Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/b79a68-5b02-4097-a2e3-0a43b7a3eb54/1/Fj8ltGVj4bwSu39N9YoDfu9hSDQ.roa
File: Fj8ltGVj4bwSu39N9YoDfu9hSDQ.roa (raw, json)
Hash identifier: uLPHDZq9gqVO8ebYrJkyS5eyy5WJ7smXGXrfo42hNSA=
Subject key identifier: 16:3F:25:B4:65:63:E1:BC:12:BB:7F:4D:F5:8A:03:7E:EF:61:48:34
Certificate issuer: /CN=66ed3ba68c78bff2c4724400ade6348482fb4364
Certificate serial: 01948D0A3FDF33066E21E5EC6B6AE1CCFAB1
Authority key identifier: 66:ED:3B:A6:8C:78:BF:F2:C4:72:44:00:AD:E6:34:84:82:FB:43:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zu07pox4v_LEckQAreY0hIL7Q2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/b79a68-5b02-4097-a2e3-0a43b7a3eb54/1/Fj8ltGVj4bwSu39N9YoDfu9hSDQ.roa
Signing time: Wed 22 Jan 2025 08:04:06 +0000
ROA not before: Wed 22 Jan 2025 08:04:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214709
IP address blocks: 2a14:3f87:9000::/38 maxlen: 38
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:8d:0a:3f:df:33:06:6e:21:e5:ec:6b:6a:e1:cc:fa:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66ed3ba68c78bff2c4724400ade6348482fb4364
Validity
Not Before: Jan 22 08:04:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=163f25b46563e1bc12bb7f4df58a037eef614834
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:8a:e9:e7:88:88:fe:9e:b5:8d:b2:f2:ba:66:
29:4e:aa:f4:8e:34:b0:ad:dd:6b:43:8f:d6:00:63:
8f:90:75:e6:10:37:2c:9f:28:be:0b:2b:a4:0e:5a:
3d:04:a5:27:f1:be:d8:58:11:c0:d0:01:a1:93:d1:
5a:e0:c2:54:b8:fa:2b:5b:03:89:47:05:b8:e1:22:
5b:d7:56:a2:32:ad:bb:61:54:c9:02:d1:24:ce:41:
c3:13:de:4f:5a:81:a4:f6:3e:6c:6b:7b:28:2b:96:
61:24:1a:89:ef:69:e9:5e:ad:0b:c2:43:0e:9b:04:
0a:be:53:eb:7c:0b:b8:9d:a9:e3:14:f5:b0:fc:3e:
a5:91:6e:75:a3:f9:5d:2c:30:98:b5:b7:9c:62:df:
15:2e:11:9c:20:e2:c6:9b:cb:84:4a:a2:76:52:bc:
c5:b2:8b:00:58:85:73:f1:21:ab:fd:c0:c4:1c:d7:
c0:d1:ce:04:fb:5b:c1:89:5d:ac:0e:aa:7b:6f:24:
67:e5:e1:2a:bf:86:1c:10:c0:12:e0:11:fc:07:2c:
cb:e6:4e:6d:9a:38:4f:c8:0a:af:7a:45:a0:fe:fb:
c7:fe:77:e1:53:8a:2b:c8:02:fb:fb:2c:8c:81:6a:
73:31:a8:01:5b:ae:68:d6:fe:8f:f9:16:23:e1:43:
69:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:3F:25:B4:65:63:E1:BC:12:BB:7F:4D:F5:8A:03:7E:EF:61:48:34
X509v3 Authority Key Identifier:
keyid:66:ED:3B:A6:8C:78:BF:F2:C4:72:44:00:AD:E6:34:84:82:FB:43:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zu07pox4v_LEckQAreY0hIL7Q2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/b79a68-5b02-4097-a2e3-0a43b7a3eb54/1/Fj8ltGVj4bwSu39N9YoDfu9hSDQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/b79a68-5b02-4097-a2e3-0a43b7a3eb54/1/Zu07pox4v_LEckQAreY0hIL7Q2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:3f87:9000::/38
