Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/502a56-7e08-467f-802c-9d23b562118f/1/AWAwhTa_wkNA7lGH3eEqsP_Bf2s.roa
File: AWAwhTa_wkNA7lGH3eEqsP_Bf2s.roa (raw, json)
Hash identifier: tg4HWUNjrfqPw7BmiryrNZBM9zlpA8r4d7B2XH5XyzY=
Subject key identifier: 01:60:30:85:36:BF:C2:43:40:EE:51:87:DD:E1:2A:B0:FF:C1:7F:6B
Certificate issuer: /CN=b7d4de6d626863478e95bce683a87f0aaf49b5d0
Certificate serial: 018D0D34CE485F60C07F303700964F558ACD
Authority key identifier: B7:D4:DE:6D:62:68:63:47:8E:95:BC:E6:83:A8:7F:0A:AF:49:B5:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t9TebWJoY0eOlbzmg6h_Cq9JtdA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/502a56-7e08-467f-802c-9d23b562118f/1/AWAwhTa_wkNA7lGH3eEqsP_Bf2s.roa
Signing time: Mon 15 Jan 2024 12:59:40 +0000
ROA not before: Mon 15 Jan 2024 12:59:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215791
IP address blocks: 2a14:7580:a::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:0d:34:ce:48:5f:60:c0:7f:30:37:00:96:4f:55:8a:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b7d4de6d626863478e95bce683a87f0aaf49b5d0
Validity
Not Before: Jan 15 12:59:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0160308536bfc24340ee5187dde12ab0ffc17f6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:67:49:1d:b7:3b:99:53:9f:9f:87:51:2b:2a:
ec:ae:74:6c:4d:ba:d8:d3:c5:89:0f:c5:40:11:9b:
f5:3b:29:e2:aa:58:ac:94:0d:8d:9d:9f:76:ab:78:
f2:53:a7:d5:ae:a4:54:a9:da:39:f4:bb:d5:3a:df:
c5:14:0f:88:06:d1:5f:71:ea:47:10:b2:62:81:0d:
85:18:1e:17:c6:b3:d5:fc:a7:0f:d0:5c:5d:05:5b:
b0:02:58:7d:0c:66:cf:e8:05:bb:e2:be:44:74:8e:
0c:58:4d:7c:32:92:d6:3e:27:0b:cc:1f:78:4e:0b:
dc:bb:db:b1:47:8a:3d:24:d9:ca:2a:26:85:0b:ec:
ce:76:d4:6f:d7:63:3a:ee:b3:80:56:f0:20:51:0e:
62:5f:a8:46:f0:0a:c5:f8:81:a4:7e:0c:87:e8:14:
66:8a:e7:c8:cf:b1:05:6c:2a:d4:5b:76:10:0f:3a:
40:11:1d:f5:1d:67:ee:28:c4:2a:f7:68:75:42:12:
8c:f2:fa:9e:33:a0:d1:eb:6b:c9:f5:6e:d3:67:e1:
a0:18:f4:5c:b2:a2:da:75:3a:6b:13:f6:4f:68:88:
ef:01:e0:11:9e:6c:d1:92:10:0c:12:50:90:1b:3e:
6b:1d:f6:d4:58:af:e5:ae:5e:6a:4b:99:6b:7d:87:
3d:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:60:30:85:36:BF:C2:43:40:EE:51:87:DD:E1:2A:B0:FF:C1:7F:6B
X509v3 Authority Key Identifier:
keyid:B7:D4:DE:6D:62:68:63:47:8E:95:BC:E6:83:A8:7F:0A:AF:49:B5:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t9TebWJoY0eOlbzmg6h_Cq9JtdA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/502a56-7e08-467f-802c-9d23b562118f/1/AWAwhTa_wkNA7lGH3eEqsP_Bf2s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/502a56-7e08-467f-802c-9d23b562118f/1/t9TebWJoY0eOlbzmg6h_Cq9JtdA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7580:a::/48
