Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/68e73e-81db-49cf-8abc-ec8e21a3ea49/1/3af1VS7VUSWHOOzIT7Eb_s1edWE.roa
File: 3af1VS7VUSWHOOzIT7Eb_s1edWE.roa (raw, json)
Hash identifier: pjfORvkubAazfXI6ZfyeQu/AxYOsvaMz7DiOmRKpQ5o=
Subject key identifier: DD:A7:F5:55:2E:D5:51:25:87:38:EC:C8:4F:B1:1B:FE:CD:5E:75:61
Certificate issuer: /CN=052c15460fa39c6471496cd18fcc40a18a7949e7
Certificate serial: 0183EA77DC1DD66626BA8F77FAF2DD1FE20A
Authority key identifier: 05:2C:15:46:0F:A3:9C:64:71:49:6C:D1:8F:CC:40:A1:8A:79:49:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BSwVRg-jnGRxSWzRj8xAoYp5Sec.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/68e73e-81db-49cf-8abc-ec8e21a3ea49/1/3af1VS7VUSWHOOzIT7Eb_s1edWE.roa
Signing time: Tue 18 Oct 2022 09:41:07 +0000
ROA not before: Tue 18 Oct 2022 09:41:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57751
IP address blocks: 2a0c:3480::/29 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:ea:77:dc:1d:d6:66:26:ba:8f:77:fa:f2:dd:1f:e2:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=052c15460fa39c6471496cd18fcc40a18a7949e7
Validity
Not Before: Oct 18 09:41:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dda7f5552ed551258738ecc84fb11bfecd5e7561
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:b9:e8:2c:b7:ff:35:2a:3f:0c:05:aa:f0:9b:
f4:ca:6a:ba:64:13:fa:c7:73:59:c9:20:75:6c:96:
90:26:01:46:5c:2d:fa:a1:10:56:49:a7:ea:d8:87:
69:97:f3:fb:56:6d:dc:6a:2f:65:a6:c4:05:4c:3b:
d4:30:95:9c:5a:77:fe:cc:fa:1c:f5:03:ce:7b:aa:
63:93:e2:a2:d1:b4:f0:fc:b8:a0:51:99:a4:56:32:
72:aa:1c:78:83:bb:21:93:6e:39:43:ac:04:a4:28:
2c:46:17:44:f0:2a:b0:3e:c9:d8:64:5a:67:8e:b6:
47:00:f9:f4:f7:d9:29:d5:48:56:12:13:fc:59:f2:
6e:88:8f:f3:1c:53:4c:fc:a1:66:71:26:d1:40:c4:
d6:4f:0f:12:ca:b9:e9:4b:1e:05:f0:b0:82:9d:0a:
5a:22:82:1f:b5:ff:b0:c3:4c:b8:a3:eb:33:96:85:
17:de:0f:74:7e:a9:6e:37:d2:5e:33:1e:fe:57:73:
7e:c7:e9:f5:f6:95:78:77:7c:b9:8e:2c:0d:07:05:
89:f0:7d:6a:d8:ad:e6:6e:25:21:ed:0f:2b:9c:81:
68:f2:ad:4a:05:e2:31:5d:f8:00:05:4d:cd:68:d6:
bc:92:5e:9b:86:53:49:4d:7e:24:d7:03:8f:e5:45:
88:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:A7:F5:55:2E:D5:51:25:87:38:EC:C8:4F:B1:1B:FE:CD:5E:75:61
X509v3 Authority Key Identifier:
keyid:05:2C:15:46:0F:A3:9C:64:71:49:6C:D1:8F:CC:40:A1:8A:79:49:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BSwVRg-jnGRxSWzRj8xAoYp5Sec.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/68e73e-81db-49cf-8abc-ec8e21a3ea49/1/3af1VS7VUSWHOOzIT7Eb_s1edWE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/68e73e-81db-49cf-8abc-ec8e21a3ea49/1/BSwVRg-jnGRxSWzRj8xAoYp5Sec.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:3480::/29
