Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/e0caff-28cd-4c6b-b675-e263cad7beba/1/S9ADVrxLY5pEmdjMp3wgQI09w64.roa
File: S9ADVrxLY5pEmdjMp3wgQI09w64.roa (raw, json)
Hash identifier: qEbyENyVbnt/FJNnZsc8IXZkzVknoUqmWiugbarZ3Pg=
Subject key identifier: 4B:D0:03:56:BC:4B:63:9A:44:99:D8:CC:A7:7C:20:40:8D:3D:C3:AE
Certificate issuer: /CN=80149f43feeb699ffa40a870e5ed7dfc225f133f
Certificate serial: 0AAD58
Authority key identifier: 80:14:9F:43:FE:EB:69:9F:FA:40:A8:70:E5:ED:7D:FC:22:5F:13:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gBSfQ_7raZ_6QKhw5e19_CJfEz8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/e0caff-28cd-4c6b-b675-e263cad7beba/1/S9ADVrxLY5pEmdjMp3wgQI09w64.roa
Signing time: Wed 23 Feb 2022 08:47:25 +0000
ROA not before: Wed 23 Feb 2022 08:47:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20473
IP address blocks: 2a12:84c0::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 699736 (0xaad58)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80149f43feeb699ffa40a870e5ed7dfc225f133f
Validity
Not Before: Feb 23 08:47:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4bd00356bc4b639a4499d8cca77c20408d3dc3ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:40:1b:24:9e:0c:bb:0f:a1:ab:ad:02:c0:dc:
d0:7a:4a:5c:af:1e:b7:f7:06:ee:de:1f:59:3d:70:
a1:f8:b4:a6:5b:ed:97:ea:93:27:1b:e9:cb:9c:9b:
ac:a1:6d:61:4b:82:e9:98:c7:d0:26:7d:f9:92:68:
78:b8:6d:d8:cd:ae:77:24:01:81:78:91:d2:94:3b:
d3:50:87:0e:ef:a9:98:c5:bd:2f:8b:16:74:29:d0:
97:0d:ac:6e:bc:0d:0b:c5:62:61:3b:db:16:07:e6:
9c:9d:aa:d6:6d:1b:d8:a4:c5:9d:76:ab:84:b4:f7:
46:f9:e7:9a:1f:aa:19:65:a6:a4:a4:a7:5c:cf:1c:
8c:db:de:28:61:28:50:7f:08:9f:80:d0:d6:22:f0:
11:e5:05:71:da:da:ab:61:f0:11:0f:0e:0a:40:65:
d3:8e:78:96:93:93:83:9a:48:1e:c2:3c:2f:d6:e4:
32:41:df:16:b1:6a:6b:e7:95:f9:8c:ca:8f:e7:d0:
a5:aa:71:68:f6:85:8c:a2:b9:77:0c:f4:0b:58:e7:
d8:6c:68:ce:c3:cd:ff:77:0f:c5:75:68:e7:02:d4:
ae:ac:2c:77:b3:6d:40:7d:41:7d:82:03:2a:11:d5:
87:69:7c:4b:12:39:2d:82:67:ea:ab:e1:a2:68:c1:
5f:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:D0:03:56:BC:4B:63:9A:44:99:D8:CC:A7:7C:20:40:8D:3D:C3:AE
X509v3 Authority Key Identifier:
keyid:80:14:9F:43:FE:EB:69:9F:FA:40:A8:70:E5:ED:7D:FC:22:5F:13:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gBSfQ_7raZ_6QKhw5e19_CJfEz8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/e0caff-28cd-4c6b-b675-e263cad7beba/1/S9ADVrxLY5pEmdjMp3wgQI09w64.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/e0caff-28cd-4c6b-b675-e263cad7beba/1/gBSfQ_7raZ_6QKhw5e19_CJfEz8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:84c0::/48
