Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/e52b30-cd47-4c27-b6fc-d097cd2c7d82/1/8yrF7Hog9Igpbzw_NHIf6d0x-DU.roa
File: 8yrF7Hog9Igpbzw_NHIf6d0x-DU.roa (raw, json)
Hash identifier: ua0NVCmF0/ti3axqtXkXmpWIsErR9h+PSJPsBfsGr1I=
Subject key identifier: F3:2A:C5:EC:7A:20:F4:88:29:6F:3C:3F:34:72:1F:E9:DD:31:F8:35
Certificate issuer: /CN=88f6580a229ccfd5369e19e252adcb728cdacd39
Certificate serial: 018CC34944B8E043984BFA9E92857623D7A2
Authority key identifier: 88:F6:58:0A:22:9C:CF:D5:36:9E:19:E2:52:AD:CB:72:8C:DA:CD:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iPZYCiKcz9U2nhniUq3LcozazTk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/e52b30-cd47-4c27-b6fc-d097cd2c7d82/1/8yrF7Hog9Igpbzw_NHIf6d0x-DU.roa
Signing time: Mon 01 Jan 2024 04:30:08 +0000
ROA not before: Mon 01 Jan 2024 04:30:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 400061
IP address blocks: 2a10:e580:6969::/48 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:49:44:b8:e0:43:98:4b:fa:9e:92:85:76:23:d7:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88f6580a229ccfd5369e19e252adcb728cdacd39
Validity
Not Before: Jan 1 04:30:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f32ac5ec7a20f488296f3c3f34721fe9dd31f835
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:61:a3:e7:77:1c:87:08:cc:b8:dc:ce:56:88:
f0:12:d6:6b:28:f2:d5:09:ec:6b:3e:b2:4e:ec:3a:
6c:2a:d5:37:c0:19:a3:c2:2a:0b:e9:9b:36:b5:43:
6f:6a:2f:17:04:5f:a2:16:dc:3a:65:a3:a0:7b:fb:
9d:0d:a4:c5:36:15:33:47:3c:1b:ba:1a:0c:87:90:
23:82:b9:a0:1e:b1:cc:95:2a:e7:d7:b9:db:77:af:
dd:a5:1d:85:01:d9:28:2c:5a:96:e0:bd:fa:b2:d7:
0d:2c:4e:9f:2f:65:6b:ee:25:37:31:b4:88:93:a1:
ce:d7:10:2a:86:78:78:bd:f8:c0:44:8d:9f:d6:ec:
d1:f6:dd:53:cf:28:10:cb:49:d1:e3:02:23:29:83:
b8:30:56:7a:e9:b4:32:31:ca:91:62:57:6f:5f:bf:
e9:24:26:23:6c:8c:15:81:fe:f4:5e:16:95:aa:14:
5f:43:86:ea:7b:ed:dd:cb:23:01:ad:89:46:72:83:
8d:06:52:e3:34:fd:37:04:2a:f4:94:03:45:6c:85:
a9:1d:ea:1b:b5:d1:4d:a2:76:be:ac:44:5e:e8:86:
53:33:2d:53:7a:5a:96:f5:53:6e:cc:fc:56:3f:39:
29:01:33:0d:19:74:0c:f1:af:95:37:31:91:34:94:
41:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:2A:C5:EC:7A:20:F4:88:29:6F:3C:3F:34:72:1F:E9:DD:31:F8:35
X509v3 Authority Key Identifier:
keyid:88:F6:58:0A:22:9C:CF:D5:36:9E:19:E2:52:AD:CB:72:8C:DA:CD:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iPZYCiKcz9U2nhniUq3LcozazTk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/e52b30-cd47-4c27-b6fc-d097cd2c7d82/1/8yrF7Hog9Igpbzw_NHIf6d0x-DU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/e52b30-cd47-4c27-b6fc-d097cd2c7d82/1/iPZYCiKcz9U2nhniUq3LcozazTk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:e580:6969::/48
