Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/306adb-7aa7-4b82-b05a-2a6b9a0ccabd/1/VTn6EUtQCO3oepKWF0k0ld0XSjA.roa
File: VTn6EUtQCO3oepKWF0k0ld0XSjA.roa (raw, json)
Hash identifier: Tq2gVAAnQassaUGQuCNSlznhLVZoKruMbeiYe+SNasU=
Subject key identifier: 55:39:FA:11:4B:50:08:ED:E8:7A:92:96:17:49:34:95:DD:17:4A:30
Certificate issuer: /CN=8c856557c4146a8b50dc4d94424b06680cef755b
Certificate serial: 019421439BC79B22E2F8279147E296843DFB
Authority key identifier: 8C:85:65:57:C4:14:6A:8B:50:DC:4D:94:42:4B:06:68:0C:EF:75:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jIVlV8QUaotQ3E2UQksGaAzvdVs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/306adb-7aa7-4b82-b05a-2a6b9a0ccabd/1/VTn6EUtQCO3oepKWF0k0ld0XSjA.roa
Signing time: Wed 01 Jan 2025 09:47:46 +0000
ROA not before: Wed 01 Jan 2025 09:47:46 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 49846
IP address blocks: 2a01:348:317:8000::/49 maxlen: 49
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:43:9b:c7:9b:22:e2:f8:27:91:47:e2:96:84:3d:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c856557c4146a8b50dc4d94424b06680cef755b
Validity
Not Before: Jan 1 09:47:46 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5539fa114b5008ede87a929617493495dd174a30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:ff:7b:e4:b0:09:0f:dc:e8:c6:b7:37:17:28:
99:86:da:5d:72:49:d2:85:47:6c:22:50:9a:9d:f9:
a5:89:d5:e9:29:ab:f3:42:86:86:19:4f:a9:11:16:
77:52:f1:04:c7:21:e3:8d:06:9e:b3:b5:36:f3:20:
b2:af:4c:67:fe:54:6c:1e:10:67:98:6d:11:39:cc:
04:5f:97:48:03:0d:d5:3d:b6:a4:71:63:25:ea:ad:
38:79:b9:2f:75:40:7d:a7:62:0f:ba:31:69:ce:fe:
e0:1f:13:ce:65:fe:38:ba:88:a5:44:ba:b4:67:8a:
db:77:65:b7:20:e8:61:4c:53:05:08:53:34:bf:37:
a8:4a:41:c2:26:0c:18:47:19:97:bc:64:13:02:71:
dd:7a:80:10:d8:30:7c:cb:2a:d0:31:77:16:3a:62:
20:52:e5:3d:7d:87:db:39:7a:0c:ba:eb:c3:fa:37:
c9:18:36:8e:25:91:f2:81:65:80:b8:5a:42:9e:fe:
d0:09:24:b7:20:be:be:39:1a:d8:de:89:66:a2:af:
19:ef:58:77:2d:20:88:48:e5:39:86:8a:4b:53:80:
57:84:1d:5f:39:d9:46:71:6a:1a:d4:8a:a6:1b:7b:
56:e0:d4:05:ce:33:2d:50:69:5d:0b:45:81:ed:6d:
a0:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:39:FA:11:4B:50:08:ED:E8:7A:92:96:17:49:34:95:DD:17:4A:30
X509v3 Authority Key Identifier:
keyid:8C:85:65:57:C4:14:6A:8B:50:DC:4D:94:42:4B:06:68:0C:EF:75:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jIVlV8QUaotQ3E2UQksGaAzvdVs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/306adb-7aa7-4b82-b05a-2a6b9a0ccabd/1/VTn6EUtQCO3oepKWF0k0ld0XSjA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/306adb-7aa7-4b82-b05a-2a6b9a0ccabd/1/jIVlV8QUaotQ3E2UQksGaAzvdVs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:348:317:8000::/49
