Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/6d59d9-9daf-4fcb-8d05-13bcc752119a/1/83iiWOjOdIOxG1n8PMQBNawXwFU.roa
File: 83iiWOjOdIOxG1n8PMQBNawXwFU.roa (raw, json)
Hash identifier: pUBA/svmkOSRiXA9i809df1RCZOY8Q6bMGRdmxlZl8U=
Subject key identifier: F3:78:A2:58:E8:CE:74:83:B1:1B:59:FC:3C:C4:01:35:AC:17:C0:55
Certificate issuer: /CN=b07ab922565e2b3e2cc63d485a55dd4fc41d357e
Certificate serial: 018CC64B2BFFF3BE2BF53AD6574EC62A0C4B
Authority key identifier: B0:7A:B9:22:56:5E:2B:3E:2C:C6:3D:48:5A:55:DD:4F:C4:1D:35:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sHq5IlZeKz4sxj1IWlXdT8QdNX4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/6d59d9-9daf-4fcb-8d05-13bcc752119a/1/83iiWOjOdIOxG1n8PMQBNawXwFU.roa
Signing time: Mon 01 Jan 2024 18:31:04 +0000
ROA not before: Mon 01 Jan 2024 18:31:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211481
IP address blocks: 2a12:f8c0::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:2b:ff:f3:be:2b:f5:3a:d6:57:4e:c6:2a:0c:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b07ab922565e2b3e2cc63d485a55dd4fc41d357e
Validity
Not Before: Jan 1 18:31:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f378a258e8ce7483b11b59fc3cc40135ac17c055
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:02:56:4e:2b:1e:1c:1b:bd:8d:c3:63:b8:14:
27:11:bc:e6:4b:36:17:45:b9:e5:dc:bb:9f:31:b9:
ec:de:e3:8b:49:87:eb:98:e4:80:23:cf:1b:d3:b3:
78:40:92:93:a9:12:62:77:b1:33:95:3c:4f:3f:e6:
00:2f:e4:9c:c7:2d:b7:23:66:24:e6:65:00:52:96:
ac:ff:95:b9:a3:92:be:21:bc:e1:4a:21:23:d0:5a:
d9:07:c8:ee:9a:bb:71:34:de:ed:1d:cc:19:8a:76:
49:0e:72:3d:ba:94:d0:8b:97:61:7d:16:4b:13:19:
ad:73:09:5c:9c:34:14:41:a5:df:cc:a5:5c:66:20:
71:2e:61:4b:2f:cf:18:02:03:b7:7f:e6:af:27:5b:
af:26:ec:49:b9:cf:8a:26:41:8e:b5:2e:d2:9d:81:
be:19:36:a7:aa:bd:b3:8f:d7:d9:f5:90:bc:4c:2a:
2e:6d:1d:07:5e:b1:28:08:d2:0d:55:70:71:45:1f:
45:7c:a4:a9:2d:4f:a4:94:f1:b8:82:83:c2:dd:eb:
66:30:33:8d:80:90:a5:93:ed:3b:a2:f8:be:ad:5b:
1e:61:08:37:ab:9e:90:ad:3a:a4:7b:f7:b5:c2:88:
05:f7:38:74:88:5c:e0:7c:fc:fc:39:19:df:83:86:
15:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:78:A2:58:E8:CE:74:83:B1:1B:59:FC:3C:C4:01:35:AC:17:C0:55
X509v3 Authority Key Identifier:
keyid:B0:7A:B9:22:56:5E:2B:3E:2C:C6:3D:48:5A:55:DD:4F:C4:1D:35:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sHq5IlZeKz4sxj1IWlXdT8QdNX4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/6d59d9-9daf-4fcb-8d05-13bcc752119a/1/83iiWOjOdIOxG1n8PMQBNawXwFU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/6d59d9-9daf-4fcb-8d05-13bcc752119a/1/sHq5IlZeKz4sxj1IWlXdT8QdNX4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:f8c0::/32
