Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/26b286-d967-4ca6-8f10-d8b0756d82a5/1/22l5n06bYUaSPuk04ilGSf6iBbQ.roa
File: 22l5n06bYUaSPuk04ilGSf6iBbQ.roa (raw, json)
Hash identifier: pO0MBn0s4vmy63q8CyWFXxA4ngNjwwnhcmcIV/rJqEU=
Subject key identifier: DB:69:79:9F:4E:9B:61:46:92:3E:E9:34:E2:29:46:49:FE:A2:05:B4
Certificate issuer: /CN=a1eb60b29252ce185a41636a247b4c0273d374ae
Certificate serial: 019421B24B61BDED2B83A857D6AF001CBB5D
Authority key identifier: A1:EB:60:B2:92:52:CE:18:5A:41:63:6A:24:7B:4C:02:73:D3:74:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oetgspJSzhhaQWNqJHtMAnPTdK4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/26b286-d967-4ca6-8f10-d8b0756d82a5/1/22l5n06bYUaSPuk04ilGSf6iBbQ.roa
Signing time: Wed 01 Jan 2025 11:48:40 +0000
ROA not before: Wed 01 Jan 2025 11:48:40 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 62028
IP address blocks: 2a13:fcc0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b2:4b:61:bd:ed:2b:83:a8:57:d6:af:00:1c:bb:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1eb60b29252ce185a41636a247b4c0273d374ae
Validity
Not Before: Jan 1 11:48:40 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=db69799f4e9b6146923ee934e2294649fea205b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:c7:7a:1e:6b:f7:f4:84:e0:bf:24:f1:52:4c:
11:d3:85:6a:d5:03:cd:56:52:48:3e:86:f1:92:2d:
d1:83:e4:17:fb:26:3a:03:af:d0:3c:59:b3:84:96:
d8:f8:88:98:8b:81:26:0e:ce:f7:c0:02:5e:53:36:
6e:df:fc:46:68:80:08:74:7b:df:13:5f:fe:92:c4:
f4:35:26:da:75:b8:8e:81:0a:ea:e9:73:57:cf:a2:
60:5d:b1:cc:ec:e1:0e:26:48:33:7f:b1:b4:e7:6d:
47:29:04:e2:0f:e1:19:31:b7:9f:f9:d8:a2:71:05:
19:f0:a8:93:f1:16:a3:bb:d1:6a:0f:54:1d:73:7f:
c9:aa:92:fb:f7:27:49:15:51:44:83:0a:2f:27:18:
88:8d:41:66:a5:05:ac:4a:53:2e:ba:67:4c:40:11:
23:c4:a1:05:e9:62:5e:b5:96:dc:e7:ae:63:9b:2e:
6d:39:7f:66:8c:8c:49:74:8f:9b:19:5c:4a:36:c0:
85:22:b2:52:d0:62:d7:89:09:b7:df:7e:1c:76:42:
ea:13:01:42:2f:b3:42:a3:8d:c4:c2:7a:58:0b:3d:
01:ba:e5:7d:c5:e9:e0:0d:70:85:fd:38:50:61:b3:
02:28:dc:c3:a3:df:41:1b:bd:76:50:12:87:eb:e5:
5e:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:69:79:9F:4E:9B:61:46:92:3E:E9:34:E2:29:46:49:FE:A2:05:B4
X509v3 Authority Key Identifier:
keyid:A1:EB:60:B2:92:52:CE:18:5A:41:63:6A:24:7B:4C:02:73:D3:74:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oetgspJSzhhaQWNqJHtMAnPTdK4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/26b286-d967-4ca6-8f10-d8b0756d82a5/1/22l5n06bYUaSPuk04ilGSf6iBbQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/26b286-d967-4ca6-8f10-d8b0756d82a5/1/oetgspJSzhhaQWNqJHtMAnPTdK4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:fcc0::/29
