Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/897449-e9cf-4a79-89cf-41bb21ac2801/1/vbf7QWXbS_pwUH6TqNoWH1mb-hE.roa
File: vbf7QWXbS_pwUH6TqNoWH1mb-hE.roa (raw, json)
Hash identifier: nz32OtRO65YgOFyYMB64MSQLXeLxu8K4hDfSzXwn2Co=
Subject key identifier: BD:B7:FB:41:65:DB:4B:FA:70:50:7E:93:A8:DA:16:1F:59:9B:FA:11
Certificate issuer: /CN=c38280c5300b74888ac7eb4bfa6417d9a2e7b0be
Certificate serial: 0195AAB65296E7BF1E772C2708BFE8CC28D5
Authority key identifier: C3:82:80:C5:30:0B:74:88:8A:C7:EB:4B:FA:64:17:D9:A2:E7:B0:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w4KAxTALdIiKx-tL-mQX2aLnsL4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/897449-e9cf-4a79-89cf-41bb21ac2801/1/vbf7QWXbS_pwUH6TqNoWH1mb-hE.roa
Signing time: Tue 18 Mar 2025 19:23:50 +0000
ROA not before: Tue 18 Mar 2025 19:23:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 29182
IP address blocks: 2a0e:13c6::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:aa:b6:52:96:e7:bf:1e:77:2c:27:08:bf:e8:cc:28:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c38280c5300b74888ac7eb4bfa6417d9a2e7b0be
Validity
Not Before: Mar 18 19:23:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bdb7fb4165db4bfa70507e93a8da161f599bfa11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:a0:c5:0d:e3:80:c0:a8:cc:14:0b:10:1b:8d:
6a:e9:8e:0f:d9:7c:53:c0:c2:78:65:ae:29:8d:c0:
77:c3:01:01:c9:65:8b:24:83:d8:74:11:08:f6:d4:
d7:df:42:e5:bd:a5:83:b1:bd:af:68:a0:ec:80:93:
37:40:73:bd:32:db:0a:7c:0c:c1:76:5c:a2:b4:9a:
9a:f7:73:f7:92:db:1e:be:ce:2a:ef:c5:e3:c4:96:
25:8e:6c:b9:28:ed:0f:25:00:d5:91:3f:9b:e1:d0:
68:78:4d:a7:bf:ce:27:94:5b:5f:ba:3d:e8:c6:28:
a8:7c:6e:84:fd:01:46:a7:ac:d4:20:28:37:8f:1e:
03:5d:60:0e:cd:8e:72:9d:71:78:31:ca:72:5e:9a:
80:c9:9b:eb:0c:4b:c4:01:7a:c4:78:28:ac:1d:37:
33:a9:47:b0:26:0a:7c:9c:58:24:60:24:53:4b:03:
20:2b:8d:e1:f1:f2:af:c5:8a:51:d0:2c:82:08:c4:
a0:37:59:41:4f:11:35:70:b1:26:e4:1f:25:4b:1b:
ee:da:0b:0f:77:6a:74:38:59:56:2a:c5:73:a7:87:
5a:61:2b:23:8c:55:c7:ad:3e:06:38:da:3a:9e:d0:
43:46:4f:f7:6c:07:e3:64:0a:d0:08:c5:61:2d:15:
b1:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:B7:FB:41:65:DB:4B:FA:70:50:7E:93:A8:DA:16:1F:59:9B:FA:11
X509v3 Authority Key Identifier:
keyid:C3:82:80:C5:30:0B:74:88:8A:C7:EB:4B:FA:64:17:D9:A2:E7:B0:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w4KAxTALdIiKx-tL-mQX2aLnsL4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/897449-e9cf-4a79-89cf-41bb21ac2801/1/vbf7QWXbS_pwUH6TqNoWH1mb-hE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/897449-e9cf-4a79-89cf-41bb21ac2801/1/w4KAxTALdIiKx-tL-mQX2aLnsL4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:13c6::/32