Signature Algorithm: sha256WithRSAEncryption
bb:8d:98:16:ba:ff:56:2d:13:0b:cb:8c:dc:aa:81:b0:72:3c:
a2:20:73:eb:88:cc:06:0f:d8:ab:7e:d1:27:65:41:a3:1f:33:
1d:9e:92:25:3a:6c:a3:64:19:b4:35:c2:1f:28:fc:63:34:9a:
6a:d6:31:f6:6c:0e:f7:39:9d:7f:3e:dc:f2:01:79:37:f0:a3:
86:67:e9:b7:a4:ec:36:71:5c:fa:cb:41:6e:16:d0:a1:3d:09:
e1:fc:02:99:a5:de:58:ac:04:fe:58:ab:a4:21:be:7b:cb:3e:
a6:cf:a6:45:b9:7f:76:e3:0c:50:7c:87:4f:9e:48:68:2a:59:
42:b3:50:fa:0b:31:8e:2c:de:cd:76:90:f1:4c:c1:73:88:6d:
34:31:9f:04:04:c0:11:60:8e:a2:1d:28:2f:f8:96:b0:8b:a6:
33:7e:46:50:90:de:e4:ad:da:78:53:24:44:36:2f:77:93:a4:
60:cc:43:49:4a:e3:5f:bf:05:d5:99:7c:98:7e:db:cc:e1:e0:
5c:7d:db:f2:e2:dc:68:a1:d8:db:2a:94:bc:1b:e9:41:79:78:
8c:e3:18:bb:0b:a5:da:04:40:d5:09:00:61:e6:ea:6d:3a:4d:
5e:67:5d:6c:f4:40:12:77:f8:96:ed:a8:fc:00:40:c6:6a:ba:
9b:75:29:2a
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYzDSUS44EOYS/qekoV2I9eiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg4ZjY1ODBhMjI5Y2NmZDUzNjllMTllMjUyYWRjYjcyOGNk
YWNkMzkwHhcNMjQwMTAxMDQzMDA4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMzJhYzVlYzdhMjBmNDg4Mjk2ZjNjM2YzNDcyMWZlOWRkMzFmODM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsWGj53cchwjMuNzOVojwEtZrKPLV
CexrPrJO7DpsKtU3wBmjwioL6Zs2tUNvai8XBF+iFtw6ZaOge/udDaTFNhUzRzwb
uhoMh5AjgrmgHrHMlSrn17nbd6/dpR2FAdkoLFqW4L36stcNLE6fL2Vr7iU3MbSI
k6HO1xAqhnh4vfjARI2f1uzR9t1TzygQy0nR4wIjKYO4MFZ66bQyMcqRYldvX7/p
JCYjbIwVgf70XhaVqhRfQ4bqe+3dyyMBrYlGcoONBlLjNP03BCr0lANFbIWpHeob
tdFNona+rERe6IZTMy1TelqW9VNuzPxWPzkpATMNGXQM8a+VNzGRNJRBVwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFPMqxex6IPSIKW88PzRyH+ndMfg1MB8GA1UdIwQY
MBaAFIj2WAoinM/VNp4Z4lKty3KM2s05MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaVBaWUNpS2N6OVUybmhuaVVxM0xjb3phelRrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi9lNTJiMzAtY2Q0Ny00YzI3LWI2ZmMt
ZDA5N2NkMmM3ZDgyLzEvOHlyRjdIb2c5SWdwYnp3X05ISWY2ZDB4LURVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYi9lNTJiMzAtY2Q0Ny00YzI3LWI2ZmMtZDA5N2NkMmM3ZDgy
LzEvaVBaWUNpS2N6OVUybmhuaVVxM0xjb3phelRrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhDlgGlp
MA0GCSqGSIb3DQEBCwUAA4IBAQC7jZgWuv9WLRMLy4zcqoGwcjyiIHPriMwGD9ir
ftEnZUGjHzMdnpIlOmyjZBm0NcIfKPxjNJpq1jH2bA73OZ1/PtzyAXk38KOGZ+m3
pOw2cVz6y0FuFtChPQnh/AKZpd5YrAT+WKukIb57yz6mz6ZFuX924wxQfIdPnkho
KllCs1D6CzGOLN7NdpDxTMFziG00MZ8EBMARYI6iHSgv+Jawi6YzfkZQkN7krdp4
UyRENi93k6RgzENJSuNfvwXVmXyYftvM4eBcfdvy4txoodjbKpS8G+lBeXiM4xi7
C6XaBEDVCQBh5uptOk1eZ11s9EASd/iW7aj8AEDGarqbdSkq
-----END CERTIFICATE-----
Generated at Mon Mar 18 17:05:22 2024 by rpki-client on console-fra.rpki-client.org