Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/da1226-ac22-4ea6-9e38-dcc62a240676/1/16YsUTE6JnV1IZzmKZw0OjKHf18.roa
File: 16YsUTE6JnV1IZzmKZw0OjKHf18.roa (raw, json)
Hash identifier: wi4zoFZqsnbxIHFWWo3fborFopGldHX8ertXHNMb+y4=
Subject key identifier: D7:A6:2C:51:31:3A:26:75:75:21:9C:E6:29:9C:34:3A:32:87:7F:5F
Certificate issuer: /CN=97206b5201df70eb916669b455849647797ab679
Certificate serial: 018DC19F0ABB996AD53A7CC2F01E3A151186
Authority key identifier: 97:20:6B:52:01:DF:70:EB:91:66:69:B4:55:84:96:47:79:7A:B6:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lyBrUgHfcOuRZmm0VYSWR3l6tnk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/da1226-ac22-4ea6-9e38-dcc62a240676/1/16YsUTE6JnV1IZzmKZw0OjKHf18.roa
Signing time: Mon 19 Feb 2024 13:47:22 +0000
ROA not before: Mon 19 Feb 2024 13:47:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16509
IP address blocks: 2001:67c:df8::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:c1:9f:0a:bb:99:6a:d5:3a:7c:c2:f0:1e:3a:15:11:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97206b5201df70eb916669b455849647797ab679
Validity
Not Before: Feb 19 13:47:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d7a62c51313a267575219ce6299c343a32877f5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:04:32:35:7f:e3:83:3b:0f:4c:c2:a8:87:55:
73:d8:88:8b:ad:a7:c4:52:84:9d:50:2c:b1:fb:ed:
71:a3:a9:58:ed:54:b6:7c:58:05:3a:73:6b:0c:35:
7e:22:3a:29:db:35:0e:11:99:ba:5a:69:7b:94:9f:
d6:2d:8f:f4:a9:4b:85:00:69:6f:83:1f:dd:39:d7:
17:eb:39:19:23:59:33:28:d8:f5:13:9f:e1:be:a5:
8e:c5:bd:72:1c:47:e7:7b:21:b5:10:30:0c:a5:6f:
92:09:3e:7c:f7:6f:b5:73:3c:c6:17:8b:de:a2:1f:
67:35:12:26:64:12:6f:32:e2:f8:b8:48:1f:a4:a4:
18:3d:ee:37:e6:3f:f2:b5:4f:17:d0:b0:54:a5:2b:
c6:34:5a:b5:fc:4e:f4:89:5c:8b:90:28:71:58:d7:
d3:54:d9:a5:ae:f7:a2:4b:f9:f6:b6:ce:0a:41:11:
22:07:ce:03:42:c4:68:37:a2:23:63:c9:01:36:7f:
96:31:47:63:64:62:00:9c:14:f5:48:4a:f5:30:44:
b6:d4:ed:a0:2d:28:6b:e1:91:c1:60:f6:74:4b:47:
c2:a0:1a:f5:83:51:ef:6f:bb:0e:02:34:3b:51:6d:
ac:f5:97:43:47:ce:33:2b:57:e4:7f:86:09:fe:9c:
93:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:A6:2C:51:31:3A:26:75:75:21:9C:E6:29:9C:34:3A:32:87:7F:5F
X509v3 Authority Key Identifier:
keyid:97:20:6B:52:01:DF:70:EB:91:66:69:B4:55:84:96:47:79:7A:B6:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lyBrUgHfcOuRZmm0VYSWR3l6tnk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/da1226-ac22-4ea6-9e38-dcc62a240676/1/16YsUTE6JnV1IZzmKZw0OjKHf18.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/da1226-ac22-4ea6-9e38-dcc62a240676/1/lyBrUgHfcOuRZmm0VYSWR3l6tnk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:df8::/48
