Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/45f808-6c27-4579-8529-2bf8618b6f36/1/uruXx6qoTu3U6N8vFrO3yB8JIiw.roa
File: uruXx6qoTu3U6N8vFrO3yB8JIiw.roa (raw, json)
Hash identifier: XVyMhiLvP4SiFDXNMvXCMdNPk0zSBf/f/uguUreIF98=
Subject key identifier: BA:BB:97:C7:AA:A8:4E:ED:D4:E8:DF:2F:16:B3:B7:C8:1F:09:22:2C
Certificate issuer: /CN=3001d9bd20658eac2b261ab16872b8f4764ebbb7
Certificate serial: 018572BA877230DE7A4B25853DC4E1F769C1
Authority key identifier: 30:01:D9:BD:20:65:8E:AC:2B:26:1A:B1:68:72:B8:F4:76:4E:BB:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MAHZvSBljqwrJhqxaHK49HZOu7c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/45f808-6c27-4579-8529-2bf8618b6f36/1/uruXx6qoTu3U6N8vFrO3yB8JIiw.roa
Signing time: Mon 02 Jan 2023 13:45:05 +0000
ROA not before: Mon 02 Jan 2023 13:45:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 22773
IP address blocks: 2a11:59c0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:87:72:30:de:7a:4b:25:85:3d:c4:e1:f7:69:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3001d9bd20658eac2b261ab16872b8f4764ebbb7
Validity
Not Before: Jan 2 13:45:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=babb97c7aaa84eedd4e8df2f16b3b7c81f09222c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:93:a4:a7:63:d6:55:d9:60:73:e3:2b:59:4f:
db:c2:1c:46:82:29:ea:5d:07:5f:a8:f9:9d:6a:aa:
47:ed:6b:6c:50:ae:99:4c:61:35:c0:81:cb:b7:90:
ad:06:49:b0:d1:36:ba:d1:34:11:86:87:d0:46:f1:
0b:f5:fd:e4:69:2d:67:55:a3:cc:0b:52:b9:7b:59:
b8:8d:3b:e2:fc:64:57:6f:42:71:50:5a:ba:13:7c:
be:6a:b8:2e:85:88:8c:a7:20:6c:96:4d:9b:7b:d6:
ff:0c:d5:05:53:5b:e8:33:ec:8c:74:b3:60:e3:53:
e6:32:4a:06:3b:a2:92:54:94:bf:88:1b:f7:9b:08:
72:63:7e:56:f7:21:35:a8:87:fb:76:5f:2c:f2:71:
9f:80:d5:00:a2:b6:28:62:13:a8:22:ea:46:ae:b8:
23:68:78:3a:1a:44:6d:ec:51:c7:e9:c9:4a:da:6b:
7d:67:0f:f7:d4:86:b1:08:cc:49:19:30:84:77:86:
8f:f3:fc:35:85:b3:03:c0:e8:23:fb:04:61:26:e3:
42:70:5a:57:56:9f:56:63:ff:43:76:26:25:99:15:
92:da:06:44:c2:88:0d:cf:65:5c:91:c8:0b:15:35:
f3:a1:bb:cf:cd:02:35:92:e6:47:ac:cd:e5:32:e8:
7c:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:BB:97:C7:AA:A8:4E:ED:D4:E8:DF:2F:16:B3:B7:C8:1F:09:22:2C
X509v3 Authority Key Identifier:
keyid:30:01:D9:BD:20:65:8E:AC:2B:26:1A:B1:68:72:B8:F4:76:4E:BB:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MAHZvSBljqwrJhqxaHK49HZOu7c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/45f808-6c27-4579-8529-2bf8618b6f36/1/uruXx6qoTu3U6N8vFrO3yB8JIiw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/45f808-6c27-4579-8529-2bf8618b6f36/1/MAHZvSBljqwrJhqxaHK49HZOu7c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:59c0::/29
