Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/22dcc8-e272-489e-886e-b4dcf8cea35a/1/6wMvK7U00knk7Sbj2nJm7vK-JZg.roa
File: 6wMvK7U00knk7Sbj2nJm7vK-JZg.roa (raw, json)
Hash identifier: jJMUZ+x65B2/nrC5W+fwDZUjmdqOosi5Z+egTtKKub0=
Subject key identifier: EB:03:2F:2B:B5:34:D2:49:E4:ED:26:E3:DA:72:66:EE:F2:BE:25:98
Certificate issuer: /CN=b8735eb2cd2c4d8cf5bf3d7507d84d603545dfe3
Certificate serial: 0195184BE802DB52F0A25F607FBF71A69AAE
Authority key identifier: B8:73:5E:B2:CD:2C:4D:8C:F5:BF:3D:75:07:D8:4D:60:35:45:DF:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uHNess0sTYz1vz11B9hNYDVF3-M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/22dcc8-e272-489e-886e-b4dcf8cea35a/1/6wMvK7U00knk7Sbj2nJm7vK-JZg.roa
Signing time: Tue 18 Feb 2025 09:03:02 +0000
ROA not before: Tue 18 Feb 2025 09:03:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213968
IP address blocks: 2a01:fb40::/29 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:18:4b:e8:02:db:52:f0:a2:5f:60:7f:bf:71:a6:9a:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8735eb2cd2c4d8cf5bf3d7507d84d603545dfe3
Validity
Not Before: Feb 18 09:03:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=eb032f2bb534d249e4ed26e3da7266eef2be2598
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:2d:ea:8c:3e:71:ab:6b:5b:b6:e7:cc:3f:f1:
06:d8:6a:b5:36:72:f6:e2:cf:3c:ae:7c:3a:aa:e3:
8f:e2:c8:f3:83:a7:c6:2b:ad:5e:dc:14:6e:d8:67:
ad:c8:fb:e9:b4:05:a5:29:0d:47:b8:06:f2:ff:57:
f5:a8:3f:25:e2:bd:29:8a:56:1e:cb:92:65:22:8c:
fd:f4:88:98:00:e5:80:b0:bf:17:4f:34:37:e4:a7:
69:d2:ac:0e:b0:b7:d8:ba:bf:ab:ca:ce:4e:9e:ee:
54:a9:c4:9b:cd:78:65:2b:c4:24:ce:bb:8a:c2:1d:
33:ca:e2:9d:38:98:78:fb:51:4a:34:23:f6:78:00:
82:dc:0d:8a:2f:2f:94:89:2c:4d:ce:36:10:19:a0:
7d:0f:f3:ab:25:41:00:14:7f:5a:0e:69:ac:b1:67:
f2:8e:c1:f6:b4:15:b0:18:ae:6d:77:8a:50:c8:77:
b2:ca:d9:e5:f7:e2:ce:93:d8:cc:ad:07:fb:cc:08:
46:66:32:d0:b0:c7:10:53:78:65:8b:99:72:25:a4:
9b:66:48:3e:b7:7c:20:e4:9c:4d:26:bc:81:32:2a:
2f:6c:77:4c:d5:f6:c9:fb:c3:fe:42:74:17:43:9d:
ac:e6:e1:6f:38:27:59:13:36:dc:97:19:48:6c:04:
8e:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:03:2F:2B:B5:34:D2:49:E4:ED:26:E3:DA:72:66:EE:F2:BE:25:98
X509v3 Authority Key Identifier:
keyid:B8:73:5E:B2:CD:2C:4D:8C:F5:BF:3D:75:07:D8:4D:60:35:45:DF:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uHNess0sTYz1vz11B9hNYDVF3-M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/22dcc8-e272-489e-886e-b4dcf8cea35a/1/6wMvK7U00knk7Sbj2nJm7vK-JZg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/22dcc8-e272-489e-886e-b4dcf8cea35a/1/uHNess0sTYz1vz11B9hNYDVF3-M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:fb40::/29