Signature Algorithm: sha256WithRSAEncryption
37:d8:8d:c9:56:09:08:5c:12:22:1f:ad:ce:c6:7e:83:45:ca:
87:60:06:52:64:71:79:f1:46:dd:08:b5:3c:46:cb:a4:0d:84:
50:68:40:49:64:69:eb:cf:31:dd:11:34:a5:b7:f3:f9:31:a7:
96:fc:e3:69:b9:04:0c:5c:7d:00:6c:86:07:1d:56:3e:b3:2e:
9d:a2:65:9b:1b:cb:51:f7:04:73:2a:5e:c7:53:a2:64:af:82:
14:1a:46:f2:02:ae:d8:4f:be:3e:82:b8:f7:7f:91:23:69:5d:
b8:74:9b:e7:94:80:57:4b:1e:38:20:3a:3c:e9:87:52:3d:2e:
39:4f:ff:ee:6e:13:7a:4f:f7:66:55:80:4e:34:3f:9e:4e:3e:
88:87:9d:81:64:2c:fc:5a:ac:69:44:b6:51:76:e1:ac:34:23:
d9:07:83:90:9f:b0:6e:db:24:5f:52:bf:69:d1:5a:b1:47:5c:
de:91:b5:12:0c:b0:1a:89:6d:bd:96:c8:43:c6:79:2f:70:55:
6c:18:f0:a4:c3:ed:49:dc:8f:f2:39:2e:d5:3a:8c:18:29:89:
8b:78:af:5f:70:e4:70:3f:80:d2:02:45:9a:07:bb:c1:d1:99:
84:3c:b2:6e:92:ab:3a:ae:71:c0:66:e5:df:16:39:3c:e3:9f:
30:dd:fe:e3
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY3Bnwq7mWrVOnzC8B46FRGGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk3MjA2YjUyMDFkZjcwZWI5MTY2NjliNDU1ODQ5NjQ3Nzk3
YWI2NzkwHhcNMjQwMjE5MTM0NzIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkN2E2MmM1MTMxM2EyNjc1NzUyMTljZTYyOTljMzQzYTMyODc3ZjVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuQQyNX/jgzsPTMKoh1Vz2IiLrafE
UoSdUCyx++1xo6lY7VS2fFgFOnNrDDV+Ijop2zUOEZm6Wml7lJ/WLY/0qUuFAGlv
gx/dOdcX6zkZI1kzKNj1E5/hvqWOxb1yHEfneyG1EDAMpW+SCT5892+1czzGF4ve
oh9nNRImZBJvMuL4uEgfpKQYPe435j/ytU8X0LBUpSvGNFq1/E70iVyLkChxWNfT
VNmlrveiS/n2ts4KQREiB84DQsRoN6IjY8kBNn+WMUdjZGIAnBT1SEr1MES21O2g
LShr4ZHBYPZ0S0fCoBr1g1Hvb7sOAjQ7UW2s9ZdDR84zK1fkf4YJ/pyTNQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFNemLFExOiZ1dSGc5imcNDoyh39fMB8GA1UdIwQY
MBaAFJcga1IB33DrkWZptFWElkd5erZ5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbHlCclVnSGZjT3VSWm1tMFZZU1dSM2w2dG5rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9kYTEyMjYtYWMyMi00ZWE2LTllMzgt
ZGNjNjJhMjQwNjc2LzEvMTZZc1VURTZKblYxSVp6bUtadzBPaktIZjE4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9kYTEyMjYtYWMyMi00ZWE2LTllMzgtZGNjNjJhMjQwNjc2
LzEvbHlCclVnSGZjT3VSWm1tMFZZU1dSM2w2dG5rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfA34
MA0GCSqGSIb3DQEBCwUAA4IBAQA32I3JVgkIXBIiH63Oxn6DRcqHYAZSZHF58Ubd
CLU8RsukDYRQaEBJZGnrzzHdETSlt/P5MaeW/ONpuQQMXH0AbIYHHVY+sy6domWb
G8tR9wRzKl7HU6Jkr4IUGkbyAq7YT74+grj3f5EjaV24dJvnlIBXSx44IDo86YdS
PS45T//ubhN6T/dmVYBOND+eTj6Ih52BZCz8WqxpRLZRduGsNCPZB4OQn7Bu2yRf
Ur9p0VqxR1zekbUSDLAaiW29lshDxnkvcFVsGPCkw+1J3I/yOS7VOowYKYmLeK9f
cORwP4DSAkWaB7vB0ZmEPLJukqs6rnHAZuXfFjk8458w3f7j
-----END CERTIFICATE-----
Generated at Sat Apr 19 06:29:13 2025 by rpki-client