Signature Algorithm: sha256WithRSAEncryption
87:24:3a:3f:e5:1b:40:54:d1:18:c6:33:02:d9:6f:ec:a8:89:
9d:47:67:04:67:7a:9f:ee:fa:2e:e5:86:50:03:cd:9b:1d:2e:
98:d7:5c:c8:cb:97:37:36:fb:d2:32:3b:0e:a3:69:41:3f:33:
09:8c:d6:28:ba:0c:ad:28:ee:13:32:9d:a6:1e:49:3f:9c:46:
86:62:1f:e1:30:1c:92:7d:2c:ba:b9:db:aa:cd:d0:c1:df:f3:
28:74:e8:2a:a1:e4:3a:d9:c9:59:90:8d:84:0f:db:e9:1e:33:
49:32:51:d6:e7:76:3a:53:c7:d4:e3:06:9f:9f:c6:54:89:02:
8f:29:42:20:e2:59:92:04:e5:78:a4:84:c6:e8:78:e5:bd:23:
9c:63:f5:b1:f2:eb:ff:36:00:e9:7c:1a:51:4d:20:a1:53:09:
43:6e:7d:97:ec:d5:5d:6a:0b:a0:38:24:a5:a1:a1:1d:a7:d9:
04:3e:7b:a2:bf:a1:9d:27:b8:f9:73:59:c5:6c:90:a7:fb:42:
69:db:9c:4a:91:87:7c:8d:3b:fa:0b:9e:f8:22:51:fe:62:fa:
f2:db:a2:dc:a8:8b:50:88:15:70:d2:fe:97:00:f1:d6:66:ef:
d2:4b:ee:ac:b4:c0:9a:35:de:12:87:42:da:09:89:e9:2e:70:
88:0f:73:6c
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAZQhskthve0rg6hX1q8AHLtdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGExZWI2MGIyOTI1MmNlMTg1YTQxNjM2YTI0N2I0YzAyNzNk
Mzc0YWUwHhcNMjUwMTAxMTE0ODQwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkYjY5Nzk5ZjRlOWI2MTQ2OTIzZWU5MzRlMjI5NDY0OWZlYTIwNWI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA48d6Hmv39ITgvyTxUkwR04Vq1QPN
VlJIPobxki3Rg+QX+yY6A6/QPFmzhJbY+IiYi4EmDs73wAJeUzZu3/xGaIAIdHvf
E1/+ksT0NSbadbiOgQrq6XNXz6JgXbHM7OEOJkgzf7G0521HKQTiD+EZMbef+dii
cQUZ8KiT8Raju9FqD1Qdc3/JqpL79ydJFVFEgwovJxiIjUFmpQWsSlMuumdMQBEj
xKEF6WJetZbc565jmy5tOX9mjIxJdI+bGVxKNsCFIrJS0GLXiQm3334cdkLqEwFC
L7NCo43EwnpYCz0BuuV9xengDXCF/ThQYbMCKNzDo99BG712UBKH6+VetQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFNtpeZ9Om2FGkj7pNOIpRkn+ogW0MB8GA1UdIwQY
MBaAFKHrYLKSUs4YWkFjaiR7TAJz03SuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb2V0Z3NwSlN6aGhhUVdOcUpIdE1BblBUZEs0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Zi8yNmIyODYtZDk2Ny00Y2E2LThmMTAt
ZDhiMDc1NmQ4MmE1LzEvMjJsNW4wNmJZVWFTUHVrMDRpbEdTZjZpQmJRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Zi8yNmIyODYtZDk2Ny00Y2E2LThmMTAtZDhiMDc1NmQ4MmE1
LzEvb2V0Z3NwSlN6aGhhUVdOcUpIdE1BblBUZEs0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhP8wDAN
BgkqhkiG9w0BAQsFAAOCAQEAhyQ6P+UbQFTRGMYzAtlv7KiJnUdnBGd6n+76LuWG
UAPNmx0umNdcyMuXNzb70jI7DqNpQT8zCYzWKLoMrSjuEzKdph5JP5xGhmIf4TAc
kn0surnbqs3Qwd/zKHToKqHkOtnJWZCNhA/b6R4zSTJR1ud2OlPH1OMGn5/GVIkC
jylCIOJZkgTleKSExuh45b0jnGP1sfLr/zYA6XwaUU0goVMJQ259l+zVXWoLoDgk
paGhHafZBD57or+hnSe4+XNZxWyQp/tCaducSpGHfI07+gue+CJR/mL68tui3KiL
UIgVcNL+lwDx1mbv0kvurLTAmjXeEodC2gmJ6S5wiA9zbA==
-----END CERTIFICATE-----
Generated at Fri Apr 25 05:24:24 2025 by rpki-client