Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/7486fd-3f81-4540-aaaa-0b3ed25f66e9/1/qr7zx5BsF2EhVClMW2bV5TYX4sA.roa
File: qr7zx5BsF2EhVClMW2bV5TYX4sA.roa (raw, json)
Hash identifier: +W/DUO6PQZ39UQNBDhxMmx4dpk3OnGrqkdgvN5GGSbQ=
Subject key identifier: AA:BE:F3:C7:90:6C:17:61:21:54:29:4C:5B:66:D5:E5:36:17:E2:C0
Certificate issuer: /CN=b5b537918dd90251eb36538e7181ce933c7ef845
Certificate serial: 019B7DCA520C9F0F0E96AE1206FFBFCAA196
Authority key identifier: B5:B5:37:91:8D:D9:02:51:EB:36:53:8E:71:81:CE:93:3C:7E:F8:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tbU3kY3ZAlHrNlOOcYHOkzx--EU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/7486fd-3f81-4540-aaaa-0b3ed25f66e9/1/qr7zx5BsF2EhVClMW2bV5TYX4sA.roa
Signing time: Fri 02 Jan 2026 08:19:29 +0000
ROA not before: Fri 02 Jan 2026 08:19:29 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 207394
IP address blocks: 2001:67c:25ec::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9b:7d:ca:52:0c:9f:0f:0e:96:ae:12:06:ff:bf:ca:a1:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5b537918dd90251eb36538e7181ce933c7ef845
Validity
Not Before: Jan 2 08:19:29 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=aabef3c7906c17612154294c5b66d5e53617e2c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:51:fe:44:81:90:71:14:9d:74:88:0f:9a:10:
c2:93:79:3d:d0:eb:ea:2b:02:8c:e3:d8:70:35:00:
04:1b:bd:2b:3d:90:71:bf:65:ee:86:89:f1:c0:ab:
87:89:8d:91:d0:60:79:d9:e6:58:69:96:9b:cd:b9:
4e:b6:5b:59:7e:46:90:66:e9:59:5c:66:7a:2c:22:
18:74:30:33:19:70:14:54:b8:57:48:d7:71:4c:6d:
ee:c9:03:47:06:87:0b:50:3c:8b:0a:54:f7:11:c2:
57:5e:47:86:b8:7f:0b:86:c1:0a:4a:68:b6:c0:96:
02:35:42:a0:c6:ea:77:49:e4:27:a8:65:a4:5e:dc:
9d:bc:bb:71:f6:1e:ae:d7:e0:d4:15:2f:7f:b2:b1:
7c:b9:38:fa:f0:44:e3:62:9c:a6:0f:a9:f9:0d:6f:
f5:ec:56:f9:e7:5f:7e:b7:00:45:5e:95:d2:5c:f1:
e9:85:12:ac:20:5e:89:ab:9f:33:a1:fa:ff:62:14:
77:00:1a:ea:ae:e2:bf:55:d6:d6:19:58:66:5c:85:
bb:46:11:04:de:c6:18:ca:df:93:5c:17:91:30:7e:
d5:f8:52:94:bd:d1:6f:0c:7b:df:42:c8:da:74:29:
11:93:0a:fd:a4:c7:56:db:90:6a:78:fc:18:40:9a:
ae:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:BE:F3:C7:90:6C:17:61:21:54:29:4C:5B:66:D5:E5:36:17:E2:C0
X509v3 Authority Key Identifier:
keyid:B5:B5:37:91:8D:D9:02:51:EB:36:53:8E:71:81:CE:93:3C:7E:F8:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tbU3kY3ZAlHrNlOOcYHOkzx--EU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/7486fd-3f81-4540-aaaa-0b3ed25f66e9/1/qr7zx5BsF2EhVClMW2bV5TYX4sA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/7486fd-3f81-4540-aaaa-0b3ed25f66e9/1/tbU3kY3ZAlHrNlOOcYHOkzx--EU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:25ec::/48
Signature Algorithm: sha256WithRSAEncryption
16:dc:ce:d1:96:62:f9:95:d5:98:89:f6:cd:a2:b0:1b:74:0e:
f9:cf:04:11:e5:5a:0f:61:62:c4:66:23:89:44:af:3e:86:43:
6a:ec:e8:60:f7:87:fb:4a:4a:20:7c:1d:52:0f:5d:01:87:fc:
db:42:0b:99:9e:2f:0e:2b:7f:85:ad:45:a0:b8:8f:32:bb:07:
6c:66:5f:4f:56:58:87:91:8a:c3:c9:69:e2:b4:d1:af:df:40:
06:e0:c7:02:fb:c8:8e:f6:f0:13:39:2a:35:73:68:2a:eb:95:
46:dd:56:d4:e3:5b:e2:51:ea:fa:12:e7:c4:24:53:7a:a4:2d:
37:01:14:95:63:76:49:95:b6:23:eb:26:b0:c3:98:34:72:1b:
dc:b4:02:54:82:54:f3:d8:55:60:9f:f1:6d:a7:1e:72:49:d4:
7e:6e:c0:0a:20:f8:84:e4:b1:19:ed:23:0d:39:c3:c5:24:69:
ed:3f:c6:e1:95:83:87:0a:ba:8c:2e:fc:7d:89:ab:78:82:62:
47:da:74:d5:73:65:00:ff:53:8d:c6:34:33:2f:56:b5:ff:68:
1b:b4:82:fe:f0:a2:b1:10:15:ae:37:ab:86:a4:8b:65:ad:34:
89:5e:9d:4f:c9:68:7f:66:66:a8:6e:74:8e:1f:df:30:77:b0:
b1:fc:2e:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 15:04:39 2026 by rpki-client