Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/1c49eb-4dda-44ef-bf04-ec00e1a27cc8/1/iojUW3FYh0XzokOsBO6KxWCMhxA.roa
File: iojUW3FYh0XzokOsBO6KxWCMhxA.roa (raw, json)
Hash identifier: 4vL2FQC6RaD1UxzEdClyEpio9siyznAP7O3AUedhFDw=
Subject key identifier: 8A:88:D4:5B:71:58:87:45:F3:A2:43:AC:04:EE:8A:C5:60:8C:87:10
Certificate issuer: /CN=421cba589920beebb19bc572ae6d501b8cf6bbf0
Certificate serial: 019077FEB1CB296DF36D6C46C76A30904900
Authority key identifier: 42:1C:BA:58:99:20:BE:EB:B1:9B:C5:72:AE:6D:50:1B:8C:F6:BB:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qhy6WJkgvuuxm8Vyrm1QG4z2u_A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/1c49eb-4dda-44ef-bf04-ec00e1a27cc8/1/iojUW3FYh0XzokOsBO6KxWCMhxA.roa
Signing time: Wed 03 Jul 2024 09:48:18 +0000
ROA not before: Wed 03 Jul 2024 09:48:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214790
IP address blocks: 2a10:c943::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:77:fe:b1:cb:29:6d:f3:6d:6c:46:c7:6a:30:90:49:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=421cba589920beebb19bc572ae6d501b8cf6bbf0
Validity
Not Before: Jul 3 09:48:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8a88d45b71588745f3a243ac04ee8ac5608c8710
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:a7:e9:ee:6a:78:de:76:99:93:26:f8:02:0f:
f1:80:d1:40:81:62:3a:26:c9:dd:09:39:81:72:7a:
1c:05:b0:18:60:a6:9c:dc:63:d6:0d:cb:10:db:e0:
57:53:7e:2e:72:d4:07:f4:bd:c0:6e:47:17:8d:44:
bd:2e:f1:57:b8:91:97:aa:71:d4:b5:e5:fb:07:0e:
b0:9e:df:d9:61:23:87:90:6e:c2:49:19:0a:ac:ef:
f3:5b:15:32:17:99:29:55:4a:07:fc:61:a6:43:15:
40:59:fa:9d:5d:d6:cc:f9:e4:c1:c6:00:6a:76:b4:
e2:57:dc:25:0c:28:af:a4:fe:7a:68:f8:8a:fa:4f:
94:9d:6e:25:84:6d:db:c9:29:06:90:02:23:5f:b1:
c0:69:88:21:c3:99:0f:4d:36:4a:44:db:82:c5:39:
9c:04:e1:8c:29:7f:c6:5d:71:9b:98:31:6c:f0:41:
9b:93:2b:1e:bb:65:51:c0:7d:75:86:83:db:cc:57:
0f:4f:58:25:aa:e6:c9:b1:0a:8c:f6:d2:03:63:4d:
ed:ba:8f:25:ee:59:0e:24:64:f7:8e:7c:04:54:5e:
c4:26:4e:8e:c0:a3:4a:1a:a6:39:24:f8:6b:c5:69:
79:cf:bc:f1:3c:7c:ca:24:e6:98:e0:d9:2a:74:05:
d1:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:88:D4:5B:71:58:87:45:F3:A2:43:AC:04:EE:8A:C5:60:8C:87:10
X509v3 Authority Key Identifier:
keyid:42:1C:BA:58:99:20:BE:EB:B1:9B:C5:72:AE:6D:50:1B:8C:F6:BB:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qhy6WJkgvuuxm8Vyrm1QG4z2u_A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/1c49eb-4dda-44ef-bf04-ec00e1a27cc8/1/iojUW3FYh0XzokOsBO6KxWCMhxA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/1c49eb-4dda-44ef-bf04-ec00e1a27cc8/1/Qhy6WJkgvuuxm8Vyrm1QG4z2u_A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:c943::/32
