Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/51f895-7b98-4604-b4d2-5ce11d6734c0/1/LTvien9DqQ3hq-14M2hf6-ZFytg.roa
File: LTvien9DqQ3hq-14M2hf6-ZFytg.roa (raw, json)
Hash identifier: 126hFTWBjPkM6Vd/VgSRvrZkBB8oBiIqjV+6269N7Yo=
Subject key identifier: 2D:3B:E2:7A:7F:43:A9:0D:E1:AB:ED:78:33:68:5F:EB:E6:45:CA:D8
Certificate issuer: /CN=b7ecf9d374cc0f739671ee55055bd58c5fb767a8
Certificate serial: 0784A33D
Authority key identifier: B7:EC:F9:D3:74:CC:0F:73:96:71:EE:55:05:5B:D5:8C:5F:B7:67:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t-z503TMD3OWce5VBVvVjF-3Z6g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/51f895-7b98-4604-b4d2-5ce11d6734c0/1/LTvien9DqQ3hq-14M2hf6-ZFytg.roa
Signing time: Sat 01 Jan 2022 14:01:08 +0000
ROA not before: Sat 01 Jan 2022 14:01:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 2a0f:304::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126133053 (0x784a33d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b7ecf9d374cc0f739671ee55055bd58c5fb767a8
Validity
Not Before: Jan 1 14:01:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2d3be27a7f43a90de1abed7833685febe645cad8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:0b:a0:a8:3a:87:83:a8:b7:6b:2a:32:82:24:
94:d9:86:21:19:f3:77:bb:3d:f0:5e:0b:19:9d:e2:
c1:cb:c2:bc:39:77:02:fa:2b:e5:d9:6d:17:8b:3f:
09:3f:4e:9f:1a:51:d8:28:d0:cf:3e:58:cd:c2:53:
4d:b2:e4:b5:30:47:ce:f9:40:4d:ea:42:82:d5:d0:
7d:7b:ed:37:ef:e9:6d:13:bd:c8:95:e7:e3:a1:40:
83:4f:27:b1:32:bb:be:f5:cd:8e:23:df:93:d3:7b:
f4:1b:64:d6:4c:dd:e7:18:24:6a:1e:36:31:0f:e3:
17:be:75:e6:d5:71:e5:9f:c4:6d:76:e4:0e:cd:4c:
8c:ce:55:0d:11:4e:11:e2:b5:f9:76:3c:04:32:f7:
ae:7c:32:50:e6:95:c4:92:2e:ff:0e:6b:17:00:db:
94:9e:07:f0:0f:34:34:50:e8:57:d0:a2:67:e3:96:
05:a9:dd:a1:88:ee:69:4b:8c:dd:e5:1d:6b:9e:03:
4b:4d:8d:4a:cd:b9:28:ed:6c:5a:70:73:1a:dc:e6:
c9:f9:a3:35:76:54:de:ac:84:4c:3c:66:a3:8f:59:
f1:01:1f:01:88:99:fa:90:2f:4d:ab:31:74:98:b5:
64:cc:5d:a9:e9:ce:29:9e:d5:aa:c2:6f:54:aa:85:
ec:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:3B:E2:7A:7F:43:A9:0D:E1:AB:ED:78:33:68:5F:EB:E6:45:CA:D8
X509v3 Authority Key Identifier:
keyid:B7:EC:F9:D3:74:CC:0F:73:96:71:EE:55:05:5B:D5:8C:5F:B7:67:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t-z503TMD3OWce5VBVvVjF-3Z6g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/51f895-7b98-4604-b4d2-5ce11d6734c0/1/LTvien9DqQ3hq-14M2hf6-ZFytg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/51f895-7b98-4604-b4d2-5ce11d6734c0/1/t-z503TMD3OWce5VBVvVjF-3Z6g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:304::/32
Signature Algorithm: sha256WithRSAEncryption