Signature Algorithm: sha256WithRSAEncryption
26:a5:9c:42:5b:17:32:35:6e:67:b0:c2:97:be:ad:02:54:43:
c0:73:41:51:bf:61:92:6d:6d:1c:df:18:60:e1:2c:ef:40:e6:
42:06:02:f2:27:4d:1c:de:91:77:60:2f:00:36:8c:3c:49:08:
cb:37:d9:25:ea:b0:25:bc:12:db:83:46:ca:d4:de:5e:7e:86:
af:57:c2:2d:de:c8:70:ee:c4:67:55:91:60:7b:07:d2:2a:1d:
c9:73:e7:56:2b:e2:ae:0d:9f:87:f8:10:81:26:ab:bb:99:5e:
39:bb:d5:87:d5:0c:a9:ef:a0:cd:60:3d:ad:d6:6e:5e:74:4c:
0e:52:17:71:d3:0b:27:f9:91:b9:e9:15:fb:33:85:28:e1:c7:
65:97:2a:db:c1:19:ed:3a:da:e4:8e:35:ea:0f:c6:11:51:2a:
41:73:2f:8c:3a:58:dd:ac:88:8e:df:79:b6:db:75:c5:ae:f7:
aa:a0:8a:26:c1:6b:94:69:88:ec:90:b9:40:10:fe:26:e3:ee:
a3:16:6c:a0:3e:fb:6c:bf:3a:43:d1:2b:ef:0f:e1:14:25:41:
31:25:a9:93:ed:8f:95:2d:2a:09:2b:82:3a:52:4b:dc:27:e0:
1a:93:51:ad:30:4a:b7:a4:55:ce:ce:3a:9b:68:1e:b1:59:17:
98:12:f7:f9
-----BEGIN CERTIFICATE-----
MIIFATCCA+mgAwIBAgISAZQhQ5vHmyLi+CeRR+KWhD37MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhjODU2NTU3YzQxNDZhOGI1MGRjNGQ5NDQyNGIwNjY4MGNl
Zjc1NWIwHhcNMjUwMTAxMDk0NzQ2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NTM5ZmExMTRiNTAwOGVkZTg3YTkyOTYxNzQ5MzQ5NWRkMTc0YTMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5P975LAJD9zoxrc3FyiZhtpdcknS
hUdsIlCanfmlidXpKavzQoaGGU+pERZ3UvEExyHjjQaes7U28yCyr0xn/lRsHhBn
mG0ROcwEX5dIAw3VPbakcWMl6q04ebkvdUB9p2IPujFpzv7gHxPOZf44uoilRLq0
Z4rbd2W3IOhhTFMFCFM0vzeoSkHCJgwYRxmXvGQTAnHdeoAQ2DB8yyrQMXcWOmIg
UuU9fYfbOXoMuuvD+jfJGDaOJZHygWWAuFpCnv7QCSS3IL6+ORrY3olmoq8Z71h3
LSCISOU5hopLU4BXhB1fOdlGcWoa1IqmG3tW4NQFzjMtUGldC0WB7W2gsQIDAQAB
o4ICDTCCAgkwHQYDVR0OBBYEFFU5+hFLUAjt6HqSlhdJNJXdF0owMB8GA1UdIwQY
MBaAFIyFZVfEFGqLUNxNlEJLBmgM73VbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaklWbFY4UVVhb3RRM0UyVVFrc0dhQXp2ZFZzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC8zMDZhZGItN2FhNy00YjgyLWIwNWEt
MmE2YjlhMGNjYWJkLzEvVlRuNkVVdFFDTzNvZXBLV0YwazBsZDBYU2pBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZC8zMDZhZGItN2FhNy00YjgyLWIwNWEtMmE2YjlhMGNjYWJk
LzEvaklWbFY4UVVhb3RRM0UyVVFrc0dhQXp2ZFZzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCMGCCsGAQUFBwEHAQH/BBQwEjAQBAIAAjAKAwgHKgEDSAMX
gDANBgkqhkiG9w0BAQsFAAOCAQEAJqWcQlsXMjVuZ7DCl76tAlRDwHNBUb9hkm1t
HN8YYOEs70DmQgYC8idNHN6Rd2AvADaMPEkIyzfZJeqwJbwS24NGytTeXn6Gr1fC
Ld7IcO7EZ1WRYHsH0iodyXPnVivirg2fh/gQgSaru5leObvVh9UMqe+gzWA9rdZu
XnRMDlIXcdMLJ/mRuekV+zOFKOHHZZcq28EZ7Tra5I416g/GEVEqQXMvjDpY3ayI
jt95ttt1xa73qqCKJsFrlGmI7JC5QBD+JuPuoxZsoD77bL86Q9Er7w/hFCVBMSWp
k+2PlS0qCSuCOlJL3CfgGpNRrTBKt6RVzs46m2gesVkXmBL3+Q==
-----END CERTIFICATE-----
Generated at Fri Apr 25 12:31:10 2025 by rpki-client