Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/7012d8-afa1-419b-8b60-35c63fa765a2/1/NTZH1JNaO9Fntv9rJZpS9AYXXAw.roa
File: NTZH1JNaO9Fntv9rJZpS9AYXXAw.roa (raw, json)
Hash identifier: t5qH2Ay5EZ5PLCrWX/DeU0y2TZ6KROF1hKJXinAbX3o=
Subject key identifier: 35:36:47:D4:93:5A:3B:D1:67:B6:FF:6B:25:9A:52:F4:06:17:5C:0C
Certificate issuer: /CN=6aa8fa75c5020cd6218cf7f109de420265204bac
Certificate serial: 018A75705B59F8F5B5C6378AB767150EDD79
Authority key identifier: 6A:A8:FA:75:C5:02:0C:D6:21:8C:F7:F1:09:DE:42:02:65:20:4B:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aqj6dcUCDNYhjPfxCd5CAmUgS6w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/7012d8-afa1-419b-8b60-35c63fa765a2/1/NTZH1JNaO9Fntv9rJZpS9AYXXAw.roa
Signing time: Fri 08 Sep 2023 15:36:52 +0000
ROA not before: Fri 08 Sep 2023 15:36:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 2a13:d040:1::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:75:70:5b:59:f8:f5:b5:c6:37:8a:b7:67:15:0e:dd:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6aa8fa75c5020cd6218cf7f109de420265204bac
Validity
Not Before: Sep 8 15:36:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=353647d4935a3bd167b6ff6b259a52f406175c0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:07:e8:ff:57:e8:52:6f:6e:06:4b:d3:50:72:
9d:29:30:24:42:72:c4:5b:a8:ab:bd:02:76:4a:87:
22:22:54:64:e5:15:08:7a:c3:79:19:06:cb:1f:9a:
07:a2:43:cc:d5:3e:35:0f:2c:d5:27:6a:f3:aa:c5:
fd:bd:33:03:fd:81:e7:fe:83:72:11:be:91:20:50:
ac:be:ac:d3:7b:cd:0c:94:c9:38:8b:1b:ea:a2:32:
f8:33:f4:1f:e4:fd:95:53:b8:25:81:13:2f:b1:a8:
7b:bb:c3:d8:2f:2c:4d:82:85:8d:b8:01:a9:b5:b6:
a6:06:12:74:bc:7c:59:ef:b2:7d:bb:cf:75:08:79:
b2:60:9b:73:45:c1:90:5b:09:cc:67:8f:40:2a:9d:
1e:87:46:1d:dd:a2:14:d7:ec:f7:9b:8e:d9:cf:4f:
b0:7d:a6:1e:b7:a9:09:91:e1:80:b6:85:38:6f:1b:
61:39:bb:85:14:02:e4:7e:57:77:f9:39:e6:92:a5:
d0:83:03:fb:7f:3b:43:ee:6b:8d:48:41:39:f0:4d:
d1:44:ad:40:ed:08:34:50:74:7e:67:20:b3:c7:8f:
ae:a4:58:f2:02:ef:3d:de:5a:56:40:7b:31:61:b8:
18:a2:8f:f1:8d:bf:5d:9d:83:98:c6:54:74:12:99:
61:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:36:47:D4:93:5A:3B:D1:67:B6:FF:6B:25:9A:52:F4:06:17:5C:0C
X509v3 Authority Key Identifier:
keyid:6A:A8:FA:75:C5:02:0C:D6:21:8C:F7:F1:09:DE:42:02:65:20:4B:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aqj6dcUCDNYhjPfxCd5CAmUgS6w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/7012d8-afa1-419b-8b60-35c63fa765a2/1/NTZH1JNaO9Fntv9rJZpS9AYXXAw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/7012d8-afa1-419b-8b60-35c63fa765a2/1/aqj6dcUCDNYhjPfxCd5CAmUgS6w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:d040:1::/48
