Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/c56a1e-326d-4c67-a0b2-90eb95109d89/1/aQFvtjNRaKwEpQmUrXsRRsZT6Ko.roa
File: aQFvtjNRaKwEpQmUrXsRRsZT6Ko.roa (raw, json)
Hash identifier: sKUxyxyOzsXFhePxetvnfSsxdYvs0JF9bjasX7zAL7k=
Subject key identifier: 69:01:6F:B6:33:51:68:AC:04:A5:09:94:AD:7B:11:46:C6:53:E8:AA
Certificate issuer: /CN=7acd817f25893e7f88b3f3affa9152c66d6b6702
Certificate serial: 0196E235102358E0BA9C840DFD09BA4F1675
Authority key identifier: 7A:CD:81:7F:25:89:3E:7F:88:B3:F3:AF:FA:91:52:C6:6D:6B:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/es2BfyWJPn-Is_Ov-pFSxm1rZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/c56a1e-326d-4c67-a0b2-90eb95109d89/1/aQFvtjNRaKwEpQmUrXsRRsZT6Ko.roa
Signing time: Sun 18 May 2025 07:04:10 +0000
ROA not before: Sun 18 May 2025 07:04:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:196:e234:f274/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:e2:35:10:23:58:e0:ba:9c:84:0d:fd:09:ba:4f:16:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7acd817f25893e7f88b3f3affa9152c66d6b6702
Validity
Not Before: May 18 07:04:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=69016fb6335168ac04a50994ad7b1146c653e8aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:75:ce:0f:90:06:37:82:f3:52:de:c9:a3:0b:
9e:1e:2e:72:eb:a6:97:d8:34:cd:cb:00:fb:f3:3a:
22:91:c5:c6:bf:91:72:42:53:75:a3:e9:2a:10:73:
3d:16:64:12:66:9b:f4:94:ae:c6:51:d2:f5:96:b0:
73:ef:26:05:b1:27:ea:40:69:26:2f:9f:d7:a7:1e:
2d:31:a5:95:cb:00:32:d8:91:d1:58:b3:9c:4f:ec:
7c:79:32:7f:29:b3:a3:44:b3:cd:40:2f:5b:7b:42:
5e:e0:73:35:b5:6a:75:26:14:d9:e6:f3:4a:8e:a2:
c6:9c:4b:e2:40:2d:b5:99:d8:c4:ac:13:c6:3e:a9:
d0:5f:05:a4:9b:a8:8c:4b:cb:b9:bd:cf:b9:7b:df:
79:ff:db:2c:6a:e4:53:4f:ed:c9:3e:4f:c8:f2:09:
c7:08:f4:0d:16:5e:f1:7d:bb:6a:0d:2b:ab:1c:62:
d1:09:de:8a:61:ef:8f:78:3d:70:93:94:5b:6a:31:
62:45:f3:1d:58:a4:ed:94:2f:cd:cd:03:ad:1c:e3:
49:a4:1a:e0:7d:3b:8e:99:26:7b:12:38:79:07:bb:
36:be:6a:cf:2e:7e:e4:b7:a9:19:f0:55:5d:75:c9:
ea:7d:2c:32:c6:ce:36:9e:9b:46:84:83:33:8e:f6:
61:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:01:6F:B6:33:51:68:AC:04:A5:09:94:AD:7B:11:46:C6:53:E8:AA
X509v3 Authority Key Identifier:
keyid:7A:CD:81:7F:25:89:3E:7F:88:B3:F3:AF:FA:91:52:C6:6D:6B:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/es2BfyWJPn-Is_Ov-pFSxm1rZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/c56a1e-326d-4c67-a0b2-90eb95109d89/1/aQFvtjNRaKwEpQmUrXsRRsZT6Ko.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/c56a1e-326d-4c67-a0b2-90eb95109d89/1/es2BfyWJPn-Is_Ov-pFSxm1rZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:196:e234:f274/128