Signature Algorithm: sha256WithRSAEncryption
a3:c4:ad:e9:85:07:9a:e3:61:77:45:38:25:ef:14:ea:ec:b3:
89:16:fe:4c:0b:a3:a4:45:46:be:9b:7c:7d:c7:18:fd:a6:a2:
16:0b:84:29:e0:e5:c7:4a:46:bd:92:fd:7c:0c:6b:7d:40:92:
a1:7b:fd:91:5f:1f:02:29:da:5e:15:c0:7a:59:76:dc:83:36:
bf:2b:d5:18:d7:a4:df:f9:e5:91:e2:1e:c4:94:03:dc:52:ba:
da:a6:53:70:98:11:62:60:cd:79:39:eb:9b:4f:3e:9f:ae:a5:
13:51:c7:ec:f4:86:b3:6c:9f:0b:6c:48:d1:80:88:69:c6:2b:
d3:9b:73:c1:02:41:b5:97:9a:c4:90:16:07:ce:f5:c7:7b:bc:
3b:d0:7e:d3:42:86:82:bd:4e:8f:f2:40:53:66:8e:f3:1a:bd:
da:b0:d9:75:33:e9:37:78:f8:70:e2:01:52:9f:0e:db:29:f3:
5b:f1:cc:5e:02:e9:aa:59:8d:a3:45:26:5b:eb:e3:0f:aa:a2:
53:c5:9f:e0:a1:7c:fe:22:6a:0b:74:70:9e:20:a8:01:dd:f6:
53:fb:03:d0:46:cf:f1:f0:f7:93:19:26:3f:b2:0c:83:a1:5d:
cc:26:f6:3b:b6:7c:c6:08:69:1a:95:a1:cf:64:7e:3a:0c:97:
6d:68:57:df
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAZWqtlKW578edywnCL/ozCjVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMzODI4MGM1MzAwYjc0ODg4YWM3ZWI0YmZhNjQxN2Q5YTJl
N2IwYmUwHhcNMjUwMzE4MTkyMzUwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZGI3ZmI0MTY1ZGI0YmZhNzA1MDdlOTNhOGRhMTYxZjU5OWJmYTExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsqDFDeOAwKjMFAsQG41q6Y4P2XxT
wMJ4Za4pjcB3wwEByWWLJIPYdBEI9tTX30LlvaWDsb2vaKDsgJM3QHO9MtsKfAzB
dlyitJqa93P3ktsevs4q78XjxJYljmy5KO0PJQDVkT+b4dBoeE2nv84nlFtfuj3o
xiiofG6E/QFGp6zUICg3jx4DXWAOzY5ynXF4McpyXpqAyZvrDEvEAXrEeCisHTcz
qUewJgp8nFgkYCRTSwMgK43h8fKvxYpR0CyCCMSgN1lBTxE1cLEm5B8lSxvu2gsP
d2p0OFlWKsVzp4daYSsjjFXHrT4GONo6ntBDRk/3bAfjZArQCMVhLRWxiQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFL23+0Fl20v6cFB+k6jaFh9Zm/oRMB8GA1UdIwQY
MBaAFMOCgMUwC3SIisfrS/pkF9mi57C+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdzRLQXhUQUxkSWlLeC10TC1tUVgyYUxuc0w0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy84OTc0NDktZTljZi00YTc5LTg5Y2Yt
NDFiYjIxYWMyODAxLzEvdmJmN1FXWGJTX3B3VUg2VHFOb1dIMW1iLWhFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMy84OTc0NDktZTljZi00YTc5LTg5Y2YtNDFiYjIxYWMyODAx
LzEvdzRLQXhUQUxkSWlLeC10TC1tUVgyYUxuc0w0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKg4TxjAN
BgkqhkiG9w0BAQsFAAOCAQEAo8St6YUHmuNhd0U4Je8U6uyziRb+TAujpEVGvpt8
fccY/aaiFguEKeDlx0pGvZL9fAxrfUCSoXv9kV8fAinaXhXAell23IM2vyvVGNek
3/nlkeIexJQD3FK62qZTcJgRYmDNeTnrm08+n66lE1HH7PSGs2yfC2xI0YCIacYr
05tzwQJBtZeaxJAWB871x3u8O9B+00KGgr1Oj/JAU2aO8xq92rDZdTPpN3j4cOIB
Up8O2ynzW/HMXgLpqlmNo0UmW+vjD6qiU8Wf4KF8/iJqC3RwniCoAd32U/sD0EbP
8fD3kxkmP7IMg6FdzCb2O7Z8xghpGpWhz2R+OgyXbWhX3w==
-----END CERTIFICATE-----
Generated at Tue Mar 25 22:17:58 2025 by rpki-client on console.sobornost.net