a3:22:10:3f:a1:05:e9:7b:43:bc:45:d0:77:3d:be:5a:77:a7:
00:06:1a:1c:10:39:15:b3:a3:d7:cb:21:ff:84:1f:e1:af:a3:
5e:62:28:c5:e3:ee:0a:b4:a0:c9:d7:2e:22:0d:1b:24:3b:1e:
b7:73:19:1d:09:7b:cd:ee:8f:63:c0:1b:70:6f:00:87:10:50:
f5:a5:b8:ca:b0:9f:03:5e:0f:13:53:0d:df:ca:7e:e0:7c:3f:
f6:67:fe:02:b6:7d:06:dc:05:83:6c:cc:ce:c6:3c:14:f1:01:
b8:1a:69:f3:93:55:66:eb:c0:1c:a0:1f:bd:4a:51:ef:41:10:
c3:17:15:c9:d7:08:84:1a:97:80:84:07:b2:31:34:a9:34:77:
67:a7:a3:1c:d9:ac:81:a8:fa:41:97:1f:2f:ca:ee:91:6b:19:
8b:f4:5a:2d:a9:fb:2a:1a:85:4e:b3:11:49:7b:04:47:d1:62:
2e:c7:77:b2:f7:5f:15:03:29:37:3b:99:2a:8e:de:e3:4c:bc:
7f:0f:77:5f:1d:a6:ca:e4:a7:3e:77:71:f4:12:9f:5e:67:7e:
4b:77:7a:12:53:7c:c9:3f:ae:b9:f7:97:12:45:f2:29:88:3d:
ab:33:ce:94:10:a5:e7:67:a6:20:88:38:50:16:b8:73:a6:18:
fe:c5:d8:02
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgIEB4SjPTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
N2VjZjlkMzc0Y2MwZjczOTY3MWVlNTUwNTViZDU4YzVmYjc2N2E4MB4XDTIyMDEw
MTE0MDEwOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMmQzYmUyN2E3ZjQz
YTkwZGUxYWJlZDc4MzM2ODVmZWJlNjQ1Y2FkODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAPsLoKg6h4Oot2sqMoIklNmGIRnzd7s98F4LGZ3iwcvCvDl3
Avor5dltF4s/CT9OnxpR2CjQzz5YzcJTTbLktTBHzvlATepCgtXQfXvtN+/pbRO9
yJXn46FAg08nsTK7vvXNjiPfk9N79Btk1kzd5xgkah42MQ/jF7515tVx5Z/EbXbk
Ds1MjM5VDRFOEeK1+XY8BDL3rnwyUOaVxJIu/w5rFwDblJ4H8A80NFDoV9CiZ+OW
BandoYjuaUuM3eUda54DS02NSs25KO1sWnBzGtzmyfmjNXZU3qyETDxmo49Z8QEf
AYiZ+pAvTasxdJi1ZMxdqenOKZ7VqsJvVKqF7BUCAwEAAaOCAgowggIGMB0GA1Ud
DgQWBBQtO+J6f0OpDeGr7XgzaF/r5kXK2DAfBgNVHSMEGDAWgBS37PnTdMwPc5Zx
7lUFW9WMX7dnqDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3QtejUwM1RNRDNPV2NlNVZCVnZWakYtM1o2Zy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDYvNTFmODk1LTdiOTgtNDYwNC1iNGQyLTVjZTExZDY3MzRjMC8x
L0xUdmllbjlEcVEzaHEtMTRNMmhmNi1aRnl0Zy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDYv
NTFmODk1LTdiOTgtNDYwNC1iNGQyLTVjZTExZDY3MzRjMC8xL3QtejUwM1RNRDNP
V2NlNVZCVnZWakYtM1o2Zy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAg
BggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACoPAwQwDQYJKoZIhvcNAQELBQAD
ggEBAKMiED+hBel7Q7xF0Hc9vlp3pwAGGhwQORWzo9fLIf+EH+Gvo15iKMXj7gq0
oMnXLiINGyQ7HrdzGR0Je83uj2PAG3BvAIcQUPWluMqwnwNeDxNTDd/KfuB8P/Zn
/gK2fQbcBYNszM7GPBTxAbgaafOTVWbrwBygH71KUe9BEMMXFcnXCIQal4CEB7Ix
NKk0d2enoxzZrIGo+kGXHy/K7pFrGYv0Wi2p+yoahU6zEUl7BEfRYi7Hd7L3XxUD
KTc7mSqO3uNMvH8Pd18dpsrkpz53cfQSn15nfkt3ehJTfMk/rrn3lxJF8imIPasz
zpQQpednpiCIOFAWuHOmGP7F2AI=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:22 2023 by rpki-client on console-fra.rpki-client.org