Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/y0oOafyVAvfFamKlSOpmiK13JUY.roa
File: y0oOafyVAvfFamKlSOpmiK13JUY.roa (raw, json)
Hash identifier: TbiJ65e4c6EABoS+8t7U82QaslEY9n7Hh+G4ccDwvSc=
Subject key identifier: CB:4A:0E:69:FC:95:02:F7:C5:6A:62:A5:48:EA:66:88:AD:77:25:46
Certificate issuer: /CN=0802b95ce6239d526c35ae7a8e2ceb48aeb82b5f
Certificate serial: 092D185E
Authority key identifier: 08:02:B9:5C:E6:23:9D:52:6C:35:AE:7A:8E:2C:EB:48:AE:B8:2B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/y0oOafyVAvfFamKlSOpmiK13JUY.roa
Signing time: Sat 01 Jan 2022 12:58:46 +0000
ROA not before: Sat 01 Jan 2022 12:58:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41002
IP address blocks: 2a03:1ac0::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 153950302 (0x92d185e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0802b95ce6239d526c35ae7a8e2ceb48aeb82b5f
Validity
Not Before: Jan 1 12:58:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cb4a0e69fc9502f7c56a62a548ea6688ad772546
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:4e:d6:48:55:1c:4d:b8:76:37:78:70:07:da:
52:6b:de:d0:a0:4f:11:61:74:d6:1a:bb:3e:6f:52:
eb:98:0e:a6:4d:13:3e:f6:2c:de:6c:0b:b3:d9:ba:
81:9c:7e:79:04:a3:c0:24:e2:b6:78:72:7f:ec:ec:
08:85:88:9b:b4:57:7a:f0:9c:1c:0e:df:c3:02:cb:
7f:21:d5:aa:df:bf:24:cf:c1:8c:ef:a9:63:36:22:
5b:b1:6d:6d:54:0a:de:7f:c3:e2:67:6b:0f:2f:da:
c6:00:4e:fd:04:bf:06:b4:3b:81:8d:24:2b:ba:0d:
bf:21:14:62:5e:c7:f9:fe:cf:b6:32:8f:01:d2:b4:
b3:aa:b5:bf:01:ae:be:f1:02:5b:74:f4:76:b1:55:
dc:5a:9d:2a:95:86:9b:b1:b9:50:f7:4a:91:ba:2d:
db:1f:98:f4:db:cf:b0:7b:27:f9:03:ea:b6:b5:42:
08:5e:79:b0:dd:89:9e:66:96:5e:d9:32:06:95:26:
49:92:8d:2e:a5:47:59:9e:e7:e1:7f:a5:08:07:42:
ad:87:01:50:20:e2:2e:e0:b9:b3:74:8f:e9:0a:0a:
ab:c1:a4:64:69:e5:1b:e8:c8:18:bf:6a:e2:2d:a8:
00:bb:45:d7:f5:10:9e:ec:12:a9:87:a5:76:be:37:
29:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:4A:0E:69:FC:95:02:F7:C5:6A:62:A5:48:EA:66:88:AD:77:25:46
X509v3 Authority Key Identifier:
keyid:08:02:B9:5C:E6:23:9D:52:6C:35:AE:7A:8E:2C:EB:48:AE:B8:2B:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/y0oOafyVAvfFamKlSOpmiK13JUY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/CAK5XOYjnVJsNa56jizrSK64K18.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:1ac0::/48
Signature Algorithm: sha256WithRSAEncryption
10:8a:8d:b0:a5:ef:88:31:90:eb:93:ec:d8:14:5f:e8:18:16:
3c:9b:8c:49:7d:6b:41:50:a6:b1:8c:cd:3f:0b:92:6f:85:10:
