Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/d2fda7-3acd-40c2-ba95-3651af83c924/1/V81flGpJ4VnR0Q43UZHraixg7Eo.roa
File: V81flGpJ4VnR0Q43UZHraixg7Eo.roa (raw, json)
Hash identifier: 56V3OdqiE44Hr+wPlovn4rZvow3jcxSQ/pY27t/yhRg=
Subject key identifier: 57:CD:5F:94:6A:49:E1:59:D1:D1:0E:37:51:91:EB:6A:2C:60:EC:4A
Certificate issuer: /CN=5a14ec270d7b10f30ae361c2291820dee8c8e23e
Certificate serial: 018B65F4AF2B303814F3CE3677DF9988B302
Authority key identifier: 5A:14:EC:27:0D:7B:10:F3:0A:E3:61:C2:29:18:20:DE:E8:C8:E2:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WhTsJw17EPMK42HCKRgg3ujI4j4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/d2fda7-3acd-40c2-ba95-3651af83c924/1/V81flGpJ4VnR0Q43UZHraixg7Eo.roa
Signing time: Wed 25 Oct 2023 08:30:16 +0000
ROA not before: Wed 25 Oct 2023 08:30:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47539
IP address blocks: 2a13:d440::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:65:f4:af:2b:30:38:14:f3:ce:36:77:df:99:88:b3:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a14ec270d7b10f30ae361c2291820dee8c8e23e
Validity
Not Before: Oct 25 08:30:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=57cd5f946a49e159d1d10e375191eb6a2c60ec4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:82:aa:02:32:4d:b2:32:ea:83:3b:f4:00:83:
df:23:ea:30:1a:82:71:ad:75:9d:23:3c:3f:35:b9:
25:e6:ea:86:89:88:18:6e:45:e1:bc:3c:10:28:a1:
20:7b:5c:7a:66:5c:1c:e9:5f:fe:d4:ae:14:d0:4a:
54:6e:97:4b:bb:a8:39:7d:92:33:57:70:d8:4d:e6:
26:76:52:22:4f:4f:55:23:1a:8c:5a:41:42:72:f6:
0b:b8:9a:cf:1c:67:5c:9f:1b:ae:4f:f7:7c:f8:7e:
88:ca:7c:21:85:80:bc:33:b5:60:9c:b2:51:90:03:
3f:5e:24:b2:c8:d2:aa:33:0d:b0:f1:00:b8:a1:5a:
64:f3:0a:39:c0:d5:ee:2b:a2:d3:10:a4:3c:3f:c1:
af:5f:f9:93:29:f5:a2:72:43:46:2a:3a:f9:de:da:
cb:b0:20:a2:23:3b:52:45:b9:02:53:ce:90:18:ec:
8f:99:4f:f3:78:5d:1a:95:04:e1:d0:9d:d9:5b:4c:
ed:cd:45:26:aa:1b:8b:67:2c:00:3d:05:c2:99:2d:
a4:0e:2d:04:88:bf:22:10:a7:51:f7:fe:cd:6d:67:
ab:7b:d8:ed:75:e9:94:dc:0a:1d:4c:c0:da:d7:a6:
a8:39:5d:e3:e1:30:47:43:76:d9:65:d7:63:3a:04:
02:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:CD:5F:94:6A:49:E1:59:D1:D1:0E:37:51:91:EB:6A:2C:60:EC:4A
X509v3 Authority Key Identifier:
keyid:5A:14:EC:27:0D:7B:10:F3:0A:E3:61:C2:29:18:20:DE:E8:C8:E2:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WhTsJw17EPMK42HCKRgg3ujI4j4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/d2fda7-3acd-40c2-ba95-3651af83c924/1/V81flGpJ4VnR0Q43UZHraixg7Eo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/d2fda7-3acd-40c2-ba95-3651af83c924/1/WhTsJw17EPMK42HCKRgg3ujI4j4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:d440::/29
