Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/d48090-2dbf-4b84-8596-98ce146f1824/1/UYoraKeZIaoa2wVuoomivtXbxRQ.roa
File: UYoraKeZIaoa2wVuoomivtXbxRQ.roa (raw, json)
Hash identifier: 64MFcCCoNK8y5TAb4sImtBVWhOrUKow/FlcIn/ABu34=
Subject key identifier: 51:8A:2B:68:A7:99:21:AA:1A:DB:05:6E:A2:89:A2:BE:D5:DB:C5:14
Certificate issuer: /CN=1e4c32086e1e984505691b01f5985df7a36b24ae
Certificate serial: 019422FBE6D27DD27EBF50D5A667D6B10FC1
Authority key identifier: 1E:4C:32:08:6E:1E:98:45:05:69:1B:01:F5:98:5D:F7:A3:6B:24:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HkwyCG4emEUFaRsB9Zhd96NrJK4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/d48090-2dbf-4b84-8596-98ce146f1824/1/UYoraKeZIaoa2wVuoomivtXbxRQ.roa
Signing time: Wed 01 Jan 2025 17:48:41 +0000
ROA not before: Wed 01 Jan 2025 17:48:41 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57277
IP address blocks: 2001:678:74c::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fb:e6:d2:7d:d2:7e:bf:50:d5:a6:67:d6:b1:0f:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e4c32086e1e984505691b01f5985df7a36b24ae
Validity
Not Before: Jan 1 17:48:41 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=518a2b68a79921aa1adb056ea289a2bed5dbc514
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:2f:ef:cd:8a:a1:2a:31:c8:58:f4:fc:85:a9:
19:3f:f2:3c:d9:ba:9b:7e:dc:13:49:24:a0:5a:d4:
85:8c:70:8b:b9:42:d1:0a:d7:b3:6a:8c:e5:85:70:
dd:da:e7:b8:5c:ca:8a:cc:b0:f0:96:a4:74:21:38:
6e:77:7e:0e:b9:af:3f:a9:85:2b:c6:fd:ed:43:d2:
52:8b:ff:96:2f:b5:7b:1e:de:7f:39:fb:6c:bd:3a:
b7:c0:fb:4d:04:bf:ca:42:15:4c:ac:bc:28:de:3b:
d7:28:9a:0a:45:51:2b:db:95:bd:ff:22:b7:01:83:
ac:cd:11:7b:6e:c9:3a:61:e1:7f:eb:14:53:ac:8b:
eb:90:6c:56:f0:5c:49:7d:0a:ca:6c:1f:6c:db:6d:
f9:9b:5f:64:68:ee:d8:b0:5f:ec:34:ea:96:2d:cc:
27:52:d5:9d:29:bd:37:83:04:15:8c:f1:9c:9e:78:
78:80:e3:fc:0a:d4:0c:c5:ff:74:e9:fb:cc:0e:f9:
51:92:02:5a:0e:20:e0:17:bf:ae:73:8e:b5:60:01:
8a:0f:16:94:fc:47:7a:4c:9b:55:6c:72:61:dc:f0:
0e:b1:f3:4e:c0:e9:be:ae:32:42:e3:98:99:b3:2b:
58:5e:a0:90:b0:4e:e1:9e:af:2e:a8:a7:97:a8:92:
86:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:8A:2B:68:A7:99:21:AA:1A:DB:05:6E:A2:89:A2:BE:D5:DB:C5:14
X509v3 Authority Key Identifier:
keyid:1E:4C:32:08:6E:1E:98:45:05:69:1B:01:F5:98:5D:F7:A3:6B:24:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HkwyCG4emEUFaRsB9Zhd96NrJK4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/d48090-2dbf-4b84-8596-98ce146f1824/1/UYoraKeZIaoa2wVuoomivtXbxRQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/d48090-2dbf-4b84-8596-98ce146f1824/1/HkwyCG4emEUFaRsB9Zhd96NrJK4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:74c::/48
