Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/3d60a8-4b21-41c7-a612-ce14428b5f2e/1/nsye-k7anpRpb0OvIfLVZSXsETM.roa
File: nsye-k7anpRpb0OvIfLVZSXsETM.roa (raw, json)
Hash identifier: d06zp3hbGirbD+Laj7CUePtlC/ABHh7W0RlMRzs5MTo=
Subject key identifier: 9E:CC:9E:FA:4E:DA:9E:94:69:6F:43:AF:21:F2:D5:65:25:EC:11:33
Certificate issuer: /CN=3d57321766fbd7f87d66e292143ede30b0aaf4af
Certificate serial: 08F1E2E6
Authority key identifier: 3D:57:32:17:66:FB:D7:F8:7D:66:E2:92:14:3E:DE:30:B0:AA:F4:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PVcyF2b71_h9ZuKSFD7eMLCq9K8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/3d60a8-4b21-41c7-a612-ce14428b5f2e/1/nsye-k7anpRpb0OvIfLVZSXsETM.roa
Signing time: Sat 01 Jan 2022 15:59:08 +0000
ROA not before: Sat 01 Jan 2022 15:59:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42929
IP address blocks: 2.56.80.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 150069990 (0x8f1e2e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d57321766fbd7f87d66e292143ede30b0aaf4af
Validity
Not Before: Jan 1 15:59:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9ecc9efa4eda9e94696f43af21f2d56525ec1133
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:6e:6c:67:4f:38:91:c6:ee:d6:f9:03:b2:7f:
0f:4c:df:6a:7d:1f:a0:11:a4:07:5d:db:ff:03:3a:
00:d2:c2:16:cb:c5:f5:c9:d6:a2:93:c7:09:35:92:
59:f0:fd:0a:93:ec:19:26:9e:a3:59:fd:d9:91:83:
c7:60:46:5e:1f:02:ef:41:8f:3b:5f:d1:70:bd:4c:
f6:15:ce:0e:96:bf:81:1d:30:29:93:01:ab:96:ae:
2a:a3:73:93:cb:83:ed:12:a5:1e:40:f5:f6:a0:db:
36:b4:10:b3:b0:4e:7c:b4:fd:c3:08:29:ca:c0:88:
af:eb:65:fd:3b:bf:e2:d0:58:e3:33:31:0b:88:d4:
ed:50:5b:9c:10:e3:ec:88:d6:8f:a6:76:b7:6b:27:
c6:3d:18:89:e7:58:4e:9f:c2:00:20:47:e4:58:2f:
5e:3d:be:55:4b:1c:d9:75:81:a1:e4:a1:e6:21:db:
25:99:02:f6:ba:5a:c8:6e:cb:e0:bd:d4:74:00:a4:
48:69:d6:dd:96:2b:83:0e:10:a9:da:b8:6c:98:af:
4c:b8:83:1b:81:47:ee:45:4e:35:00:f9:ef:63:e7:
6d:e2:37:e4:e6:6a:9c:eb:8f:33:be:b3:67:97:f3:
6c:d7:93:42:48:ba:5f:66:1c:89:1d:85:86:15:22:
5a:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:CC:9E:FA:4E:DA:9E:94:69:6F:43:AF:21:F2:D5:65:25:EC:11:33
X509v3 Authority Key Identifier:
keyid:3D:57:32:17:66:FB:D7:F8:7D:66:E2:92:14:3E:DE:30:B0:AA:F4:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PVcyF2b71_h9ZuKSFD7eMLCq9K8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/3d60a8-4b21-41c7-a612-ce14428b5f2e/1/nsye-k7anpRpb0OvIfLVZSXsETM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/3d60a8-4b21-41c7-a612-ce14428b5f2e/1/PVcyF2b71_h9ZuKSFD7eMLCq9K8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.80.0/22