Signature Algorithm: sha256WithRSAEncryption
61:27:b3:1c:ca:54:b9:57:88:43:d6:98:3c:07:b8:3f:ad:8c:
e3:01:61:56:1e:3a:11:f8:17:35:65:a1:85:bc:36:e2:94:4b:
5c:1b:97:0d:23:64:de:ee:54:ab:8a:ae:3d:e0:54:f5:23:57:
26:bb:77:6e:8f:19:c6:ad:40:1a:fe:98:39:6c:ea:d7:c5:7f:
16:05:05:c4:a0:3e:73:ba:12:2e:e8:72:18:3c:e4:b1:60:31:
8b:d4:9f:cd:75:4a:14:6a:ce:e4:91:e5:83:f4:1f:f4:7e:99:
d2:32:06:f5:54:b9:17:d5:d8:00:72:cf:d1:6b:ef:d0:76:78:
c0:90:65:8f:df:f1:db:fe:2e:36:d4:7e:08:be:98:af:b0:4b:
f0:1d:c2:99:39:44:87:55:7c:a8:f0:eb:f4:67:33:5a:7b:5f:
cf:97:ff:9d:28:b5:50:79:07:57:e6:ca:fc:90:50:58:d3:4c:
32:e6:a6:34:dd:eb:0b:63:a6:00:d3:32:08:c2:60:89:25:11:
2d:82:5b:f7:3b:53:7e:22:21:67:9b:93:e9:42:0c:f9:71:dc:
d7:4d:05:27:33:31:64:a8:d2:3d:2b:3e:94:60:20:df:5a:89:
96:a9:36:4e:8c:5d:8a:ea:7d:0d:c4:15:10:eb:64:30:78:ca:
1e:8d:2a:ff
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYp1cFtZ+PW1xjeKt2cVDt15MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZhYThmYTc1YzUwMjBjZDYyMThjZjdmMTA5ZGU0MjAyNjUy
MDRiYWMwHhcNMjMwOTA4MTUzNjUyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNTM2NDdkNDkzNWEzYmQxNjdiNmZmNmIyNTlhNTJmNDA2MTc1YzBjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzAfo/1foUm9uBkvTUHKdKTAkQnLE
W6irvQJ2SociIlRk5RUIesN5GQbLH5oHokPM1T41DyzVJ2rzqsX9vTMD/YHn/oNy
Eb6RIFCsvqzTe80MlMk4ixvqojL4M/Qf5P2VU7glgRMvsah7u8PYLyxNgoWNuAGp
tbamBhJ0vHxZ77J9u891CHmyYJtzRcGQWwnMZ49AKp0eh0Yd3aIU1+z3m47Zz0+w
faYet6kJkeGAtoU4bxthObuFFALkfld3+TnmkqXQgwP7fztD7muNSEE58E3RRK1A
7Qg0UHR+ZyCzx4+upFjyAu893lpWQHsxYbgYoo/xjb9dnYOYxlR0EplhfQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFDU2R9STWjvRZ7b/ayWaUvQGF1wMMB8GA1UdIwQY
MBaAFGqo+nXFAgzWIYz38QneQgJlIEusMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYXFqNmRjVUNETlloalBmeENkNUNBbVVnUzZ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy83MDEyZDgtYWZhMS00MTliLThiNjAt
MzVjNjNmYTc2NWEyLzEvTlRaSDFKTmFPOUZudHY5ckpacFM5QVlYWEF3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYy83MDEyZDgtYWZhMS00MTliLThiNjAtMzVjNjNmYTc2NWEy
LzEvYXFqNmRjVUNETlloalBmeENkNUNBbVVnUzZ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhPQQAAB
MA0GCSqGSIb3DQEBCwUAA4IBAQBhJ7McylS5V4hD1pg8B7g/rYzjAWFWHjoR+Bc1
ZaGFvDbilEtcG5cNI2Te7lSriq494FT1I1cmu3dujxnGrUAa/pg5bOrXxX8WBQXE
oD5zuhIu6HIYPOSxYDGL1J/NdUoUas7kkeWD9B/0fpnSMgb1VLkX1dgAcs/Ra+/Q
dnjAkGWP3/Hb/i421H4IvpivsEvwHcKZOUSHVXyo8Ov0ZzNae1/Pl/+dKLVQeQdX
5sr8kFBY00wy5qY03esLY6YA0zIIwmCJJREtglv3O1N+IiFnm5PpQgz5cdzXTQUn
MzFkqNI9Kz6UYCDfWomWqTZOjF2K6n0NxBUQ62QweMoejSr/
-----END CERTIFICATE-----
Generated at Sun Apr 6 11:40:22 2025 by rpki-client