Signature Algorithm: sha256WithRSAEncryption
65:f9:b0:3f:1c:6d:be:48:28:4f:ac:0f:9b:00:71:76:a1:10:
d1:bf:66:ef:d1:e3:23:8c:90:99:38:a3:48:5d:40:9f:6f:52:
f2:01:d7:0a:23:e8:6a:df:1d:6b:71:81:50:42:1c:b5:18:33:
d2:44:5b:17:19:d2:3c:ce:f5:8c:53:92:8f:79:fb:40:c5:78:
1c:00:f4:e7:02:c9:2f:5f:71:ee:06:cc:28:32:44:ef:70:f0:
67:38:14:ca:92:84:a6:24:58:a7:da:21:cc:e5:e0:f9:ee:45:
27:7b:c0:23:4e:d7:2a:ea:3b:b2:18:bb:62:0e:0d:bb:d4:47:
cd:99:8b:a7:8d:0c:77:f8:7d:96:b3:1f:66:7b:c8:31:22:8c:
c4:de:13:03:cb:d3:2b:2f:bc:bc:b2:22:79:f3:4e:eb:ab:15:
55:f9:3a:6c:f7:c1:c1:0d:64:4a:55:51:0a:50:bd:52:83:59:
de:e3:14:12:07:b6:be:38:f7:46:49:69:ad:5c:30:ba:8e:65:
54:42:24:28:7e:55:15:cf:cb:c6:2a:ff:17:9f:20:18:29:54:
ab:eb:d0:b6:93:39:58:a3:fc:bc:5f:f6:34:b1:c4:5c:a6:8c:
d4:ef:f1:8e:b8:fd:a3:61:a4:03:6c:f1:d9:48:8c:20:7d:cf:
c7:00:6d:88
-----BEGIN CERTIFICATE-----
MIIE8TCCA9mgAwIBAgIDCq1YMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDgw
MTQ5ZjQzZmVlYjY5OWZmYTQwYTg3MGU1ZWQ3ZGZjMjI1ZjEzM2YwHhcNMjIwMjIz
MDg0NzI1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg0YmQwMDM1NmJjNGI2
MzlhNDQ5OWQ4Y2NhNzdjMjA0MDhkM2RjM2FlMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAvkAbJJ4Muw+hq60CwNzQekpcrx639wbu3h9ZPXCh+LSmW+2X
6pMnG+nLnJusoW1hS4LpmMfQJn35kmh4uG3Yza53JAGBeJHSlDvTUIcO76mYxb0v
ixZ0KdCXDaxuvA0LxWJhO9sWB+acnarWbRvYpMWddquEtPdG+eeaH6oZZaakpKdc
zxyM294oYShQfwifgNDWIvAR5QVx2tqrYfARDw4KQGXTjniWk5ODmkgewjwv1uQy
Qd8WsWpr55X5jMqP59ClqnFo9oWMorl3DPQLWOfYbGjOw83/dw/FdWjnAtSurCx3
s21AfUF9ggMqEdWHaXxLEjktgmfqq+GiaMFf3wIDAQABo4ICDDCCAggwHQYDVR0O
BBYEFEvQA1a8S2OaRJnYzKd8IECNPcOuMB8GA1UdIwQYMBaAFIAUn0P+62mf+kCo
cOXtffwiXxM/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
Z0JTZlFfN3JhWl82UUtodzVlMTlfQ0pmRXo4LmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC8xNS9lMGNhZmYtMjhjZC00YzZiLWI2NzUtZTI2M2NhZDdiZWJhLzEv
UzlBRFZyeExZNXBFbWRqTXAzd2dRSTA5dzY0LnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS9l
MGNhZmYtMjhjZC00YzZiLWI2NzUtZTI2M2NhZDdiZWJhLzEvZ0JTZlFfN3JhWl82
UUtodzVlMTlfQ0pmRXo4LmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIG
CCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhKEwAAAMA0GCSqGSIb3DQEBCwUA
A4IBAQBl+bA/HG2+SChPrA+bAHF2oRDRv2bv0eMjjJCZOKNIXUCfb1LyAdcKI+hq
3x1rcYFQQhy1GDPSRFsXGdI8zvWMU5KPeftAxXgcAPTnAskvX3HuBswoMkTvcPBn
OBTKkoSmJFin2iHM5eD57kUne8AjTtcq6juyGLtiDg271EfNmYunjQx3+H2Wsx9m
e8gxIozE3hMDy9MrL7y8siJ5807rqxVV+Tps98HBDWRKVVEKUL1Sg1ne4xQSB7a+
OPdGSWmtXDC6jmVUQiQoflUVz8vGKv8XnyAYKVSr69C2kzlYo/y8X/Y0scRcpozU
7/GOuP2jYaQDbPHZSIwgfc/HAG2I
-----END CERTIFICATE-----
Generated at Fri Apr 18 02:43:32 2025 by rpki-client