Signature Algorithm: sha256WithRSAEncryption
78:89:60:77:21:79:44:aa:f3:6f:e8:3b:f7:a7:6a:8d:27:8e:
47:1d:6b:28:c5:88:15:97:28:ed:e8:fd:75:22:80:81:4d:bf:
52:df:1c:a4:6a:9e:87:c9:e2:cc:9a:34:d2:64:9b:01:e5:b8:
fc:c0:ac:05:8f:52:45:48:66:67:e1:2a:28:a2:be:7d:08:fe:
ba:ae:31:ee:07:67:b8:dd:a1:2b:43:e3:a9:07:e7:e8:f0:cf:
94:64:f9:a2:ea:55:fd:b0:64:f8:e0:9d:42:6e:3d:c9:82:63:
58:56:b4:8b:e3:ba:eb:55:17:54:08:56:7e:ab:b0:89:de:63:
6d:39:89:a7:7b:46:85:e8:68:a7:51:35:3a:80:22:20:9d:82:
28:e7:dc:c2:fb:2d:95:11:07:3f:60:3f:3f:05:a2:35:b3:49:
9b:4c:23:9b:55:dc:5c:f5:af:b6:1c:e2:1c:6f:12:6f:0f:73:
4d:c2:8e:a6:12:c1:70:12:70:db:67:6f:30:b3:d5:7c:4e:4c:
3d:6c:05:4f:fe:ac:b4:fe:cf:e8:09:a5:e9:c9:72:8b:3c:3e:
13:3d:22:e7:3c:d7:1d:55:22:d8:10:79:ee:78:a7:fd:c8:62:
6f:f6:01:0c:d2:40:33:46:aa:90:51:50:50:ad:78:20:1f:d0:
aa:66:16:46
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY0NNM5IX2DAfzA3AJZPVYrNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI3ZDRkZTZkNjI2ODYzNDc4ZTk1YmNlNjgzYTg3ZjBhYWY0
OWI1ZDAwHhcNMjQwMTE1MTI1OTQwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMTYwMzA4NTM2YmZjMjQzNDBlZTUxODdkZGUxMmFiMGZmYzE3ZjZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg2dJHbc7mVOfn4dRKyrsrnRsTbrY
08WJD8VAEZv1OyniqlislA2NnZ92q3jyU6fVrqRUqdo59LvVOt/FFA+IBtFfcepH
ELJigQ2FGB4XxrPV/KcP0FxdBVuwAlh9DGbP6AW74r5EdI4MWE18MpLWPicLzB94
Tgvcu9uxR4o9JNnKKiaFC+zOdtRv12M67rOAVvAgUQ5iX6hG8ArF+IGkfgyH6BRm
iufIz7EFbCrUW3YQDzpAER31HWfuKMQq92h1QhKM8vqeM6DR62vJ9W7TZ+GgGPRc
sqLadTprE/ZPaIjvAeARnmzRkhAMElCQGz5rHfbUWK/lrl5qS5lrfYc9CwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFAFgMIU2v8JDQO5Rh93hKrD/wX9rMB8GA1UdIwQY
MBaAFLfU3m1iaGNHjpW85oOofwqvSbXQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdDlUZWJXSm9ZMGVPbGJ6bWc2aF9DcTlKdGRBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy81MDJhNTYtN2UwOC00NjdmLTgwMmMt
OWQyM2I1NjIxMThmLzEvQVdBd2hUYV93a05BN2xHSDNlRXFzUF9CZjJzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMy81MDJhNTYtN2UwOC00NjdmLTgwMmMtOWQyM2I1NjIxMThm
LzEvdDlUZWJXSm9ZMGVPbGJ6bWc2aF9DcTlKdGRBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gAAK
MA0GCSqGSIb3DQEBCwUAA4IBAQB4iWB3IXlEqvNv6Dv3p2qNJ45HHWsoxYgVlyjt
6P11IoCBTb9S3xykap6HyeLMmjTSZJsB5bj8wKwFj1JFSGZn4Sooor59CP66rjHu
B2e43aErQ+OpB+fo8M+UZPmi6lX9sGT44J1Cbj3JgmNYVrSL47rrVRdUCFZ+q7CJ
3mNtOYmne0aF6GinUTU6gCIgnYIo59zC+y2VEQc/YD8/BaI1s0mbTCObVdxc9a+2
HOIcbxJvD3NNwo6mEsFwEnDbZ28ws9V8Tkw9bAVP/qy0/s/oCaXpyXKLPD4TPSLn
PNcdVSLYEHnueKf9yGJv9gEM0kAzRqqQUVBQrXggH9CqZhZG
-----END CERTIFICATE-----
Generated at Thu Mar 13 20:35:58 2025 by rpki-client