c0:09:5e:75:8c:73:df:39:9f:46:60:e2:6a:c8:11:30:df:52:
bd:6e:62:5c:ca:65:3e:e0:8b:16:3e:c2:a1:9f:e4:4e:2d:79:
70:95:5e:2a:58:04:30:5e:20:be:8e:1e:68:da:8c:19:e6:c4:
ee:b9:21:f3:4f:91:a0:9b:b8:e4:ca:1c:ec:0b:b0:30:ad:cf:
04:12:e2:01:ea:fb:cc:2a:16:f6:ef:6f:73:27:16:f1:06:49:
40:12:bd:09:33:c9:85:e2:c0:4c:82:0f:57:59:81:11:a2:1e:
f3:75:d0:3f:fc:17:49:3e:b6:c2:32:ab:4c:59:2c:4c:9b:93:
11:6c:27:bd:48:14:28:54:db:98:86:8b:aa:86:d0:b0:1e:c5:
4d:c0:79:84:ad:37:7a:89:8d:76:70:ad:8d:75:6e:cf:18:af:
d0:7f:ad:af:35:cb:50:7a:41:fc:dd:d3:ef:6c:66:d9:45:ab:
ab:ad:6f:6f:ea:c2:e5:44:e6:c9:1a:1b:06:8e:4b:d1:0b:ab:
85:10:8c:e6:dc:9f:3e:40:9a:e7:ab:d4:e1:64:c9:62:e1:a9:
63:63:a3:d0
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIECS0YXjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
ODAyYjk1Y2U2MjM5ZDUyNmMzNWFlN2E4ZTJjZWI0OGFlYjgyYjVmMB4XDTIyMDEw
MTEyNTg0NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoY2I0YTBlNjlmYzk1
MDJmN2M1NmE2MmE1NDhlYTY2ODhhZDc3MjU0NjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAORO1khVHE24djd4cAfaUmve0KBPEWF01hq7Pm9S65gOpk0T
PvYs3mwLs9m6gZx+eQSjwCTitnhyf+zsCIWIm7RXevCcHA7fwwLLfyHVqt+/JM/B
jO+pYzYiW7FtbVQK3n/D4mdrDy/axgBO/QS/BrQ7gY0kK7oNvyEUYl7H+f7PtjKP
AdK0s6q1vwGuvvECW3T0drFV3FqdKpWGm7G5UPdKkbot2x+Y9NvPsHsn+QPqtrVC
CF55sN2JnmaWXtkyBpUmSZKNLqVHWZ7n4X+lCAdCrYcBUCDiLuC5s3SP6QoKq8Gk
ZGnlG+jIGL9q4i2oALtF1/UQnuwSqYeldr43KZMCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBTLSg5p/JUC98VqYqVI6maIrXclRjAfBgNVHSMEGDAWgBQIArlc5iOdUmw1
rnqOLOtIrrgrXzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0NBSzVYT1lqblZKc05hNTZqaXpyU0s2NEsxOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTQvMTBlOTY1LTc0MDktNDRkOC05NTAyLWNmMGFhM2VjYWQyOC8x
L3kwb09hZnlWQXZmRmFtS2xTT3BtaUsxM0pVWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTQv
MTBlOTY1LTc0MDktNDRkOC05NTAyLWNmMGFhM2VjYWQyOC8xL0NBSzVYT1lqblZK
c05hNTZqaXpyU0s2NEsxOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoDGsAAADANBgkqhkiG9w0BAQsF
AAOCAQEAEIqNsKXviDGQ65Ps2BRf6BgWPJuMSX1rQVCmsYzNPwuSb4UQwAledYxz
3zmfRmDiasgRMN9SvW5iXMplPuCLFj7CoZ/kTi15cJVeKlgEMF4gvo4eaNqMGebE
7rkh80+RoJu45Moc7AuwMK3PBBLiAer7zCoW9u9vcycW8QZJQBK9CTPJheLATIIP
V1mBEaIe83XQP/wXST62wjKrTFksTJuTEWwnvUgUKFTbmIaLqobQsB7FTcB5hK03
eomNdnCtjXVuzxiv0H+trzXLUHpB/N3T72xm2UWrq61vb+rC5UTmyRobBo5L0Qur
hRCM5tyfPkCa56vU4WTJYuGpY2Oj0A==
-----END CERTIFICATE-----
Generated at Thu Feb 20 02:41:41 2025 by rpki-client