Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/d5a49a-4f1a-4961-9c1f-76b0325c3b07/1/TegEFm13uYuDaVYWPUq_NWyfFhw.roa
File: TegEFm13uYuDaVYWPUq_NWyfFhw.roa (raw, json)
Hash identifier: Z0NpRN8gnuSXynuy4afFeS+fqs/16nspEy2hNFbDueU=
Subject key identifier: 4D:E8:04:16:6D:77:B9:8B:83:69:56:16:3D:4A:BF:35:6C:9F:16:1C
Certificate issuer: /CN=71601c0b8b13cc121017f6d25117ac1fd0664344
Certificate serial: 0194221FEB8052F094A3784CBA2CE0BD96D9
Authority key identifier: 71:60:1C:0B:8B:13:CC:12:10:17:F6:D2:51:17:AC:1F:D0:66:43:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cWAcC4sTzBIQF_bSUResH9BmQ0Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/d5a49a-4f1a-4961-9c1f-76b0325c3b07/1/TegEFm13uYuDaVYWPUq_NWyfFhw.roa
Signing time: Wed 01 Jan 2025 13:48:24 +0000
ROA not before: Wed 01 Jan 2025 13:48:24 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 15557
IP address blocks: 2a00:b180::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:eb:80:52:f0:94:a3:78:4c:ba:2c:e0:bd:96:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71601c0b8b13cc121017f6d25117ac1fd0664344
Validity
Not Before: Jan 1 13:48:24 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4de804166d77b98b836956163d4abf356c9f161c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:8b:35:9a:cb:af:11:e6:da:fd:d6:70:65:0d:
94:13:1a:7a:f8:ae:6e:7e:60:7d:0c:51:c3:53:8b:
f8:33:dc:0a:b4:2c:92:57:bb:05:55:f7:21:e2:1c:
ce:fc:be:da:2c:7b:4a:f0:48:5c:19:cd:ad:28:1d:
c5:14:54:58:8d:da:c0:08:d0:b3:b7:7e:04:24:8f:
46:b2:31:65:b0:bd:f9:d0:94:6f:c8:63:fd:79:a4:
6a:09:35:38:60:af:c1:a8:b8:0c:c2:fb:4a:77:00:
8d:c7:80:12:c1:30:bc:5f:d7:10:26:6e:0e:c8:5e:
dc:cb:30:b0:2e:23:83:3e:03:20:ec:30:36:aa:e7:
4f:a9:06:5e:d7:87:a4:41:2c:48:a9:fd:d6:86:a7:
d8:a5:55:bb:db:41:f8:ae:25:3e:71:2e:48:fd:e3:
e0:ce:92:2b:ee:d7:09:5a:03:92:1f:bd:6b:8e:c1:
cb:4a:b9:aa:50:f2:ae:ec:58:fe:57:f2:57:5a:42:
8b:c8:d7:b1:20:9b:d7:97:cc:3c:cb:fd:bf:a9:aa:
e3:ae:72:5f:fb:c8:76:a9:14:79:00:c0:ef:d9:43:
5e:2a:2f:fd:57:45:19:b7:31:4c:f3:ee:ad:cb:6a:
51:5d:5b:91:11:48:c1:18:68:2f:68:b7:69:04:be:
ed:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:E8:04:16:6D:77:B9:8B:83:69:56:16:3D:4A:BF:35:6C:9F:16:1C
X509v3 Authority Key Identifier:
keyid:71:60:1C:0B:8B:13:CC:12:10:17:F6:D2:51:17:AC:1F:D0:66:43:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cWAcC4sTzBIQF_bSUResH9BmQ0Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/d5a49a-4f1a-4961-9c1f-76b0325c3b07/1/TegEFm13uYuDaVYWPUq_NWyfFhw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/d5a49a-4f1a-4961-9c1f-76b0325c3b07/1/cWAcC4sTzBIQF_bSUResH9BmQ0Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:b180::/32