Signature Algorithm: sha256WithRSAEncryption
3d:50:5a:f8:bf:bf:5a:af:66:4a:c3:4b:a4:0a:72:20:48:8e:
65:b3:e5:ef:b0:05:2d:c1:08:9b:c4:9a:d7:e6:88:6f:2e:1b:
0e:6a:c0:a6:5e:99:e7:b3:fa:06:5e:cb:50:fb:5f:35:f7:63:
e0:b6:e6:18:fa:bf:f0:68:16:c6:70:1c:03:56:76:6c:07:e6:
60:53:48:c8:cd:a2:43:dc:f3:6a:69:08:c2:24:e2:2f:fc:f8:
46:00:36:7e:44:5f:28:98:dc:0e:4b:79:fd:e4:c4:15:af:d3:
a5:9b:06:27:68:9d:af:d1:f6:d7:10:9e:91:e8:28:24:0a:61:
f5:40:60:df:7c:f6:7a:1a:72:0f:62:79:7f:af:37:56:1b:1f:
c6:ac:ca:f7:d1:ea:c7:30:59:0b:54:2b:f8:ef:c9:9a:e3:08:
f4:8b:27:9b:96:44:d7:3e:93:bc:3f:87:b6:6d:b9:3a:66:82:
63:a6:b9:5f:3a:73:f3:ff:bd:7d:af:d1:4c:f7:1c:a4:9f:8a:
f2:8b:2a:c0:46:de:dd:d0:52:55:6f:6d:ef:d9:b6:2c:0f:55:
29:3c:32:39:cd:2a:d9:a2:1d:7e:28:72:51:3f:cb:09:c2:91:
d6:dc:2a:a3:ef:b8:79:63:b7:f3:31:37:36:d7:82:63:e5:96:
11:b7:5b:b6
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAZQi++bSfdJ+v1DVpmfWsQ/BMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFlNGMzMjA4NmUxZTk4NDUwNTY5MWIwMWY1OTg1ZGY3YTM2
YjI0YWUwHhcNMjUwMTAxMTc0ODQxWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MThhMmI2OGE3OTkyMWFhMWFkYjA1NmVhMjg5YTJiZWQ1ZGJjNTE0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzC/vzYqhKjHIWPT8hakZP/I82bqb
ftwTSSSgWtSFjHCLuULRCtezaozlhXDd2ue4XMqKzLDwlqR0IThud34Oua8/qYUr
xv3tQ9JSi/+WL7V7Ht5/OftsvTq3wPtNBL/KQhVMrLwo3jvXKJoKRVEr25W9/yK3
AYOszRF7bsk6YeF/6xRTrIvrkGxW8FxJfQrKbB9s2235m19kaO7YsF/sNOqWLcwn
UtWdKb03gwQVjPGcnnh4gOP8CtQMxf906fvMDvlRkgJaDiDgF7+uc461YAGKDxaU
/Ed6TJtVbHJh3PAOsfNOwOm+rjJC45iZsytYXqCQsE7hnq8uqKeXqJKGlQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFFGKK2inmSGqGtsFbqKJor7V28UUMB8GA1UdIwQY
MBaAFB5MMghuHphFBWkbAfWYXfejaySuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSGt3eUNHNGVtRVVGYVJzQjlaaGQ5Nk5ySks0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi9kNDgwOTAtMmRiZi00Yjg0LTg1OTYt
OThjZTE0NmYxODI0LzEvVVlvcmFLZVpJYW9hMndWdW9vbWl2dFhieFJRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZi9kNDgwOTAtMmRiZi00Yjg0LTg1OTYtOThjZTE0NmYxODI0
LzEvSGt3eUNHNGVtRVVGYVJzQjlaaGQ5Nk5ySks0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeAdM
MA0GCSqGSIb3DQEBCwUAA4IBAQA9UFr4v79ar2ZKw0ukCnIgSI5ls+XvsAUtwQib
xJrX5ohvLhsOasCmXpnns/oGXstQ+18192PgtuYY+r/waBbGcBwDVnZsB+ZgU0jI
zaJD3PNqaQjCJOIv/PhGADZ+RF8omNwOS3n95MQVr9OlmwYnaJ2v0fbXEJ6R6Cgk
CmH1QGDffPZ6GnIPYnl/rzdWGx/GrMr30erHMFkLVCv478ma4wj0iyeblkTXPpO8
P4e2bbk6ZoJjprlfOnPz/719r9FM9xykn4ryiyrARt7d0FJVb23v2bYsD1UpPDI5
zSrZoh1+KHJRP8sJwpHW3Cqj77h5Y7fzMTc214Jj5ZYRt1u2
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:43 2025 by rpki-client on console.sobornost.net