Signature Algorithm: sha256WithRSAEncryption
9f:af:c3:a1:b6:72:f6:a3:84:bb:14:3e:28:1e:80:33:64:ef:
ae:1f:f1:7a:a0:cc:ee:eb:2e:03:6c:30:58:be:20:04:43:b1:
06:44:4f:42:06:c5:41:97:28:6c:73:03:f0:42:0f:bb:6d:d6:
ad:90:3d:27:fc:ed:f7:ca:52:77:81:23:2e:87:32:4f:3c:98:
57:16:a0:69:31:78:39:49:0d:0c:0d:e6:f0:f3:90:d0:85:13:
a3:b9:8a:b0:d6:18:cf:3d:95:61:26:3a:f9:dd:5e:aa:31:42:
cb:00:3f:ee:cc:9a:6b:21:37:19:28:65:dd:7b:47:20:6b:25:
fb:46:99:81:ae:bb:5f:98:e4:96:b0:8f:62:d1:b0:4f:46:48:
77:ee:f0:b2:a9:84:e6:3a:45:44:ec:02:40:57:8d:cd:5c:0b:
9c:2e:5d:7d:e9:59:cb:94:4a:3c:d8:89:f2:dc:d7:93:0d:53:
b7:27:77:0c:99:c4:93:a1:c4:6f:7c:05:c9:0e:5a:6e:72:8b:
d3:28:95:f9:44:83:c4:aa:da:d6:6f:d1:b2:9a:4d:62:2f:d4:
a1:78:7d:dc:14:c4:b9:3e:93:ec:ff:fb:7c:6d:a8:70:62:e9:
d5:4d:b4:55:69:ee:3e:d1:66:ae:86:b7:ed:33:d4:17:0c:27:
b6:d0:12:f4
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAZB3/rHLKW3zbWxGx2owkEkAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQyMWNiYTU4OTkyMGJlZWJiMTliYzU3MmFlNmQ1MDFiOGNm
NmJiZjAwHhcNMjQwNzAzMDk0ODE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4YTg4ZDQ1YjcxNTg4NzQ1ZjNhMjQzYWMwNGVlOGFjNTYwOGM4NzEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA66fp7mp43naZkyb4Ag/xgNFAgWI6
JsndCTmBcnocBbAYYKac3GPWDcsQ2+BXU34uctQH9L3AbkcXjUS9LvFXuJGXqnHU
teX7Bw6wnt/ZYSOHkG7CSRkKrO/zWxUyF5kpVUoH/GGmQxVAWfqdXdbM+eTBxgBq
drTiV9wlDCivpP56aPiK+k+UnW4lhG3bySkGkAIjX7HAaYghw5kPTTZKRNuCxTmc
BOGMKX/GXXGbmDFs8EGbkyseu2VRwH11hoPbzFcPT1glqubJsQqM9tIDY03tuo8l
7lkOJGT3jnwEVF7EJk6OwKNKGqY5JPhrxWl5z7zxPHzKJOaY4NkqdAXRCQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFIqI1FtxWIdF86JDrATuisVgjIcQMB8GA1UdIwQY
MBaAFEIculiZIL7rsZvFcq5tUBuM9rvwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUWh5NldKa2d2dXV4bThWeXJtMVFHNHoydV9BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi8xYzQ5ZWItNGRkYS00NGVmLWJmMDQt
ZWMwMGUxYTI3Y2M4LzEvaW9qVVczRlloMFh6b2tPc0JPNkt4V0NNaHhBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZi8xYzQ5ZWItNGRkYS00NGVmLWJmMDQtZWMwMGUxYTI3Y2M4
LzEvUWh5NldKa2d2dXV4bThWeXJtMVFHNHoydV9BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKhDJQzAN
BgkqhkiG9w0BAQsFAAOCAQEAn6/DobZy9qOEuxQ+KB6AM2Tvrh/xeqDM7usuA2ww
WL4gBEOxBkRPQgbFQZcobHMD8EIPu23WrZA9J/zt98pSd4EjLocyTzyYVxagaTF4
OUkNDA3m8POQ0IUTo7mKsNYYzz2VYSY6+d1eqjFCywA/7syaayE3GShl3XtHIGsl
+0aZga67X5jklrCPYtGwT0ZId+7wsqmE5jpFROwCQFeNzVwLnC5dfelZy5RKPNiJ
8tzXkw1Ttyd3DJnEk6HEb3wFyQ5abnKL0yiV+USDxKra1m/RsppNYi/UoXh93BTE
uT6T7P/7fG2ocGLp1U20VWnuPtFmroa37TPUFwwnttAS9A==
-----END CERTIFICATE-----
Generated at Mon Apr 7 23:48:51 2025 by rpki-client