Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/c158da-c3fe-4862-8ee1-93daa6319b9a/1/KqKPoeQX1l4X1OB2wDXAZwunEGI.roa
File: KqKPoeQX1l4X1OB2wDXAZwunEGI.roa (raw, json)
Hash identifier: /MmBjmuoAUzC7RHDvMTxPpw1Od+tl7/ETKI8hytI4A4=
Subject key identifier: 2A:A2:8F:A1:E4:17:D6:5E:17:D4:E0:76:C0:35:C0:67:0B:A7:10:62
Certificate issuer: /CN=55de7c1b5c5265bcb90c144c563076fdcfab6a1e
Certificate serial: 0186EA3A368FD442EC9809629E2F289E88E0
Authority key identifier: 55:DE:7C:1B:5C:52:65:BC:B9:0C:14:4C:56:30:76:FD:CF:AB:6A:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vd58G1xSZby5DBRMVjB2_c-rah4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/c158da-c3fe-4862-8ee1-93daa6319b9a/1/KqKPoeQX1l4X1OB2wDXAZwunEGI.roa
Signing time: Thu 16 Mar 2023 11:42:08 +0000
ROA not before: Thu 16 Mar 2023 11:42:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60939
IP address blocks: 2a05:f300::/29 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ea:3a:36:8f:d4:42:ec:98:09:62:9e:2f:28:9e:88:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=55de7c1b5c5265bcb90c144c563076fdcfab6a1e
Validity
Not Before: Mar 16 11:42:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2aa28fa1e417d65e17d4e076c035c0670ba71062
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:10:ed:66:fa:1a:a2:af:3f:42:6b:01:73:bc:
4c:86:e5:77:de:6a:57:64:c5:ea:2d:9f:03:c8:ac:
84:50:8b:e0:59:b3:bf:26:86:7b:ce:f7:f8:6b:57:
81:a2:d5:dc:fe:d5:ae:52:fd:a6:48:c3:7e:3b:aa:
78:b0:a3:8e:a2:ff:4c:46:9e:25:7b:59:42:c6:c5:
45:83:f4:b4:e3:08:a7:ba:55:15:ac:a9:fd:63:76:
ca:eb:87:12:aa:3c:4f:f4:62:fa:ea:f6:41:33:f1:
b9:cf:d3:ce:e8:fc:04:c0:71:a0:39:88:5a:9a:74:
cb:6f:cc:78:77:dd:99:5a:44:74:87:b8:a0:e5:7c:
34:76:62:39:08:2c:ae:a3:ae:47:85:d1:ec:c0:6a:
3f:2a:04:a4:58:9a:54:b3:ff:7c:ff:16:20:41:b4:
45:9e:11:39:17:c6:40:9d:b4:f6:c5:d0:77:f8:ee:
94:77:ad:0d:c1:3c:20:97:e2:12:21:5e:39:04:71:
35:8a:94:76:45:c9:e7:3f:8d:1e:9e:f5:aa:56:4c:
34:30:e3:4b:d1:6d:a6:bb:26:23:82:f7:66:12:f3:
a5:af:2e:0e:90:56:50:67:d1:23:3f:d9:6c:0c:c6:
a2:e7:9c:17:fd:b7:4e:24:2a:e8:51:87:7c:a5:9b:
40:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:A2:8F:A1:E4:17:D6:5E:17:D4:E0:76:C0:35:C0:67:0B:A7:10:62
X509v3 Authority Key Identifier:
keyid:55:DE:7C:1B:5C:52:65:BC:B9:0C:14:4C:56:30:76:FD:CF:AB:6A:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vd58G1xSZby5DBRMVjB2_c-rah4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/c158da-c3fe-4862-8ee1-93daa6319b9a/1/KqKPoeQX1l4X1OB2wDXAZwunEGI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/c158da-c3fe-4862-8ee1-93daa6319b9a/1/Vd58G1xSZby5DBRMVjB2_c-rah4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:f300::/29
