Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ea6f71-49bc-43fa-a288-179ce9408242/1/pdVFFfJ8w8yYOn85F882cyEsuYE.roa
File: pdVFFfJ8w8yYOn85F882cyEsuYE.roa (raw, json)
Hash identifier: Vtw34dKw5P1dGI9tEcoJcNQ4vrknGIsfeuJUDgElBTs=
Subject key identifier: A5:D5:45:15:F2:7C:C3:CC:98:3A:7F:39:17:CF:36:73:21:2C:B9:81
Certificate issuer: /CN=bfbf623f4c3ea3d1b969b405945177eebaaf9ecd
Certificate serial: 01856F6FEEEC0439F9EE425B9F9B5FAA272D
Authority key identifier: BF:BF:62:3F:4C:3E:A3:D1:B9:69:B4:05:94:51:77:EE:BA:AF:9E:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v79iP0w-o9G5abQFlFF37rqvns0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ea6f71-49bc-43fa-a288-179ce9408242/1/pdVFFfJ8w8yYOn85F882cyEsuYE.roa
Signing time: Sun 01 Jan 2023 22:24:44 +0000
ROA not before: Sun 01 Jan 2023 22:24:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 22773
IP address blocks: 2a11:3680::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:6f:ee:ec:04:39:f9:ee:42:5b:9f:9b:5f:aa:27:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfbf623f4c3ea3d1b969b405945177eebaaf9ecd
Validity
Not Before: Jan 1 22:24:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a5d54515f27cc3cc983a7f3917cf3673212cb981
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:15:a9:13:e3:eb:7f:bd:d1:30:65:e0:22:f6:
cb:bb:e2:7b:29:0b:55:15:22:73:0d:b1:cb:b7:c3:
e8:e2:0d:c4:9b:fb:92:49:89:79:ce:d5:1e:6e:2a:
ae:75:4c:2c:ff:e2:6a:91:12:ab:f0:74:55:09:23:
31:92:4b:cf:35:65:36:1a:eb:70:1b:75:2d:f0:df:
ea:8b:e2:c0:9a:c4:2f:ae:58:1b:ec:20:62:82:a4:
aa:b3:2b:fb:a2:16:b9:1e:33:20:7b:cf:15:f5:b4:
f2:8f:4c:e7:6f:ba:63:0b:22:c9:dd:89:70:6c:ce:
76:ff:b1:f7:99:73:c1:82:e1:46:95:dc:fc:f9:fb:
27:4f:57:d0:10:bd:74:1b:55:ef:d7:3e:93:60:24:
75:a5:18:ce:da:79:01:b6:0e:41:21:34:b8:54:70:
ca:fe:17:a8:e8:35:06:4c:e4:6c:cb:6b:8c:e5:64:
5b:5e:58:e0:a9:86:51:83:5d:2c:b5:b6:63:75:40:
6a:51:58:f3:66:c9:54:d7:f3:c2:32:de:ca:10:54:
e9:11:35:14:e2:96:3e:e6:e2:65:d0:e9:a4:da:2d:
51:30:05:4c:3d:c8:e6:5a:59:ae:e8:03:4b:c6:2a:
0a:e8:fc:61:9a:72:a9:61:46:de:94:1e:f1:f3:3f:
98:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:D5:45:15:F2:7C:C3:CC:98:3A:7F:39:17:CF:36:73:21:2C:B9:81
X509v3 Authority Key Identifier:
keyid:BF:BF:62:3F:4C:3E:A3:D1:B9:69:B4:05:94:51:77:EE:BA:AF:9E:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v79iP0w-o9G5abQFlFF37rqvns0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ea6f71-49bc-43fa-a288-179ce9408242/1/pdVFFfJ8w8yYOn85F882cyEsuYE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ea6f71-49bc-43fa-a288-179ce9408242/1/v79iP0w-o9G5abQFlFF37rqvns0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:3680::/29