Signature Algorithm: sha256WithRSAEncryption
0b:a3:02:d5:25:47:03:7e:9a:b5:cb:4d:68:b9:81:81:3a:b9:
ee:72:be:bc:db:5a:90:5e:ad:5e:45:26:28:4c:42:5b:32:a9:
38:80:7f:f3:c6:95:1d:10:14:51:17:24:7c:a1:32:d0:f7:c8:
56:f8:30:d5:ae:73:a8:a6:54:99:b8:a3:e7:00:6e:a3:65:ae:
6b:88:42:99:eb:14:58:3b:bc:52:17:52:b5:6d:26:1c:83:6c:
d1:c7:17:8f:58:fe:03:e6:1c:cb:c8:48:4d:2e:9e:bf:0e:9d:
e2:92:74:af:67:ba:28:46:88:5b:5a:98:b2:44:5a:84:5a:a7:
64:c0:cc:40:60:7c:31:64:53:96:4f:f4:f0:d1:1b:6b:fe:5a:
72:f1:6e:3d:41:66:e5:98:68:2a:10:af:33:76:98:e0:2b:0f:
2b:25:2d:e7:6a:06:65:5d:92:43:57:44:5f:54:00:41:95:89:
bc:fa:54:43:8b:0a:fd:6b:99:e9:d6:ff:20:ce:9a:a0:52:a8:
9a:34:54:b1:96:c5:f8:df:b5:d8:cf:08:ba:df:45:83:ef:3d:
3a:0b:af:a7:86:72:84:6b:b2:f0:0f:73:36:75:b4:a6:aa:6d:
a4:7e:78:86:87:df:ef:75:5a:81:11:c3:ce:bb:21:fc:d1:11:
fd:b0:9a:3e
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYPqd9wd1mYmuo93+vLdH+IKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1MmMxNTQ2MGZhMzljNjQ3MTQ5NmNkMThmY2M0MGExOGE3
OTQ5ZTcwHhcNMjIxMDE4MDk0MTA3WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZGE3ZjU1NTJlZDU1MTI1ODczOGVjYzg0ZmIxMWJmZWNkNWU3NTYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAprnoLLf/NSo/DAWq8Jv0ymq6ZBP6
x3NZySB1bJaQJgFGXC36oRBWSafq2Idpl/P7Vm3cai9lpsQFTDvUMJWcWnf+zPoc
9QPOe6pjk+Ki0bTw/LigUZmkVjJyqhx4g7shk245Q6wEpCgsRhdE8CqwPsnYZFpn
jrZHAPn099kp1UhWEhP8WfJuiI/zHFNM/KFmcSbRQMTWTw8SyrnpSx4F8LCCnQpa
IoIftf+ww0y4o+szloUX3g90fqluN9JeMx7+V3N+x+n19pV4d3y5jiwNBwWJ8H1q
2K3mbiUh7Q8rnIFo8q1KBeIxXfgABU3NaNa8kl6bhlNJTX4k1wOP5UWIDQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFN2n9VUu1VElhzjsyE+xG/7NXnVhMB8GA1UdIwQY
MBaAFAUsFUYPo5xkcUls0Y/MQKGKeUnnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlN3VlJnLWpuR1J4U1d6Umo4eEFvWXA1U2VjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy82OGU3M2UtODFkYi00OWNmLThhYmMt
ZWM4ZTIxYTNlYTQ5LzEvM2FmMVZTN1ZVU1dIT096SVQ3RWJfczFlZFdFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy82OGU3M2UtODFkYi00OWNmLThhYmMtZWM4ZTIxYTNlYTQ5
LzEvQlN3VlJnLWpuR1J4U1d6Umo4eEFvWXA1U2VjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKgw0gDAN
BgkqhkiG9w0BAQsFAAOCAQEAC6MC1SVHA36atctNaLmBgTq57nK+vNtakF6tXkUm
KExCWzKpOIB/88aVHRAUURckfKEy0PfIVvgw1a5zqKZUmbij5wBuo2Wua4hCmesU
WDu8UhdStW0mHINs0ccXj1j+A+Ycy8hITS6evw6d4pJ0r2e6KEaIW1qYskRahFqn
ZMDMQGB8MWRTlk/08NEba/5acvFuPUFm5ZhoKhCvM3aY4CsPKyUt52oGZV2SQ1dE
X1QAQZWJvPpUQ4sK/WuZ6db/IM6aoFKomjRUsZbF+N+12M8Iut9Fg+89Oguvp4Zy
hGuy8A9zNnW0pqptpH54hoff73VagRHDzrsh/NER/bCaPg==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:57:13 2025 by rpki-client