Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/971cc4-54d5-4c28-a1c3-e63e94cba09f/1/SgB1rLDDYkVHEyzZMvxJXnAC9OU.roa
File: SgB1rLDDYkVHEyzZMvxJXnAC9OU.roa (raw, json)
Hash identifier: Ei7btOIOe7/Z3UM60G/eAJ+nLjog9KhZzNDWG1B/1s4=
Subject key identifier: 4A:00:75:AC:B0:C3:62:45:47:13:2C:D9:32:FC:49:5E:70:02:F4:E5
Certificate issuer: /CN=7d04c25c2f8b47e5daf52d1c4c5a50999dd0a0a9
Certificate serial: 08CEFED5
Authority key identifier: 7D:04:C2:5C:2F:8B:47:E5:DA:F5:2D:1C:4C:5A:50:99:9D:D0:A0:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQTCXC-LR-Xa9S0cTFpQmZ3QoKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/971cc4-54d5-4c28-a1c3-e63e94cba09f/1/SgB1rLDDYkVHEyzZMvxJXnAC9OU.roa
Signing time: Sat 23 Apr 2022 00:05:09 +0000
ROA not before: Sat 23 Apr 2022 00:05:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213169
IP address blocks: 2a04:ff00:700::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147783381 (0x8cefed5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d04c25c2f8b47e5daf52d1c4c5a50999dd0a0a9
Validity
Not Before: Apr 23 00:05:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4a0075acb0c3624547132cd932fc495e7002f4e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:73:6f:2f:d8:3c:15:47:5a:3d:5f:31:48:d4:
5e:2d:9e:ca:f2:28:7f:56:39:67:4a:9f:46:23:7e:
fd:b1:cd:36:31:14:1a:a6:eb:05:84:fc:d2:c2:a6:
2b:56:62:33:38:7a:3e:b7:59:6f:a9:9e:ac:cf:b2:
dc:60:4f:04:e7:a1:b4:06:5f:b5:3a:60:af:06:b2:
50:7f:9a:31:90:af:04:4b:24:08:e6:48:3a:24:3b:
27:e6:6f:45:96:aa:8c:a3:b5:3b:82:53:fc:8f:f8:
fc:2e:5c:97:3b:1c:0a:fc:cd:ea:8c:26:1b:51:17:
5e:3e:6d:d3:bd:9f:65:a5:42:21:f6:3a:a0:87:3c:
d1:f4:d5:54:ff:e6:85:46:8b:a0:4f:c7:75:42:24:
a8:86:ef:20:ce:ad:e6:59:4e:5f:ae:19:18:87:1d:
26:57:f4:6f:a5:ec:bf:f8:ad:73:eb:0c:a0:15:67:
ac:c5:80:fe:5e:67:cd:bc:d5:c2:5f:4f:81:b2:9c:
03:67:f5:7a:67:cf:86:a1:ff:66:4a:df:50:d2:1f:
80:00:f6:da:3e:3e:a7:6e:92:71:5d:90:1c:49:58:
84:1d:31:d7:f9:29:7d:ca:13:9b:68:5b:17:e3:82:
20:c3:d7:79:d8:43:b6:49:1b:d4:cb:0e:0e:7a:e7:
60:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:00:75:AC:B0:C3:62:45:47:13:2C:D9:32:FC:49:5E:70:02:F4:E5
X509v3 Authority Key Identifier:
keyid:7D:04:C2:5C:2F:8B:47:E5:DA:F5:2D:1C:4C:5A:50:99:9D:D0:A0:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQTCXC-LR-Xa9S0cTFpQmZ3QoKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/971cc4-54d5-4c28-a1c3-e63e94cba09f/1/SgB1rLDDYkVHEyzZMvxJXnAC9OU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/971cc4-54d5-4c28-a1c3-e63e94cba09f/1/fQTCXC-LR-Xa9S0cTFpQmZ3QoKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:ff00:700::/44