Signature Algorithm: sha256WithRSAEncryption
56:b8:df:6d:22:0b:20:d1:7a:da:e5:9f:a3:1a:c3:21:0b:81:
cf:30:f5:32:1a:3b:32:c9:5f:80:bb:96:ba:9c:87:09:14:17:
84:4b:b7:9b:9e:53:6d:38:42:65:8b:aa:40:62:bf:12:be:ce:
ca:61:84:48:35:44:1d:9a:91:df:fe:e3:5a:53:26:72:e5:30:
bc:a5:9c:4b:b2:eb:c2:f6:6e:26:35:34:82:05:f8:d6:c0:b8:
dd:78:49:19:d0:ba:54:fe:b6:fe:6b:6b:27:44:17:87:72:8b:
9b:d3:f6:22:bd:1a:cc:b1:bd:52:94:32:29:56:3b:1d:3d:1b:
87:36:10:fa:b5:58:b1:a6:5c:af:4b:4f:9a:76:75:3a:f4:8b:
c2:05:f6:54:ca:0a:08:54:a4:1f:df:c6:70:b7:f7:83:f9:77:
03:df:4c:4b:c4:aa:1a:26:94:76:0d:b1:2b:42:4b:83:0c:98:
d5:f0:40:8a:98:f3:96:11:e9:70:d5:ee:16:54:b6:41:67:86:
76:5b:c8:8c:50:22:ac:bb:1e:e9:4a:18:9b:90:39:1c:2b:d8:
d8:75:08:c1:66:40:b7:fb:cf:95:ba:09:ac:4f:c0:38:80:ba:
d7:d5:89:0b:2d:52:3d:fb:8e:f9:51:06:a6:0f:42:19:27:fa:
e4:2a:0b:92
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYVvb+7sBDn57kJbn5tfqictMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJmYmY2MjNmNGMzZWEzZDFiOTY5YjQwNTk0NTE3N2VlYmFh
ZjllY2QwHhcNMjMwMTAxMjIyNDQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNWQ1NDUxNWYyN2NjM2NjOTgzYTdmMzkxN2NmMzY3MzIxMmNiOTgxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0hWpE+Prf73RMGXgIvbLu+J7KQtV
FSJzDbHLt8Po4g3Em/uSSYl5ztUebiqudUws/+JqkRKr8HRVCSMxkkvPNWU2Gutw
G3Ut8N/qi+LAmsQvrlgb7CBigqSqsyv7oha5HjMge88V9bTyj0znb7pjCyLJ3Ylw
bM52/7H3mXPBguFGldz8+fsnT1fQEL10G1Xv1z6TYCR1pRjO2nkBtg5BITS4VHDK
/heo6DUGTORsy2uM5WRbXljgqYZRg10stbZjdUBqUVjzZslU1/PCMt7KEFTpETUU
4pY+5uJl0Omk2i1RMAVMPcjmWlmu6ANLxioK6PxhmnKpYUbelB7x8z+YXwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFKXVRRXyfMPMmDp/ORfPNnMhLLmBMB8GA1UdIwQY
MBaAFL+/Yj9MPqPRuWm0BZRRd+66r57NMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdjc5aVAwdy1vOUc1YWJRRmxGRjM3cnF2bnMwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC9lYTZmNzEtNDliYy00M2ZhLWEyODgt
MTc5Y2U5NDA4MjQyLzEvcGRWRkZmSjh3OHlZT244NUY4ODJjeUVzdVlFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMC9lYTZmNzEtNDliYy00M2ZhLWEyODgtMTc5Y2U5NDA4MjQy
LzEvdjc5aVAwdy1vOUc1YWJRRmxGRjM3cnF2bnMwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhE2gDAN
BgkqhkiG9w0BAQsFAAOCAQEAVrjfbSILINF62uWfoxrDIQuBzzD1Mho7MslfgLuW
upyHCRQXhEu3m55TbThCZYuqQGK/Er7OymGESDVEHZqR3/7jWlMmcuUwvKWcS7Lr
wvZuJjU0ggX41sC43XhJGdC6VP62/mtrJ0QXh3KLm9P2Ir0azLG9UpQyKVY7HT0b
hzYQ+rVYsaZcr0tPmnZ1OvSLwgX2VMoKCFSkH9/GcLf3g/l3A99MS8SqGiaUdg2x
K0JLgwyY1fBAipjzlhHpcNXuFlS2QWeGdlvIjFAirLse6UoYm5A5HCvY2HUIwWZA
t/vPlboJrE/AOIC619WJCy1SPfuO+VEGpg9CGSf65CoLkg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:12 2024 by rpki-client on console-fra.rpki-client.org