Signature Algorithm: sha256WithRSAEncryption
26:59:e9:c5:1d:6a:87:d6:51:68:a2:e4:99:f4:86:3f:a4:77:
e7:68:99:43:63:06:0b:62:13:ab:01:1e:7f:23:db:92:34:25:
9a:28:27:46:d5:64:cc:e8:21:ae:58:be:4c:89:7e:bf:a6:07:
a3:23:da:ea:b4:36:47:1f:7a:cb:51:c7:a9:a1:42:ba:92:1c:
e2:c9:91:b8:a4:9f:cf:27:cf:02:99:b1:53:34:ec:82:6d:27:
42:d1:d8:1a:eb:97:14:7e:01:7c:29:d3:c7:35:77:09:0a:5b:
a3:2a:f1:6d:e8:c9:d1:1e:ac:a9:9e:7d:ea:42:b6:04:15:bd:
c2:15:51:6a:3e:85:67:89:88:7a:58:4d:d1:b2:9f:11:54:7f:
1d:23:44:48:a8:ac:2a:fc:47:a8:fd:b8:57:a8:cf:c7:fe:0e:
24:c7:ae:e6:86:f4:82:a3:10:f1:32:d9:ee:fb:3f:38:f9:b3:
86:cb:ac:33:34:c8:f9:89:2e:83:87:e0:11:ae:38:e2:5c:51:
3f:3d:33:6f:57:f2:9f:12:e1:f4:28:ae:fb:3f:b9:25:93:31:
8d:c3:d7:d7:da:79:57:8a:81:5a:23:ee:3b:ba:89:c5:93:8f:
b4:8f:a4:c3:92:9d:b1:28:42:47:00:e8:c3:64:9d:b6:93:d5:
ae:4e:4a:9c
-----BEGIN CERTIFICATE-----
MIIFCjCCA/KgAwIBAgISAZbiNRAjWOC6nIQN/Qm6TxZ1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdhY2Q4MTdmMjU4OTNlN2Y4OGIzZjNhZmZhOTE1MmM2NmQ2
YjY3MDIwHhcNMjUwNTE4MDcwNDEwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2OTAxNmZiNjMzNTE2OGFjMDRhNTA5OTRhZDdiMTE0NmM2NTNlOGFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAznXOD5AGN4LzUt7JowueHi5y66aX
2DTNywD78zoikcXGv5FyQlN1o+kqEHM9FmQSZpv0lK7GUdL1lrBz7yYFsSfqQGkm
L5/Xpx4tMaWVywAy2JHRWLOcT+x8eTJ/KbOjRLPNQC9be0Je4HM1tWp1JhTZ5vNK
jqLGnEviQC21mdjErBPGPqnQXwWkm6iMS8u5vc+5e995/9ssauRTT+3JPk/I8gnH
CPQNFl7xfbtqDSurHGLRCd6KYe+PeD1wk5RbajFiRfMdWKTtlC/NzQOtHONJpBrg
fTuOmSZ7Ejh5B7s2vmrPLn7kt6kZ8FVddcnqfSwyxs42nptGhIMzjvZh/QIDAQAB
o4ICFjCCAhIwHQYDVR0OBBYEFGkBb7YzUWisBKUJlK17EUbGU+iqMB8GA1UdIwQY
MBaAFHrNgX8liT5/iLPzr/qRUsZta2cCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZXMyQmZ5V0pQbi1Jc19Pdi1wRlN4bTFyWndJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi9jNTZhMWUtMzI2ZC00YzY3LWEwYjIt
OTBlYjk1MTA5ZDg5LzEvYVFGdnRqTlJhS3dFcFFtVXJYc1JSc1pUNktvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMi9jNTZhMWUtMzI2ZC00YzY3LWEwYjItOTBlYjk1MTA5ZDg5
LzEvZXMyQmZ5V0pQbi1Jc19Pdi1wRlN4bTFyWndJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCwGCCsGAQUFBwEHAQH/BB0wGzAZBAIAAjATAxEAIAEGfABk
//8AAAGW4jTydDANBgkqhkiG9w0BAQsFAAOCAQEAJlnpxR1qh9ZRaKLkmfSGP6R3
52iZQ2MGC2ITqwEefyPbkjQlmignRtVkzOghrli+TIl+v6YHoyPa6rQ2Rx96y1HH
qaFCupIc4smRuKSfzyfPApmxUzTsgm0nQtHYGuuXFH4BfCnTxzV3CQpboyrxbejJ
0R6sqZ596kK2BBW9whVRaj6FZ4mIelhN0bKfEVR/HSNESKisKvxHqP24V6jPx/4O
JMeu5ob0gqMQ8TLZ7vs/OPmzhsusMzTI+Ykug4fgEa444lxRPz0zb1fynxLh9Ciu
+z+5JZMxjcPX19p5V4qBWiPuO7qJxZOPtI+kw5KdsShCRwDow2SdtpPVrk5KnA==
-----END CERTIFICATE-----
Generated at Mon Jun 16 12:28:13 2025 by rpki-client