Signature Algorithm: sha256WithRSAEncryption
aa:33:55:7b:6c:ea:e2:fa:8a:26:1a:c4:9f:c4:15:6a:3e:b4:
09:9b:7b:36:34:c9:61:5c:fb:94:06:75:37:c7:25:3a:b2:53:
f5:1d:33:83:58:5e:59:58:86:76:ab:d6:5c:bc:88:0e:a8:99:
8d:92:46:43:d5:9f:a1:e6:71:40:cf:a7:1f:f7:e4:6d:c2:d8:
81:35:15:d7:eb:33:5f:30:e2:77:81:03:31:72:52:c3:7c:73:
d5:ae:70:ba:6d:c5:ed:38:ee:53:2d:61:33:3a:a7:57:24:23:
3d:b8:d6:a0:2c:61:ba:7e:5f:09:5d:8a:72:b8:01:6b:2c:fc:
94:8b:d3:a7:e7:65:68:ff:58:e6:c1:f2:e6:05:79:8f:7c:93:
53:5e:c7:83:2d:3d:ea:33:6b:bb:8f:db:91:1f:8d:8b:72:29:
18:ce:c1:30:28:c2:3c:65:62:13:aa:cd:7c:09:5b:c7:f6:fd:
fa:57:2a:52:73:39:95:a6:0b:45:7e:01:6b:ba:12:3e:38:05:
18:49:cb:54:73:3f:1a:e4:a0:09:e6:c5:22:83:56:c8:67:ba:
62:79:02:3d:86:7e:76:b5:fd:b1:b1:87:1c:a2:22:f7:a1:63:
90:1a:54:88:66:6a:80:94:7c:af:25:ac:11:4e:a1:1e:6b:61:
d1:1e:cc:fd
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYbqOjaP1ELsmAlini8onojgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU1ZGU3YzFiNWM1MjY1YmNiOTBjMTQ0YzU2MzA3NmZkY2Zh
YjZhMWUwHhcNMjMwMzE2MTE0MjA4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyYWEyOGZhMWU0MTdkNjVlMTdkNGUwNzZjMDM1YzA2NzBiYTcxMDYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvhDtZvoaoq8/QmsBc7xMhuV33mpX
ZMXqLZ8DyKyEUIvgWbO/JoZ7zvf4a1eBotXc/tWuUv2mSMN+O6p4sKOOov9MRp4l
e1lCxsVFg/S04winulUVrKn9Y3bK64cSqjxP9GL66vZBM/G5z9PO6PwEwHGgOYha
mnTLb8x4d92ZWkR0h7ig5Xw0dmI5CCyuo65HhdHswGo/KgSkWJpUs/98/xYgQbRF
nhE5F8ZAnbT2xdB3+O6Ud60NwTwgl+ISIV45BHE1ipR2RcnnP40envWqVkw0MONL
0W2muyYjgvdmEvOlry4OkFZQZ9EjP9lsDMai55wX/bdOJCroUYd8pZtAzQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFCqij6HkF9ZeF9TgdsA1wGcLpxBiMB8GA1UdIwQY
MBaAFFXefBtcUmW8uQwUTFYwdv3Pq2oeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVmQ1OEcxeFNaYnk1REJSTVZqQjJfYy1yYWg0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9jMTU4ZGEtYzNmZS00ODYyLThlZTEt
OTNkYWE2MzE5YjlhLzEvS3FLUG9lUVgxbDRYMU9CMndEWEFad3VuRUdJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMi9jMTU4ZGEtYzNmZS00ODYyLThlZTEtOTNkYWE2MzE5Yjlh
LzEvVmQ1OEcxeFNaYnk1REJSTVZqQjJfYy1yYWg0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKgXzADAN
BgkqhkiG9w0BAQsFAAOCAQEAqjNVe2zq4vqKJhrEn8QVaj60CZt7NjTJYVz7lAZ1
N8clOrJT9R0zg1heWViGdqvWXLyIDqiZjZJGQ9WfoeZxQM+nH/fkbcLYgTUV1+sz
XzDid4EDMXJSw3xz1a5wum3F7TjuUy1hMzqnVyQjPbjWoCxhun5fCV2KcrgBayz8
lIvTp+dlaP9Y5sHy5gV5j3yTU17Hgy096jNru4/bkR+Ni3IpGM7BMCjCPGViE6rN
fAlbx/b9+lcqUnM5laYLRX4Ba7oSPjgFGEnLVHM/GuSgCebFIoNWyGe6YnkCPYZ+
drX9sbGHHKIi96FjkBpUiGZqgJR8ryWsEU6hHmth0R7M/Q==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:53 2024 by rpki-client on console-fra.rpki-client.org