Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/979296-ef7a-4bac-8c15-67771359a2b3/1/7xOhUPHtrbr-aDnyk2sqIXaZxmE.roa
File: 7xOhUPHtrbr-aDnyk2sqIXaZxmE.roa (raw, json)
Hash identifier: kq8yM7VvfoH1+ATjkQ5zBAmoZIPQA7DySnzjc28AM7I=
Subject key identifier: EF:13:A1:50:F1:ED:AD:BA:FE:68:39:F2:93:6B:2A:21:76:99:C6:61
Certificate issuer: /CN=20c5ee02d2e05861dd906fe06b3844f04d378c73
Certificate serial: 0194258F450040CE02BE789E90C01D989C1A
Authority key identifier: 20:C5:EE:02:D2:E0:58:61:DD:90:6F:E0:6B:38:44:F0:4D:37:8C:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IMXuAtLgWGHdkG_gazhE8E03jHM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/979296-ef7a-4bac-8c15-67771359a2b3/1/7xOhUPHtrbr-aDnyk2sqIXaZxmE.roa
Signing time: Thu 02 Jan 2025 05:48:53 +0000
ROA not before: Thu 02 Jan 2025 05:48:53 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 59861
IP address blocks: 2a10:dc7::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:45:00:40:ce:02:be:78:9e:90:c0:1d:98:9c:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20c5ee02d2e05861dd906fe06b3844f04d378c73
Validity
Not Before: Jan 2 05:48:53 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ef13a150f1edadbafe6839f2936b2a217699c661
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:6d:48:23:79:78:2e:72:3a:73:56:cd:fb:86:
42:3d:1e:11:bc:18:09:8c:d9:c8:41:01:fc:da:94:
5f:06:ec:94:cb:85:ff:c7:03:f2:eb:d8:d3:91:ba:
7e:ac:cf:d1:6b:b0:37:24:e9:5b:50:cc:38:9f:c0:
05:be:78:99:87:ca:b6:de:54:2c:43:d7:b6:ab:12:
d9:8d:ef:6a:ea:b3:0c:f2:f7:97:37:da:d5:12:00:
6b:fe:75:98:e9:20:75:ff:63:d8:c7:71:6f:57:e4:
fb:68:32:84:44:d9:de:2a:d2:45:17:8c:0e:37:81:
ca:f5:0a:9f:a7:d1:05:f2:98:e3:11:f6:bc:49:a8:
1b:3c:5d:f9:f5:a2:78:42:48:09:07:9f:00:27:cb:
da:cf:62:1c:f6:f8:20:75:76:d7:3e:db:af:52:23:
c4:d9:6a:5c:ba:5e:a6:27:07:63:74:f0:22:71:f1:
f9:90:67:50:1a:8c:ff:58:cb:22:1c:4b:ae:93:48:
44:3b:16:0d:90:09:4f:8a:02:d5:2b:e5:6e:0c:e0:
b6:bb:79:14:77:6e:ed:b7:ac:d2:74:4e:94:57:77:
e2:90:86:a0:b9:18:a6:70:88:19:3f:d5:3a:49:ba:
82:ac:97:2a:d1:71:83:c2:c0:8c:00:0a:34:47:50:
d9:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:13:A1:50:F1:ED:AD:BA:FE:68:39:F2:93:6B:2A:21:76:99:C6:61
X509v3 Authority Key Identifier:
keyid:20:C5:EE:02:D2:E0:58:61:DD:90:6F:E0:6B:38:44:F0:4D:37:8C:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IMXuAtLgWGHdkG_gazhE8E03jHM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/979296-ef7a-4bac-8c15-67771359a2b3/1/7xOhUPHtrbr-aDnyk2sqIXaZxmE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/979296-ef7a-4bac-8c15-67771359a2b3/1/IMXuAtLgWGHdkG_gazhE8E03jHM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:dc7::/32