Signature Algorithm: sha256WithRSAEncryption
27:0b:a5:ce:3d:4b:38:b5:33:94:24:9d:dd:e8:e9:29:d3:69:
cc:88:3d:2a:10:2f:16:b9:90:60:56:8d:f7:51:cf:de:17:a8:
09:41:8e:84:78:eb:19:6c:a1:b6:6f:c6:87:df:a0:c4:61:59:
59:79:d9:3b:4e:13:ed:05:21:12:46:22:be:56:f3:0d:3c:53:
cf:a1:c0:3c:15:6b:cc:85:3d:22:09:f7:d3:4f:e7:ff:a6:50:
3c:0d:5b:55:8c:27:92:e3:d4:70:71:59:2b:3f:2a:3b:5b:1e:
18:ff:9b:03:b0:db:27:6f:87:96:6f:34:64:e8:18:ca:4d:53:
b3:71:b3:cb:58:56:b7:e8:50:bd:da:6a:e4:3c:b7:ba:77:aa:
5f:df:ed:0a:5c:1f:f4:68:63:af:36:bd:93:0b:03:3e:1d:ac:
a4:09:94:0c:e8:93:a9:16:0b:d7:a9:1f:4d:27:76:29:03:4a:
d5:51:9c:e9:51:03:34:ae:6c:29:e5:53:4c:0b:31:7b:e1:29:
d5:47:7b:da:7b:eb:23:a8:7c:f8:5d:20:78:ca:a4:9c:73:51:
8a:5d:8c:cb:00:15:e9:cc:c8:a1:fe:23:3b:a9:e4:98:35:d9:
0f:28:10:da:84:73:87:6a:73:dc:57:a1:3d:de:a3:ce:1e:67:
d4:79:73:f7
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAZUYS+gC21Lwol9gf79xppquMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI4NzM1ZWIyY2QyYzRkOGNmNWJmM2Q3NTA3ZDg0ZDYwMzU0
NWRmZTMwHhcNMjUwMjE4MDkwMzAyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlYjAzMmYyYmI1MzRkMjQ5ZTRlZDI2ZTNkYTcyNjZlZWYyYmUyNTk4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqS3qjD5xq2tbtufMP/EG2Gq1NnL2
4s88rnw6quOP4sjzg6fGK61e3BRu2GetyPvptAWlKQ1HuAby/1f1qD8l4r0pilYe
y5JlIoz99IiYAOWAsL8XTzQ35Kdp0qwOsLfYur+rys5Onu5UqcSbzXhlK8QkzruK
wh0zyuKdOJh4+1FKNCP2eACC3A2KLy+UiSxNzjYQGaB9D/OrJUEAFH9aDmmssWfy
jsH2tBWwGK5td4pQyHeyytnl9+LOk9jMrQf7zAhGZjLQsMcQU3hli5lyJaSbZkg+
t3wg5JxNJryBMiovbHdM1fbJ+8P+QnQXQ52s5uFvOCdZEzbclxlIbASOWwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFOsDLyu1NNJJ5O0m49pyZu7yviWYMB8GA1UdIwQY
MBaAFLhzXrLNLE2M9b89dQfYTWA1Rd/jMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdUhOZXNzMHNUWXoxdnoxMUI5aE5ZRFZGMy1NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYi8yMmRjYzgtZTI3Mi00ODllLTg4NmUt
YjRkY2Y4Y2VhMzVhLzEvNndNdks3VTAwa25rN1NiajJuSm03dkstSlpnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYi8yMmRjYzgtZTI3Mi00ODllLTg4NmUtYjRkY2Y4Y2VhMzVh
LzEvdUhOZXNzMHNUWXoxdnoxMUI5aE5ZRFZGMy1NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKgH7QDAN
BgkqhkiG9w0BAQsFAAOCAQEAJwulzj1LOLUzlCSd3ejpKdNpzIg9KhAvFrmQYFaN
91HP3heoCUGOhHjrGWyhtm/Gh9+gxGFZWXnZO04T7QUhEkYivlbzDTxTz6HAPBVr
zIU9Ign300/n/6ZQPA1bVYwnkuPUcHFZKz8qO1seGP+bA7DbJ2+Hlm80ZOgYyk1T
s3Gzy1hWt+hQvdpq5Dy3uneqX9/tClwf9Ghjrza9kwsDPh2spAmUDOiTqRYL16kf
TSd2KQNK1VGc6VEDNK5sKeVTTAsxe+Ep1Ud72nvrI6h8+F0geMqknHNRil2MywAV
6czIof4jO6nkmDXZDygQ2oRzh2pz3FehPd6jzh5n1Hlz9w==
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:41 2025 by rpki-client on console.sobornost.net