Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/acffd6-dc1e-4e0d-8d25-ce22d5eab82f/1/oB95arRBgb3qrJ3Cv3Q93T0xyYw.roa
File: oB95arRBgb3qrJ3Cv3Q93T0xyYw.roa (raw, json)
Hash identifier: jCLWsC0z1+1L484JPavhvMUCyvqzC30glpZcJtreNKw=
Subject key identifier: A0:1F:79:6A:B4:41:81:BD:EA:AC:9D:C2:BF:74:3D:DD:3D:31:C9:8C
Certificate issuer: /CN=27df042824273fcff3f093d0f9b1dec6960bae6a
Certificate serial: 01942144314E484CA7C95C1B9EC2E19C2837
Authority key identifier: 27:DF:04:28:24:27:3F:CF:F3:F0:93:D0:F9:B1:DE:C6:96:0B:AE:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J98EKCQnP8_z8JPQ-bHexpYLrmo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/acffd6-dc1e-4e0d-8d25-ce22d5eab82f/1/oB95arRBgb3qrJ3Cv3Q93T0xyYw.roa
Signing time: Wed 01 Jan 2025 09:48:24 +0000
ROA not before: Wed 01 Jan 2025 09:48:24 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 65533
IP address blocks: 2001:718:ffff::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:44:31:4e:48:4c:a7:c9:5c:1b:9e:c2:e1:9c:28:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27df042824273fcff3f093d0f9b1dec6960bae6a
Validity
Not Before: Jan 1 09:48:24 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a01f796ab44181bdeaac9dc2bf743ddd3d31c98c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:cf:e0:16:23:48:dd:88:ec:df:05:59:da:a9:
c3:7f:7e:80:e9:a5:bd:91:c0:0f:7d:6b:a3:13:cc:
2b:b6:ce:74:a0:16:38:31:d4:2a:74:e4:36:e2:ce:
39:8d:e6:2e:b0:ee:42:e4:94:d8:c1:d5:58:d1:a0:
88:6a:ec:cc:a6:77:d8:82:79:33:eb:3d:5c:c5:86:
ea:3b:ef:ad:a8:c4:b5:76:18:2f:99:6a:f9:f4:f0:
89:c7:10:c1:17:fa:aa:44:99:62:5f:4e:09:b5:17:
bb:17:8d:60:e9:f3:b3:d1:da:6a:7c:ed:72:8c:6e:
41:ce:58:4c:f2:26:af:6e:8e:1b:3c:8c:bd:96:25:
54:34:79:79:29:3e:60:9c:2e:24:39:6b:32:f1:95:
f9:c3:68:be:62:63:b2:ff:e4:0b:3c:06:66:61:76:
77:eb:a6:62:28:59:db:52:66:cb:ee:b7:e4:e7:e1:
cc:f5:a3:ee:83:32:76:36:2c:6e:02:b7:70:c0:48:
f9:de:1c:72:d9:a4:28:7c:e2:d2:01:27:bf:f4:5c:
e7:b3:b0:0e:62:4f:fb:2e:3e:3d:cd:13:79:98:f6:
e5:41:ff:24:46:c2:82:57:96:00:7a:05:7a:70:10:
a4:29:9e:89:ab:14:26:82:76:57:54:97:82:36:4a:
25:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:1F:79:6A:B4:41:81:BD:EA:AC:9D:C2:BF:74:3D:DD:3D:31:C9:8C
X509v3 Authority Key Identifier:
keyid:27:DF:04:28:24:27:3F:CF:F3:F0:93:D0:F9:B1:DE:C6:96:0B:AE:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J98EKCQnP8_z8JPQ-bHexpYLrmo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/acffd6-dc1e-4e0d-8d25-ce22d5eab82f/1/oB95arRBgb3qrJ3Cv3Q93T0xyYw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/acffd6-dc1e-4e0d-8d25-ce22d5eab82f/1/J98EKCQnP8_z8JPQ-bHexpYLrmo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:718:ffff::/48