Signature Algorithm: sha256WithRSAEncryption
04:5e:ad:d5:0c:94:44:2e:dc:88:93:c1:08:53:19:f5:5d:97:
3b:c7:f2:4b:75:56:00:2d:31:1e:6b:b1:ae:dd:66:f5:23:16:
65:c5:ec:06:3a:83:a3:4b:31:9b:f0:e9:57:26:d1:66:61:16:
9a:05:5b:6e:c2:5d:37:4f:7c:6f:0d:af:62:45:fc:5b:91:ce:
7a:09:44:a7:29:42:43:ba:5b:4f:fe:bf:ef:1c:4e:a9:21:78:
e3:6b:32:72:cb:58:e3:65:07:8e:d1:50:85:06:c7:69:12:a2:
37:26:c9:9b:63:07:a7:e1:8c:89:5c:7e:de:43:26:75:26:63:
c4:20:09:9a:40:3c:77:88:e5:aa:d3:97:09:35:3b:88:d0:2f:
bf:46:57:69:8d:52:e0:d8:73:bc:50:a4:51:ea:f9:c9:cc:96:
1c:cd:60:c4:94:86:e0:99:24:8d:ad:46:7b:90:95:68:78:57:
2e:67:9b:48:33:3c:5f:b6:28:ad:c1:d5:46:20:47:1d:74:16:
df:2d:5f:76:cd:7d:bb:23:e4:7f:ab:b5:65:b1:e9:55:e3:8d:
fa:30:cc:93:4c:c9:78:cf:a1:c2:89:2a:55:ee:b9:7f:65:aa:
32:70:4f:e3:ae:69:52:5e:d4:7f:ed:7a:12:a9:b8:8a:3f:86:
4c:50:0a:1d
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIECM7+1TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
ZDA0YzI1YzJmOGI0N2U1ZGFmNTJkMWM0YzVhNTA5OTlkZDBhMGE5MB4XDTIyMDQy
MzAwMDUwOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNGEwMDc1YWNiMGMz
NjI0NTQ3MTMyY2Q5MzJmYzQ5NWU3MDAyZjRlNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOFzby/YPBVHWj1fMUjUXi2eyvIof1Y5Z0qfRiN+/bHNNjEU
GqbrBYT80sKmK1ZiMzh6PrdZb6merM+y3GBPBOehtAZftTpgrwayUH+aMZCvBEsk
COZIOiQ7J+ZvRZaqjKO1O4JT/I/4/C5clzscCvzN6owmG1EXXj5t072fZaVCIfY6
oIc80fTVVP/mhUaLoE/HdUIkqIbvIM6t5llOX64ZGIcdJlf0b6Xsv/itc+sMoBVn
rMWA/l5nzbzVwl9PgbKcA2f1emfPhqH/ZkrfUNIfgAD22j4+p26ScV2QHElYhB0x
1/kpfcoTm2hbF+OCIMPXedhDtkkb1MsODnrnYE0CAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBRKAHWssMNiRUcTLNky/ElecAL05TAfBgNVHSMEGDAWgBR9BMJcL4tH5dr1
LRxMWlCZndCgqTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2ZRVENYQy1MUi1YYTlTMGNURnBRbVozUW9Lay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzgvOTcxY2M0LTU0ZDUtNGMyOC1hMWMzLWU2M2U5NGNiYTA5Zi8x
L1NnQjFyTEREWWtWSEV5elpNdnhKWG5BQzlPVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzgv
OTcxY2M0LTU0ZDUtNGMyOC1hMWMzLWU2M2U5NGNiYTA5Zi8xL2ZRVENYQy1MUi1Y
YTlTMGNURnBRbVozUW9Lay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHBCoE/wAHADANBgkqhkiG9w0BAQsF
AAOCAQEABF6t1QyURC7ciJPBCFMZ9V2XO8fyS3VWAC0xHmuxrt1m9SMWZcXsBjqD
o0sxm/DpVybRZmEWmgVbbsJdN098bw2vYkX8W5HOeglEpylCQ7pbT/6/7xxOqSF4
42sycstY42UHjtFQhQbHaRKiNybJm2MHp+GMiVx+3kMmdSZjxCAJmkA8d4jlqtOX
CTU7iNAvv0ZXaY1S4NhzvFCkUer5ycyWHM1gxJSG4Jkkja1Ge5CVaHhXLmebSDM8
X7YorcHVRiBHHXQW3y1fds19uyPkf6u1ZbHpVeON+jDMk0zJeM+hwokqVe65f2Wq
MnBP465pUl7Uf+16Eqm4ij+GTFAKHQ==
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:05:03 2025 by rpki-client