Signature Algorithm: sha256WithRSAEncryption
9a:17:ec:cd:fe:88:89:3f:15:f9:6e:5e:c5:27:52:53:ac:24:
7c:63:bb:18:57:a0:7f:b9:a9:c4:4f:43:46:54:39:85:46:ae:
44:31:77:62:54:2d:9a:d9:47:89:2c:d3:82:47:6a:08:9d:4f:
71:ac:21:4f:e2:73:21:3e:ae:55:4c:ff:cc:da:78:8f:f0:32:
4e:72:6d:aa:63:7e:1c:37:8c:c7:84:6e:62:b1:19:37:12:86:
0e:80:9a:e2:d5:77:50:47:79:50:37:ef:4e:ed:d5:ee:6e:f8:
65:e9:8e:4a:2b:5c:f1:4e:d5:fb:99:de:5f:cf:47:6f:ec:ef:
50:2d:4a:7f:f6:f7:e7:b9:56:07:3b:ca:f4:08:f6:0c:71:e7:
c6:99:0d:72:ab:91:06:6e:89:3f:3f:78:03:90:11:8d:64:c3:
38:ec:b1:0d:ed:b2:77:ec:47:5d:08:53:d6:ca:38:f6:e5:19:
06:ca:98:e1:38:bd:13:1d:ef:e9:71:81:03:b3:ad:44:6c:5e:
c2:67:b9:b8:36:de:35:c8:77:10:5f:4f:5b:c5:fc:10:e7:a7:
48:b2:bb:d1:3f:01:45:fe:a1:24:b3:88:06:63:9e:9f:34:57:
c7:73:b9:62:b6:17:fa:a2:90:cc:80:08:7e:0d:8b:6d:d2:cc:
3f:cd:87:a0
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYzGSyv/874r9TrWV07GKgxLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIwN2FiOTIyNTY1ZTJiM2UyY2M2M2Q0ODVhNTVkZDRmYzQx
ZDM1N2UwHhcNMjQwMTAxMTgzMTA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMzc4YTI1OGU4Y2U3NDgzYjExYjU5ZmMzY2M0MDEzNWFjMTdjMDU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhAJWTiseHBu9jcNjuBQnEbzmSzYX
Rbnl3LufMbns3uOLSYfrmOSAI88b07N4QJKTqRJid7EzlTxPP+YAL+Scxy23I2Yk
5mUAUpas/5W5o5K+IbzhSiEj0FrZB8jumrtxNN7tHcwZinZJDnI9upTQi5dhfRZL
ExmtcwlcnDQUQaXfzKVcZiBxLmFLL88YAgO3f+avJ1uvJuxJuc+KJkGOtS7SnYG+
GTanqr2zj9fZ9ZC8TCoubR0HXrEoCNINVXBxRR9FfKSpLU+klPG4goPC3etmMDON
gJClk+07ovi+rVseYQg3q56QrTqke/e1wogF9zh0iFzgfPz8ORnfg4YV8wIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFPN4oljoznSDsRtZ/DzEATWsF8BVMB8GA1UdIwQY
MBaAFLB6uSJWXis+LMY9SFpV3U/EHTV+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc0hxNUlsWmVLejRzeGoxSVdsWGRUOFFkTlg0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS82ZDU5ZDktOWRhZi00ZmNiLThkMDUt
MTNiY2M3NTIxMTlhLzEvODNpaVdPak9kSU94RzFuOFBNUUJOYXdYd0ZVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZS82ZDU5ZDktOWRhZi00ZmNiLThkMDUtMTNiY2M3NTIxMTlh
LzEvc0hxNUlsWmVLejRzeGoxSVdsWGRUOFFkTlg0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKhL4wDAN
BgkqhkiG9w0BAQsFAAOCAQEAmhfszf6IiT8V+W5exSdSU6wkfGO7GFegf7mpxE9D
RlQ5hUauRDF3YlQtmtlHiSzTgkdqCJ1PcawhT+JzIT6uVUz/zNp4j/AyTnJtqmN+
HDeMx4RuYrEZNxKGDoCa4tV3UEd5UDfvTu3V7m74ZemOSitc8U7V+5neX89Hb+zv
UC1Kf/b357lWBzvK9Aj2DHHnxpkNcquRBm6JPz94A5ARjWTDOOyxDe2yd+xHXQhT
1so49uUZBsqY4Ti9Ex3v6XGBA7OtRGxewme5uDbeNch3EF9PW8X8EOenSLK70T8B
Rf6hJLOIBmOenzRXx3O5YrYX+qKQzIAIfg2LbdLMP82HoA==
-----END CERTIFICATE-----
Generated at Fri Apr 11 21:27:50 2025 by rpki-client