Signature Algorithm: sha256WithRSAEncryption
88:2c:cd:b8:58:f6:f1:a0:c2:35:c3:ce:d4:31:97:58:f1:77:
12:d3:fd:32:a4:e5:27:d1:24:ed:7c:7e:ff:54:39:69:70:2c:
d0:0c:6f:58:71:e0:1e:aa:2e:b2:fd:9d:cb:0f:46:9c:6d:9e:
0d:e8:a7:b9:c0:35:51:7a:ae:7a:26:c9:c5:1f:3f:f2:18:99:
a5:7d:8d:7b:53:25:f4:f1:32:3d:fa:e0:ca:c4:8d:aa:3d:89:
72:64:9b:3c:fa:ca:88:7f:26:9a:85:c1:b5:a1:87:10:64:66:
1c:38:14:22:e2:3a:2a:e2:d9:45:b1:46:7e:10:9b:2a:09:c4:
a0:e3:5f:96:fa:75:3c:93:25:7c:eb:7b:02:d2:8f:29:46:ee:
f4:12:eb:ce:e1:59:58:8e:53:b3:73:66:2c:85:fa:f8:98:e6:
ff:5e:2a:35:3d:22:08:76:9c:e1:4f:d4:dd:1e:f2:5e:33:f2:
bf:5b:8c:2a:df:02:37:7c:64:cd:35:18:98:02:db:51:5b:c6:
94:3f:0f:05:53:47:89:56:7b:14:11:b8:76:f1:ae:aa:5b:3d:
cd:82:c1:6d:43:58:96:46:04:94:a6:4f:cd:41:ec:96:55:11:
3f:1b:39:6c:14:bc:87:d1:50:ff:65:5a:25:5d:88:3e:bc:c4:
c1:95:c8:c9
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYVyuodyMN56SyWFPcTh92nBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMwMDFkOWJkMjA2NThlYWMyYjI2MWFiMTY4NzJiOGY0NzY0
ZWJiYjcwHhcNMjMwMTAyMTM0NTA1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYWJiOTdjN2FhYTg0ZWVkZDRlOGRmMmYxNmIzYjdjODFmMDkyMjJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4JOkp2PWVdlgc+MrWU/bwhxGginq
XQdfqPmdaqpH7WtsUK6ZTGE1wIHLt5CtBkmw0Ta60TQRhofQRvEL9f3kaS1nVaPM
C1K5e1m4jTvi/GRXb0JxUFq6E3y+arguhYiMpyBslk2be9b/DNUFU1voM+yMdLNg
41PmMkoGO6KSVJS/iBv3mwhyY35W9yE1qIf7dl8s8nGfgNUAorYoYhOoIupGrrgj
aHg6GkRt7FHH6clK2mt9Zw/31IaxCMxJGTCEd4aP8/w1hbMDwOgj+wRhJuNCcFpX
Vp9WY/9DdiYlmRWS2gZEwogNz2VckcgLFTXzobvPzQI1kuZHrM3lMuh8fQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFLq7l8eqqE7t1OjfLxazt8gfCSIsMB8GA1UdIwQY
MBaAFDAB2b0gZY6sKyYasWhyuPR2Tru3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTUFIWnZTQmxqcXdySmhxeGFISzQ5SFpPdTdjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy80NWY4MDgtNmMyNy00NTc5LTg1Mjkt
MmJmODYxOGI2ZjM2LzEvdXJ1WHg2cW9UdTNVNk44dkZyTzN5QjhKSWl3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy80NWY4MDgtNmMyNy00NTc5LTg1MjktMmJmODYxOGI2ZjM2
LzEvTUFIWnZTQmxqcXdySmhxeGFISzQ5SFpPdTdjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhFZwDAN
BgkqhkiG9w0BAQsFAAOCAQEAiCzNuFj28aDCNcPO1DGXWPF3EtP9MqTlJ9Ek7Xx+
/1Q5aXAs0AxvWHHgHqousv2dyw9GnG2eDeinucA1UXqueibJxR8/8hiZpX2Ne1Ml
9PEyPfrgysSNqj2JcmSbPPrKiH8mmoXBtaGHEGRmHDgUIuI6KuLZRbFGfhCbKgnE
oONflvp1PJMlfOt7AtKPKUbu9BLrzuFZWI5Ts3NmLIX6+Jjm/14qNT0iCHac4U/U
3R7yXjPyv1uMKt8CN3xkzTUYmALbUVvGlD8PBVNHiVZ7FBG4dvGuqls9zYLBbUNY
lkYElKZPzUHsllURPxs5bBS8h9FQ/2VaJV2IPrzEwZXIyQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:40 2024 by rpki-client on console-fra.rpki-client.org