Signature Algorithm: sha256WithRSAEncryption
8a:fc:b4:00:94:5a:e5:3e:6f:8e:ca:df:4f:07:8a:d0:3b:c0:
0e:9a:07:31:14:0e:1b:4d:d5:b8:ad:cd:e4:17:03:d3:5a:ac:
cb:dc:44:48:6a:6a:df:d5:5e:f3:af:c8:f4:d5:c2:8b:af:20:
88:4a:49:2f:35:4e:d7:51:8d:fd:f5:28:27:5e:44:22:6f:d0:
56:76:1a:73:bd:66:6a:9a:4b:db:a4:55:52:4b:05:05:f1:f2:
bb:3d:e3:01:76:6f:88:93:5d:61:01:01:fa:ba:86:21:ce:15:
16:e5:ed:87:0c:11:24:39:91:e2:7c:a7:91:fd:c0:f4:a0:84:
a0:93:10:48:00:7c:a7:1b:2c:a8:63:35:38:28:a0:df:ac:cb:
77:41:eb:c0:8c:fb:d1:e5:7a:b0:3f:4c:30:b1:bb:7e:7d:ae:
57:12:85:3e:c9:3e:4c:b2:1a:6c:64:b3:1f:21:28:7e:63:c1:
05:92:cb:5d:2c:27:d2:d3:9f:e1:6d:2a:64:f8:15:12:05:a0:
5e:ab:22:35:36:b5:3a:36:19:fe:5d:01:c5:7c:f9:a5:79:0c:
3c:48:ff:2b:00:cf:0c:fa:25:21:44:62:4d:74:c6:a0:84:c0:
e1:dc:c1:28:b8:36:55:b2:9e:5f:95:98:71:5e:27:1e:92:65:
e9:98:52:2c
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECPHi5jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
ZDU3MzIxNzY2ZmJkN2Y4N2Q2NmUyOTIxNDNlZGUzMGIwYWFmNGFmMB4XDTIyMDEw
MTE1NTkwOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOWVjYzllZmE0ZWRh
OWU5NDY5NmY0M2FmMjFmMmQ1NjUyNWVjMTEzMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANJubGdPOJHG7tb5A7J/D0zfan0foBGkB13b/wM6ANLCFsvF
9cnWopPHCTWSWfD9CpPsGSaeo1n92ZGDx2BGXh8C70GPO1/RcL1M9hXODpa/gR0w
KZMBq5auKqNzk8uD7RKlHkD19qDbNrQQs7BOfLT9wwgpysCIr+tl/Tu/4tBY4zMx
C4jU7VBbnBDj7IjWj6Z2t2snxj0YiedYTp/CACBH5FgvXj2+VUsc2XWBoeSh5iHb
JZkC9rpayG7L4L3UdACkSGnW3ZYrgw4Qqdq4bJivTLiDG4FH7kVONQD572PnbeI3
5OZqnOuPM76zZ5fzbNeTQki6X2YciR2FhhUiWscCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSezJ76TtqelGlvQ68h8tVlJewRMzAfBgNVHSMEGDAWgBQ9VzIXZvvX+H1m
4pIUPt4wsKr0rzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1BWY3lGMmI3MV9oOVp1S1NGRDdlTUxDcTlLOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDgvM2Q2MGE4LTRiMjEtNDFjNy1hNjEyLWNlMTQ0MjhiNWYyZS8x
L25zeWUtazdhbnBScGIwT3ZJZkxWWlNYc0VUTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDgv
M2Q2MGE4LTRiMjEtNDFjNy1hNjEyLWNlMTQ0MjhiNWYyZS8xL1BWY3lGMmI3MV9o
OVp1S1NGRDdlTUxDcTlLOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAgI4UDANBgkqhkiG9w0BAQsFAAOC
AQEAivy0AJRa5T5vjsrfTweK0DvADpoHMRQOG03VuK3N5BcD01qsy9xESGpq39Ve
86/I9NXCi68giEpJLzVO11GN/fUoJ15EIm/QVnYac71mappL26RVUksFBfHyuz3j
AXZviJNdYQEB+rqGIc4VFuXthwwRJDmR4nynkf3A9KCEoJMQSAB8pxssqGM1OCig
36zLd0HrwIz70eV6sD9MMLG7fn2uVxKFPsk+TLIabGSzHyEofmPBBZLLXSwn0tOf
4W0qZPgVEgWgXqsiNTa1OjYZ/l0BxXz5pXkMPEj/KwDPDPolIURiTXTGoITA4dzB
KLg2VbKeX5WYcV4nHpJl6ZhSLA==
-----END CERTIFICATE-----
Generated at Sun Apr 20 14:24:03 2025 by rpki-client