Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/502a56-7e08-467f-802c-9d23b562118f/1/mp5itL8luf5JgHexPTq1QARz3LA.roa
File: mp5itL8luf5JgHexPTq1QARz3LA.roa (raw, json)
Hash identifier: sfx00rY4DQU7dy8JCi45VjQViXePaL+hL/V0HBNFRdU=
Subject key identifier: 9A:9E:62:B4:BF:25:B9:FE:49:80:77:B1:3D:3A:B5:40:04:73:DC:B0
Certificate issuer: /CN=b7d4de6d626863478e95bce683a87f0aaf49b5d0
Certificate serial: 018CFF1E8A1CCC5AC68C98E42C818BBFEFEA
Authority key identifier: B7:D4:DE:6D:62:68:63:47:8E:95:BC:E6:83:A8:7F:0A:AF:49:B5:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t9TebWJoY0eOlbzmg6h_Cq9JtdA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/502a56-7e08-467f-802c-9d23b562118f/1/mp5itL8luf5JgHexPTq1QARz3LA.roa
Signing time: Fri 12 Jan 2024 19:20:40 +0000
ROA not before: Fri 12 Jan 2024 19:20:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215745
IP address blocks: 2a14:7580:beef::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ff:1e:8a:1c:cc:5a:c6:8c:98:e4:2c:81:8b:bf:ef:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b7d4de6d626863478e95bce683a87f0aaf49b5d0
Validity
Not Before: Jan 12 19:20:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9a9e62b4bf25b9fe498077b13d3ab5400473dcb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:f7:50:61:4f:0b:cf:17:82:df:47:7d:5b:07:
a1:d0:29:e1:52:88:23:53:7b:12:57:29:6e:34:43:
d9:a1:4b:73:c8:da:2a:09:e9:8f:bc:70:6a:0a:4b:
b2:e8:3b:8b:55:16:3c:54:e4:38:c7:24:a4:fa:35:
0f:0d:2f:17:a2:0d:cd:45:4a:cf:d4:8d:4a:73:7d:
ac:e0:8b:12:48:95:fb:c8:ea:ba:53:ba:b2:42:3b:
22:7f:ad:a6:17:c5:c8:cb:9b:a2:fd:2a:42:a1:4e:
9d:ca:09:19:c4:38:dd:11:02:dc:76:bf:da:d0:57:
0d:cb:38:1c:bf:3c:52:7b:3c:43:38:34:74:93:e4:
4e:25:d2:89:45:65:cf:70:08:9e:2a:e6:72:54:3f:
fa:77:58:63:2e:14:e7:4f:59:25:b3:5b:1c:c9:64:
03:5d:49:ff:ec:27:bd:59:d2:d1:de:39:58:d8:b2:
c9:82:a2:fc:b0:be:6f:43:53:2f:cd:80:37:fe:54:
69:a0:81:e6:65:91:f9:d3:92:72:76:84:5a:29:71:
34:6d:3f:95:56:43:fb:97:f9:66:89:9e:f7:41:ab:
28:7d:a3:28:5a:e1:fd:43:e7:0b:4f:73:a8:90:a0:
aa:f1:f9:34:ec:dd:77:62:92:dd:e3:75:ec:b3:4a:
fe:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:9E:62:B4:BF:25:B9:FE:49:80:77:B1:3D:3A:B5:40:04:73:DC:B0
X509v3 Authority Key Identifier:
keyid:B7:D4:DE:6D:62:68:63:47:8E:95:BC:E6:83:A8:7F:0A:AF:49:B5:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t9TebWJoY0eOlbzmg6h_Cq9JtdA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/502a56-7e08-467f-802c-9d23b562118f/1/mp5itL8luf5JgHexPTq1QARz3LA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/502a56-7e08-467f-802c-9d23b562118f/1/t9TebWJoY0eOlbzmg6h_Cq9JtdA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7580:beef::/48