Signature Algorithm: sha256WithRSAEncryption
5a:b2:38:b9:05:f7:21:b0:71:2e:6f:49:95:19:18:24:e9:2d:
24:0a:0c:57:d7:90:37:38:e5:b6:5b:c0:98:f8:a0:b9:49:0f:
9f:ba:be:a6:80:0c:cc:f6:2b:d1:da:12:72:c0:62:43:c4:2d:
85:f3:a3:4f:24:d1:fa:a6:35:51:aa:01:0b:a7:1d:32:e9:ae:
3e:f2:08:00:10:79:59:06:ab:5c:ab:85:38:e5:05:91:5c:37:
0c:b4:f2:e9:cc:e8:47:ed:45:58:3a:54:9b:b6:35:4f:27:48:
28:e2:e9:28:c9:93:71:0e:f1:1f:17:5a:a4:34:66:c0:14:3f:
76:e7:4d:59:d3:e6:22:25:f7:bb:8d:41:32:c9:65:d2:01:76:
83:bc:1e:88:57:0a:63:db:67:4a:e9:9e:18:47:c0:9e:c3:b7:
12:64:bf:47:16:1e:38:76:6e:28:29:ed:a2:fa:c9:a8:cb:4e:
db:d7:6d:57:80:3a:f3:72:e3:13:1c:92:c9:3f:8f:87:9a:7a:
11:9f:0d:06:ea:01:f1:de:16:83:63:8a:b2:45:4a:aa:b4:59:
c0:e2:b6:fb:5a:82:7b:88:d4:d2:26:06:6f:5e:b7:a4:0a:49:
aa:13:32:78:1d:6f:ef:fa:3d:e4:5f:e8:b3:60:79:05:ef:70:
d7:18:41:d9
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAZQhRDFOSEynyVwbnsLhnCg3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI3ZGYwNDI4MjQyNzNmY2ZmM2YwOTNkMGY5YjFkZWM2OTYw
YmFlNmEwHhcNMjUwMTAxMDk0ODI0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMDFmNzk2YWI0NDE4MWJkZWFhYzlkYzJiZjc0M2RkZDNkMzFjOThjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxs/gFiNI3Yjs3wVZ2qnDf36A6aW9
kcAPfWujE8wrts50oBY4MdQqdOQ24s45jeYusO5C5JTYwdVY0aCIauzMpnfYgnkz
6z1cxYbqO++tqMS1dhgvmWr59PCJxxDBF/qqRJliX04JtRe7F41g6fOz0dpqfO1y
jG5BzlhM8iavbo4bPIy9liVUNHl5KT5gnC4kOWsy8ZX5w2i+YmOy/+QLPAZmYXZ3
66ZiKFnbUmbL7rfk5+HM9aPugzJ2NixuArdwwEj53hxy2aQofOLSASe/9Fzns7AO
Yk/7Lj49zRN5mPblQf8kRsKCV5YAegV6cBCkKZ6JqxQmgnZXVJeCNkolzQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFKAfeWq0QYG96qydwr90Pd09McmMMB8GA1UdIwQY
MBaAFCffBCgkJz/P8/CT0Pmx3saWC65qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSjk4RUtDUW5QOF96OEpQUS1iSGV4cFlMcm1vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC9hY2ZmZDYtZGMxZS00ZTBkLThkMjUt
Y2UyMmQ1ZWFiODJmLzEvb0I5NWFyUkJnYjNxckozQ3YzUTkzVDB4eVl3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZC9hY2ZmZDYtZGMxZS00ZTBkLThkMjUtY2UyMmQ1ZWFiODJm
LzEvSjk4RUtDUW5QOF96OEpQUS1iSGV4cFlMcm1vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEHGP//
MA0GCSqGSIb3DQEBCwUAA4IBAQBasji5BfchsHEub0mVGRgk6S0kCgxX15A3OOW2
W8CY+KC5SQ+fur6mgAzM9ivR2hJywGJDxC2F86NPJNH6pjVRqgELpx0y6a4+8ggA
EHlZBqtcq4U45QWRXDcMtPLpzOhH7UVYOlSbtjVPJ0go4ukoyZNxDvEfF1qkNGbA
FD92501Z0+YiJfe7jUEyyWXSAXaDvB6IVwpj22dK6Z4YR8Cew7cSZL9HFh44dm4o
Ke2i+smoy07b121XgDrzcuMTHJLJP4+HmnoRnw0G6gHx3haDY4qyRUqqtFnA4rb7
WoJ7iNTSJgZvXrekCkmqEzJ4HW/v+j3kX+izYHkF73DXGEHZ
-----END CERTIFICATE-----
Generated at Fri Apr 25 06:26:00 2025 by rpki-client