Signature Algorithm: sha256WithRSAEncryption
84:e3:2e:29:e1:27:b7:b7:42:9f:52:53:8f:af:44:91:4a:b7:
f8:61:71:4b:42:ca:e2:6c:d1:2f:be:e0:08:85:17:ca:39:57:
c4:1a:83:aa:14:25:3c:b3:94:09:85:11:34:65:b3:6e:6b:08:
71:b4:6f:09:cf:71:11:13:3c:02:76:0b:59:f9:68:97:fa:73:
a9:c7:0e:dc:38:bf:5a:a4:62:ca:e0:0a:d9:24:9c:6c:e4:5f:
e6:fe:85:f7:c4:18:2f:f8:08:ff:fd:30:c5:c7:57:13:1c:b8:
12:09:c8:b1:86:e8:33:58:17:bd:c0:43:8e:78:21:62:eb:ca:
34:d6:01:7d:8e:e9:06:1e:f5:63:ef:37:80:a0:35:83:2a:2f:
ad:d3:c8:da:81:89:fb:4b:98:bd:82:c1:ec:bc:6d:2a:bc:f6:
50:c3:7d:44:d8:a2:2c:17:43:d6:5d:eb:50:b7:7a:dc:4f:74:
95:c7:07:2d:92:45:e8:33:7f:84:51:c1:45:91:c0:a7:08:25:
5d:3e:d6:6d:50:47:36:a3:7d:b5:fe:5f:3c:61:34:70:fe:fd:
c0:86:63:3c:c5:d0:2e:08:01:5a:88:6a:fc:30:e5:fd:85:d8:
ed:db:a7:4c:e0:90:75:36:13:33:3c:5c:27:75:73:e8:c2:ca:
1c:96:03:55
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYtl9K8rMDgU8842d9+ZiLMCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVhMTRlYzI3MGQ3YjEwZjMwYWUzNjFjMjI5MTgyMGRlZThj
OGUyM2UwHhcNMjMxMDI1MDgzMDE2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1N2NkNWY5NDZhNDllMTU5ZDFkMTBlMzc1MTkxZWI2YTJjNjBlYzRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkYKqAjJNsjLqgzv0AIPfI+owGoJx
rXWdIzw/Nbkl5uqGiYgYbkXhvDwQKKEge1x6Zlwc6V/+1K4U0EpUbpdLu6g5fZIz
V3DYTeYmdlIiT09VIxqMWkFCcvYLuJrPHGdcnxuuT/d8+H6IynwhhYC8M7VgnLJR
kAM/XiSyyNKqMw2w8QC4oVpk8wo5wNXuK6LTEKQ8P8GvX/mTKfWickNGKjr53trL
sCCiIztSRbkCU86QGOyPmU/zeF0alQTh0J3ZW0ztzUUmqhuLZywAPQXCmS2kDi0E
iL8iEKdR9/7NbWere9jtdemU3AodTMDa16aoOV3j4TBHQ3bZZddjOgQCHQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFFfNX5RqSeFZ0dEON1GR62osYOxKMB8GA1UdIwQY
MBaAFFoU7CcNexDzCuNhwikYIN7oyOI+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV2hUc0p3MTdFUE1LNDJIQ0tSZ2czdWpJNGo0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS9kMmZkYTctM2FjZC00MGMyLWJhOTUt
MzY1MWFmODNjOTI0LzEvVjgxZmxHcEo0Vm5SMFE0M1VaSHJhaXhnN0VvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MS9kMmZkYTctM2FjZC00MGMyLWJhOTUtMzY1MWFmODNjOTI0
LzEvV2hUc0p3MTdFUE1LNDJIQ0tSZ2czdWpJNGo0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhPUQDAN
BgkqhkiG9w0BAQsFAAOCAQEAhOMuKeEnt7dCn1JTj69EkUq3+GFxS0LK4mzRL77g
CIUXyjlXxBqDqhQlPLOUCYURNGWzbmsIcbRvCc9xERM8AnYLWflol/pzqccO3Di/
WqRiyuAK2SScbORf5v6F98QYL/gI//0wxcdXExy4EgnIsYboM1gXvcBDjnghYuvK
NNYBfY7pBh71Y+83gKA1gyovrdPI2oGJ+0uYvYLB7LxtKrz2UMN9RNiiLBdD1l3r
ULd63E90lccHLZJF6DN/hFHBRZHApwglXT7WbVBHNqN9tf5fPGE0cP79wIZjPMXQ
LggBWohq/DDl/YXY7dunTOCQdTYTMzxcJ3Vz6MLKHJYDVQ==
-----END CERTIFICATE-----
Generated at Sun Apr 20 15:34:35 2025 by rpki-client