Signature Algorithm: sha256WithRSAEncryption
77:be:b1:9f:f8:fe:14:98:2d:c5:2b:2d:8d:e5:3f:49:fa:83:
e0:44:6c:25:dc:99:7a:b6:da:a7:d9:99:30:a5:8f:30:09:25:
db:7b:13:39:c1:6d:1c:41:ad:b1:53:fb:5b:7d:52:f4:c1:1c:
44:b5:be:ab:2b:ec:57:87:d1:d9:d4:83:5a:9a:d3:2a:ea:8a:
e5:06:b4:24:37:55:ae:ad:38:03:ff:df:02:c3:ae:d1:26:8c:
a8:58:de:fb:a9:4b:50:2b:c9:b3:a5:41:a4:02:76:8a:a0:e9:
7b:a7:2f:c9:70:87:ba:4b:f7:c3:84:2d:a3:40:e7:a7:01:c4:
95:b3:90:10:fe:fc:0c:fd:40:67:ff:53:15:46:fe:25:95:00:
10:b2:ef:eb:11:15:c0:04:1d:e2:03:b5:e4:5b:f8:7f:31:53:
68:d7:14:14:96:94:0d:e2:b2:e2:1d:c3:99:c7:3d:e8:69:63:
95:e3:ed:b0:5e:35:8a:52:ca:9c:33:52:ce:0c:a4:b0:b9:7f:
26:d6:79:f9:0d:28:4f:a7:19:5a:78:a5:43:a3:b5:87:24:c4:
3f:e8:01:cd:6b:c3:34:8e:0c:be:3c:de:76:d5:fa:92:e1:26:
91:98:b9:a0:ee:c8:d4:e7:77:23:61:3b:be:eb:b0:66:4f:56:
6c:87:8a:ba
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYz/HooczFrGjJjkLIGLv+/qMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI3ZDRkZTZkNjI2ODYzNDc4ZTk1YmNlNjgzYTg3ZjBhYWY0
OWI1ZDAwHhcNMjQwMTEyMTkyMDQwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5YTllNjJiNGJmMjViOWZlNDk4MDc3YjEzZDNhYjU0MDA0NzNkY2IwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAofdQYU8LzxeC30d9Wweh0CnhUogj
U3sSVyluNEPZoUtzyNoqCemPvHBqCkuy6DuLVRY8VOQ4xySk+jUPDS8Xog3NRUrP
1I1Kc32s4IsSSJX7yOq6U7qyQjsif62mF8XIy5ui/SpCoU6dygkZxDjdEQLcdr/a
0FcNyzgcvzxSezxDODR0k+ROJdKJRWXPcAieKuZyVD/6d1hjLhTnT1kls1scyWQD
XUn/7Ce9WdLR3jlY2LLJgqL8sL5vQ1MvzYA3/lRpoIHmZZH505JydoRaKXE0bT+V
VkP7l/lmiZ73QasofaMoWuH9Q+cLT3OokKCq8fk07N13YpLd43Xss0r+3QIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFJqeYrS/Jbn+SYB3sT06tUAEc9ywMB8GA1UdIwQY
MBaAFLfU3m1iaGNHjpW85oOofwqvSbXQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdDlUZWJXSm9ZMGVPbGJ6bWc2aF9DcTlKdGRBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy81MDJhNTYtN2UwOC00NjdmLTgwMmMt
OWQyM2I1NjIxMThmLzEvbXA1aXRMOGx1ZjVKZ0hleFBUcTFRQVJ6M0xBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMy81MDJhNTYtN2UwOC00NjdmLTgwMmMtOWQyM2I1NjIxMThm
LzEvdDlUZWJXSm9ZMGVPbGJ6bWc2aF9DcTlKdGRBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gL7v
MA0GCSqGSIb3DQEBCwUAA4IBAQB3vrGf+P4UmC3FKy2N5T9J+oPgRGwl3Jl6ttqn
2ZkwpY8wCSXbexM5wW0cQa2xU/tbfVL0wRxEtb6rK+xXh9HZ1INamtMq6orlBrQk
N1WurTgD/98Cw67RJoyoWN77qUtQK8mzpUGkAnaKoOl7py/JcIe6S/fDhC2jQOen
AcSVs5AQ/vwM/UBn/1MVRv4llQAQsu/rERXABB3iA7XkW/h/MVNo1xQUlpQN4rLi
HcOZxz3oaWOV4+2wXjWKUsqcM1LODKSwuX8m1nn5DShPpxlaeKVDo7WHJMQ/6AHN
a8M0jgy+PN521fqS4SaRmLmg7sjU53cjYTu+67BmT1Zsh4q6
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:24 2024 by rpki-client on console-fra.rpki-client.org