Signature Algorithm: sha256WithRSAEncryption
bc:7f:f6:36:f1:f9:b1:b4:01:a3:bc:68:d7:71:47:98:c4:27:
23:aa:f2:38:18:7b:57:4e:8b:d7:19:2d:fb:4d:26:2a:a1:e7:
df:cf:4e:b4:a3:b7:6c:67:6d:cb:b8:81:97:c8:db:97:c3:35:
13:4d:7c:b5:d2:72:06:ec:4a:3f:3c:10:50:b7:ec:8e:7c:8d:
94:eb:2c:fc:c9:d0:a0:12:c7:82:66:dc:f4:ee:57:e2:bd:77:
c3:0e:24:44:2b:e2:40:33:a9:16:09:fa:31:5e:ff:a5:8e:32:
84:48:ac:e2:62:07:82:10:33:c7:76:04:a4:46:d5:70:f0:2e:
b0:51:dc:ec:30:16:05:c4:9e:c6:9f:56:a9:aa:e0:1c:17:b4:
ed:e1:ca:47:7f:90:1b:ba:ff:02:67:be:87:65:fb:e2:59:1d:
cc:bc:43:b1:60:b9:83:b2:90:c6:fb:9b:c3:41:c3:24:3a:11:
19:dc:70:07:1b:f8:e3:9b:ad:b4:d2:e0:a3:ff:c3:63:c4:24:
52:35:a7:a0:4e:24:d7:d4:94:05:27:11:fd:29:f4:4d:c9:ab:
54:9c:18:b1:b5:e1:82:e3:e9:bd:18:7e:36:cc:1e:ef:f1:1e:
02:bd:06:ee:70:69:7f:66:94:de:ee:7c:aa:66:46:33:d2:04:
bf:8e:46:79
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAZSNCj/fMwZuIeXsa2rhzPqxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY2ZWQzYmE2OGM3OGJmZjJjNDcyNDQwMGFkZTYzNDg0ODJm
YjQzNjQwHhcNMjUwMTIyMDgwNDA2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNjNmMjViNDY1NjNlMWJjMTJiYjdmNGRmNThhMDM3ZWVmNjE0ODM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9orp54iI/p61jbLyumYpTqr0jjSw
rd1rQ4/WAGOPkHXmEDcsnyi+CyukDlo9BKUn8b7YWBHA0AGhk9Fa4MJUuPorWwOJ
RwW44SJb11aiMq27YVTJAtEkzkHDE95PWoGk9j5sa3soK5ZhJBqJ72npXq0LwkMO
mwQKvlPrfAu4nanjFPWw/D6lkW51o/ldLDCYtbecYt8VLhGcIOLGm8uESqJ2UrzF
sosAWIVz8SGr/cDEHNfA0c4E+1vBiV2sDqp7byRn5eEqv4YcEMAS4BH8ByzL5k5t
mjhPyAqvekWg/vvH/nfhU4oryAL7+yyMgWpzMagBW65o1v6P+RYj4UNpeQIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFBY/JbRlY+G8Ert/TfWKA37vYUg0MB8GA1UdIwQY
MBaAFGbtO6aMeL/yxHJEAK3mNISC+0NkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWnUwN3BveDR2X0xFY2tRQXJlWTBoSUw3UTJRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9iNzlhNjgtNWIwMi00MDk3LWEyZTMt
MGE0M2I3YTNlYjU0LzEvRmo4bHRHVmo0YndTdTM5TjlZb0RmdTloU0RRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS9iNzlhNjgtNWIwMi00MDk3LWEyZTMtMGE0M2I3YTNlYjU0
LzEvWnUwN3BveDR2X0xFY2tRQXJlWTBoSUw3UTJRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYCKhQ/h5Aw
DQYJKoZIhvcNAQELBQADggEBALx/9jbx+bG0AaO8aNdxR5jEJyOq8jgYe1dOi9cZ
LftNJiqh59/PTrSjt2xnbcu4gZfI25fDNRNNfLXScgbsSj88EFC37I58jZTrLPzJ
0KASx4Jm3PTuV+K9d8MOJEQr4kAzqRYJ+jFe/6WOMoRIrOJiB4IQM8d2BKRG1XDw
LrBR3OwwFgXEnsafVqmq4BwXtO3hykd/kBu6/wJnvodl++JZHcy8Q7FguYOykMb7
m8NBwyQ6ERnccAcb+OObrbTS4KP/w2PEJFI1p6BOJNfUlAUnEf0p9E3Jq1ScGLG1
4YLj6b0YfjbMHu/xHgK9Bu5waX9mlN7ufKpmRjPSBL+ORnk=
-----END CERTIFICATE-----
Generated at Fri Apr 25 02:09:00 2025 by rpki-client