFrUVllTVVZcVZsSW1pRm8uY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQqEwvC
EDANBgkqhkiG9w0BAQsFAAOCAQEAR7MOjXkpQt7yMIX6E86q/lf7lxkNjY09fHMA
am01aYAYfbFJtJLKbghgYWdjOvihkMyWayz8YeC3+WD0FL0QJ51t8vAXaNkuVpDB
6qak3Fr5SxSnwl+o8NpDRSu8WAnZvSzHOcT79rlEv31+LZ+bMuxeMyvrxeovugsa
DvJbCaSA8zo3oW/c3w+pPojpuVZSjV2gPeNYJuyRneA5+WBX9uade1peFneaAb0O
wYGahhk93gvMJabiwAFuLxWZVxmzcv0hFZtDAXBGEQUXPynb0UsT0FdrIiCvO7m7
xmVXQYQAKP3ABwRBAk3T/T9ya1tkhgKJhb9s2KeJi8a3FFsKwA==
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:48 2025 by rpki-client on console.sobornost.net