Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/a6c720-79fc-483a-a257-d60d2557e4f2/1/k-3SJ0d99oLxGRgz4Z2vt7rvHJQ.roa
File: k-3SJ0d99oLxGRgz4Z2vt7rvHJQ.roa (raw, json)
Hash identifier: bG05IlMrKNGmKJ7bfzGwgGN1uXuB++B4BT6RUpHHJtg=
Subject key identifier: 93:ED:D2:27:47:7D:F6:82:F1:19:18:33:E1:9D:AF:B7:BA:EF:1C:94
Certificate issuer: /CN=68105d81a389cf689ce0369ac839762351259f1b
Certificate serial: DF3DD0
Authority key identifier: 68:10:5D:81:A3:89:CF:68:9C:E0:36:9A:C8:39:76:23:51:25:9F:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aBBdgaOJz2ic4DaayDl2I1Elnxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/a6c720-79fc-483a-a257-d60d2557e4f2/1/k-3SJ0d99oLxGRgz4Z2vt7rvHJQ.roa
Signing time: Wed 16 Feb 2022 15:56:23 +0000
ROA not before: Wed 16 Feb 2022 15:56:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22427
IP address blocks: 2a11:4580::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14630352 (0xdf3dd0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68105d81a389cf689ce0369ac839762351259f1b
Validity
Not Before: Feb 16 15:56:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=93edd227477df682f1191833e19dafb7baef1c94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:07:fb:ca:3f:ed:4d:6b:a6:81:3d:15:b2:9c:
aa:a8:5e:0d:b9:d7:b7:d2:98:c0:72:a7:53:f4:c3:
d9:42:ee:9a:2b:fd:bc:0c:cd:ba:20:f0:e9:02:65:
25:39:20:22:a4:6b:24:c5:3f:38:fb:bf:17:95:da:
06:8e:62:39:25:bf:f1:87:56:fa:59:29:9e:06:f4:
fa:04:63:f1:18:f5:d8:8b:9e:0e:5c:8a:da:ee:a9:
06:4a:9e:8f:17:24:c6:12:ce:79:9f:90:d8:b4:10:
4a:00:8d:5d:71:a5:03:3a:27:80:49:ce:8f:de:56:
32:50:9e:1b:7e:77:a4:ba:ed:4d:b1:8c:a2:02:f6:
a5:01:b3:a1:0b:24:15:a4:42:af:ae:64:76:fd:50:
a5:a7:e0:e1:01:87:23:72:1c:42:0b:e4:f1:a7:f5:
ee:74:c6:24:a8:f6:e2:f5:5d:27:3d:1c:16:86:23:
48:e5:df:09:de:03:64:ca:e3:83:8e:3a:c0:21:7b:
c6:22:39:9f:e4:ad:7d:ca:aa:93:89:12:78:00:81:
65:80:4f:2d:46:83:4f:d2:83:38:11:4b:51:e0:44:
9d:a3:61:0a:79:6e:f6:79:3c:21:dc:07:18:17:0f:
c7:2c:e8:c7:dd:dc:9d:6f:40:f0:aa:d9:96:76:9f:
41:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:ED:D2:27:47:7D:F6:82:F1:19:18:33:E1:9D:AF:B7:BA:EF:1C:94
X509v3 Authority Key Identifier:
keyid:68:10:5D:81:A3:89:CF:68:9C:E0:36:9A:C8:39:76:23:51:25:9F:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aBBdgaOJz2ic4DaayDl2I1Elnxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/a6c720-79fc-483a-a257-d60d2557e4f2/1/k-3SJ0d99oLxGRgz4Z2vt7rvHJQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/a6c720-79fc-483a-a257-d60d2557e4f2/1/aBBdgaOJz2ic4DaayDl2I1Elnxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:4580::/29