Signature Algorithm: sha256WithRSAEncryption
85:e9:31:56:f6:23:1e:13:7c:33:27:80:35:ac:f3:98:ec:78:
d9:4e:45:ed:db:40:b3:b0:e9:5c:35:b7:72:2a:8f:68:74:1c:
66:e1:27:d2:44:9e:c3:7f:1a:f1:05:ae:d8:ec:1a:73:c5:70:
8e:bc:fb:39:f0:ad:51:80:12:6d:9c:a4:9c:6f:c0:11:9b:f0:
ad:10:aa:df:2d:fe:06:21:a6:16:96:58:6e:fc:5c:a6:a2:65:
da:29:73:6f:59:78:0a:58:8a:90:bb:1e:25:99:5b:91:db:dd:
ff:a1:bb:fb:ab:07:52:a1:a9:dc:9d:29:aa:cb:07:78:64:26:
5f:a9:83:ef:3c:bb:d2:4d:52:e5:e4:15:e3:f2:0a:1b:0b:13:
33:82:c6:7b:09:51:13:5d:47:a5:72:4d:f1:fa:8a:fa:9f:58:
f9:b4:b9:06:ab:38:ff:f5:23:f6:3c:58:a4:5b:a0:66:fc:35:
e4:f0:e0:56:e3:b7:9c:ec:95:c2:21:29:1a:bd:d9:01:31:d7:
64:7c:14:03:d1:04:6c:b6:ab:37:cc:ef:fc:b3:a7:8f:2b:50:
b1:6c:3e:35:60:34:6b:94:b6:a0:68:ed:57:f5:67:e8:d8:34:
83:24:bc:d0:f5:23:f7:51:c0:83:d2:c1:fb:b2:d2:1d:5c:68:
28:0e:5a:7f
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAZQiH+uAUvCUo3hMuizgvZbZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcxNjAxYzBiOGIxM2NjMTIxMDE3ZjZkMjUxMTdhYzFmZDA2
NjQzNDQwHhcNMjUwMTAxMTM0ODI0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZGU4MDQxNjZkNzdiOThiODM2OTU2MTYzZDRhYmYzNTZjOWYxNjFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl4s1msuvEeba/dZwZQ2UExp6+K5u
fmB9DFHDU4v4M9wKtCySV7sFVfch4hzO/L7aLHtK8EhcGc2tKB3FFFRYjdrACNCz
t34EJI9GsjFlsL350JRvyGP9eaRqCTU4YK/BqLgMwvtKdwCNx4ASwTC8X9cQJm4O
yF7cyzCwLiODPgMg7DA2qudPqQZe14ekQSxIqf3WhqfYpVW720H4riU+cS5I/ePg
zpIr7tcJWgOSH71rjsHLSrmqUPKu7Fj+V/JXWkKLyNexIJvXl8w8y/2/qarjrnJf
+8h2qRR5AMDv2UNeKi/9V0UZtzFM8+6ty2pRXVuREUjBGGgvaLdpBL7toQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFE3oBBZtd7mLg2lWFj1KvzVsnxYcMB8GA1UdIwQY
MBaAFHFgHAuLE8wSEBf20lEXrB/QZkNEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY1dBY0M0c1R6QklRRl9iU1VSZXNIOUJtUTBRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZC9kNWE0OWEtNGYxYS00OTYxLTljMWYt
NzZiMDMyNWMzYjA3LzEvVGVnRUZtMTN1WXVEYVZZV1BVcV9OV3lmRmh3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83ZC9kNWE0OWEtNGYxYS00OTYxLTljMWYtNzZiMDMyNWMzYjA3
LzEvY1dBY0M0c1R6QklRRl9iU1VSZXNIOUJtUTBRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgCxgDAN
BgkqhkiG9w0BAQsFAAOCAQEAhekxVvYjHhN8MyeANazzmOx42U5F7dtAs7DpXDW3
ciqPaHQcZuEn0kSew38a8QWu2Owac8Vwjrz7OfCtUYASbZyknG/AEZvwrRCq3y3+
BiGmFpZYbvxcpqJl2ilzb1l4CliKkLseJZlbkdvd/6G7+6sHUqGp3J0pqssHeGQm
X6mD7zy70k1S5eQV4/IKGwsTM4LGewlRE11HpXJN8fqK+p9Y+bS5Bqs4//Uj9jxY
pFugZvw15PDgVuO3nOyVwiEpGr3ZATHXZHwUA9EEbLarN8zv/LOnjytQsWw+NWA0
a5S2oGjtV/Vn6Ng0gyS80PUj91HAg9LB+7LSHVxoKA5afw==
-----END CERTIFICATE-----
Generated at Fri Apr 25 02:03:46 2025 by rpki-client