Signature Algorithm: sha256WithRSAEncryption
1c:0a:2f:e2:15:54:d1:c9:68:7f:a2:dd:ba:c3:75:5c:77:bc:
10:c1:5a:94:6c:a3:89:7d:39:e0:fa:9e:b9:11:b1:06:a7:e9:
d4:5a:b6:e2:fc:43:5b:41:27:4d:d5:46:bf:1e:41:dd:f1:4d:
a0:51:4f:cf:32:e7:32:85:4d:c3:e2:e4:84:cb:05:8a:62:17:
37:d8:09:6c:f6:9c:e5:06:57:f9:a4:72:3a:7e:5b:39:5d:00:
88:4a:9e:85:1d:54:f6:a4:32:c1:83:01:b8:00:1b:c2:1f:4e:
12:11:b3:e1:cd:ca:10:78:51:63:5b:f1:dd:3e:6b:31:1e:bb:
d3:be:3c:bb:09:57:0b:f4:d8:f6:73:80:ed:a1:40:a7:57:2c:
f1:9b:bd:05:4e:00:14:7b:3b:97:c0:eb:c9:1c:f3:fe:d5:16:
09:33:6e:8d:75:fb:a0:3c:d8:08:95:47:8d:2b:45:fa:de:18:
88:28:34:37:16:af:2c:0f:82:d9:f0:aa:63:be:c8:2f:de:f2:
76:a4:eb:d9:22:a0:6a:fd:cf:0a:4f:f9:1f:c8:5a:19:a4:0c:
98:67:01:1a:e8:49:26:58:21:c1:29:3d:55:5b:2c:95:d3:53:
4d:53:a0:e8:6e:27:7f:c3:3e:a4:0c:5e:84:c6:29:d9:47:a3:
17:7d:d9:6f
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAZQlj0UAQM4CvniekMAdmJwaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIwYzVlZTAyZDJlMDU4NjFkZDkwNmZlMDZiMzg0NGYwNGQz
NzhjNzMwHhcNMjUwMTAyMDU0ODUzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZjEzYTE1MGYxZWRhZGJhZmU2ODM5ZjI5MzZiMmEyMTc2OTljNjYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6G1II3l4LnI6c1bN+4ZCPR4RvBgJ
jNnIQQH82pRfBuyUy4X/xwPy69jTkbp+rM/Ra7A3JOlbUMw4n8AFvniZh8q23lQs
Q9e2qxLZje9q6rMM8veXN9rVEgBr/nWY6SB1/2PYx3FvV+T7aDKERNneKtJFF4wO
N4HK9Qqfp9EF8pjjEfa8SagbPF359aJ4QkgJB58AJ8vaz2Ic9vggdXbXPtuvUiPE
2Wpcul6mJwdjdPAicfH5kGdQGoz/WMsiHEuuk0hEOxYNkAlPigLVK+VuDOC2u3kU
d27tt6zSdE6UV3fikIaguRimcIgZP9U6SbqCrJcq0XGDwsCMAAo0R1DZOQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFO8ToVDx7a26/mg58pNrKiF2mcZhMB8GA1UdIwQY
MBaAFCDF7gLS4Fhh3ZBv4Gs4RPBNN4xzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSU1YdUF0TGdXR0hka0dfZ2F6aEU4RTAzakhNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZC85NzkyOTYtZWY3YS00YmFjLThjMTUt
Njc3NzEzNTlhMmIzLzEvN3hPaFVQSHRyYnItYURueWsyc3FJWGFaeG1FLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZC85NzkyOTYtZWY3YS00YmFjLThjMTUtNjc3NzEzNTlhMmIz
LzEvSU1YdUF0TGdXR0hka0dfZ2F6aEU4RTAzakhNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKhANxzAN
BgkqhkiG9w0BAQsFAAOCAQEAHAov4hVU0clof6LdusN1XHe8EMFalGyjiX054Pqe
uRGxBqfp1Fq24vxDW0EnTdVGvx5B3fFNoFFPzzLnMoVNw+LkhMsFimIXN9gJbPac
5QZX+aRyOn5bOV0AiEqehR1U9qQywYMBuAAbwh9OEhGz4c3KEHhRY1vx3T5rMR67
0748uwlXC/TY9nOA7aFAp1cs8Zu9BU4AFHs7l8DryRzz/tUWCTNujXX7oDzYCJVH
jStF+t4YiCg0NxavLA+C2fCqY77IL97ydqTr2SKgav3PCk/5H8haGaQMmGcBGuhJ
JlghwSk9VVssldNTTVOg6G4nf8M+pAxehMYp2UejF33Zbw==
-----END CERTIFICATE-----
Generated at Fri Apr 25 09:22:06 2025 by rpki-client