Signature Algorithm: sha256WithRSAEncryption
ae:5e:b1:21:d6:fd:33:45:2b:84:45:fc:f4:04:76:15:e1:c5:
40:42:d2:00:ff:82:7c:21:5a:d1:95:60:87:35:39:9d:23:0d:
97:ba:28:16:89:19:d6:4a:b5:4e:b9:b2:1a:d5:7c:a8:a9:8b:
b4:b0:d1:a9:c9:79:3f:bc:ad:9b:6d:8e:09:7e:b5:a3:ab:d9:
28:e6:17:1f:91:f1:fc:2f:34:44:e6:63:db:cb:ff:95:9b:0b:
f9:3c:db:17:05:f2:c0:4b:c0:f0:ea:37:99:85:b7:d9:f4:31:
b2:da:a9:2d:37:df:2a:ec:6b:d3:01:d2:1f:56:e8:93:d9:01:
85:25:0e:eb:ee:a9:4a:83:e0:d5:9e:fc:dc:a0:70:ff:b0:2e:
33:c3:bd:15:86:ac:3a:10:96:53:af:46:3c:19:d3:b3:09:c9:
84:d5:8d:67:27:bb:95:1e:d5:28:ce:de:7d:83:46:53:30:14:
c0:03:68:cf:27:60:75:27:1c:95:d1:2b:b9:af:cd:4d:e8:f2:
19:5f:b6:0e:30:c8:eb:c9:4a:84:c7:f6:3a:ca:e9:2f:f2:7b:
45:bb:72:11:74:fd:13:a0:a6:7f:7f:ee:36:1d:93:50:3f:6d:
ad:b2:54:5d:ea:f9:5d:a1:18:c9:64:42:48:9b:4d:6f:05:2f:
d5:7a:ae:55
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgIEAN890DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
ODEwNWQ4MWEzODljZjY4OWNlMDM2OWFjODM5NzYyMzUxMjU5ZjFiMB4XDTIyMDIx
NjE1NTYyM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTNlZGQyMjc0Nzdk
ZjY4MmYxMTkxODMzZTE5ZGFmYjdiYWVmMWM5NDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAM8H+8o/7U1rpoE9FbKcqqheDbnXt9KYwHKnU/TD2ULumiv9
vAzNuiDw6QJlJTkgIqRrJMU/OPu/F5XaBo5iOSW/8YdW+lkpngb0+gRj8Rj12Iue
DlyK2u6pBkqejxckxhLOeZ+Q2LQQSgCNXXGlAzongEnOj95WMlCeG353pLrtTbGM
ogL2pQGzoQskFaRCr65kdv1Qpafg4QGHI3IcQgvk8af17nTGJKj24vVdJz0cFoYj
SOXfCd4DZMrjg446wCF7xiI5n+Stfcqqk4kSeACBZYBPLUaDT9KDOBFLUeBEnaNh
Cnlu9nk8IdwHGBcPxyzox93cnW9A8KrZlnafQaECAwEAAaOCAgowggIGMB0GA1Ud
DgQWBBST7dInR332gvEZGDPhna+3uu8clDAfBgNVHSMEGDAWgBRoEF2Bo4nPaJzg
NprIOXYjUSWfGzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2FCQmRnYU9KejJpYzREYWF5RGwySTFFbG54cy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzAvYTZjNzIwLTc5ZmMtNDgzYS1hMjU3LWQ2MGQyNTU3ZTRmMi8x
L2stM1NKMGQ5OW9MeEdSZ3o0WjJ2dDdydkhKUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzAv
YTZjNzIwLTc5ZmMtNDgzYS1hMjU3LWQ2MGQyNTU3ZTRmMi8xL2FCQmRnYU9KejJp
YzREYWF5RGwySTFFbG54cy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAg
BggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFAyoRRYAwDQYJKoZIhvcNAQELBQAD
ggEBAK5esSHW/TNFK4RF/PQEdhXhxUBC0gD/gnwhWtGVYIc1OZ0jDZe6KBaJGdZK
tU65shrVfKipi7Sw0anJeT+8rZttjgl+taOr2SjmFx+R8fwvNETmY9vL/5WbC/k8
2xcF8sBLwPDqN5mFt9n0MbLaqS033yrsa9MB0h9W6JPZAYUlDuvuqUqD4NWe/Nyg
cP+wLjPDvRWGrDoQllOvRjwZ07MJyYTVjWcnu5Ue1SjO3n2DRlMwFMADaM8nYHUn
HJXRK7mvzU3o8hlftg4wyOvJSoTH9jrK6S/ye0W7chF0/ROgpn9/7jYdk1A/ba2y
VF3q+V2hGMlkQkibTW8FL9V6rlU=
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:37:15 2025 by rpki-client