Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/67pSpl61KmqQN3V5zHXaA-lvbOg.roa
File: 67pSpl61KmqQN3V5zHXaA-lvbOg.roa (raw, json)
Hash identifier: LQ2sFFQpZKvDCHnUptVcf6Kf3+GVgRgkXWeC2zfrPMM=
Subject key identifier: EB:BA:52:A6:5E:B5:2A:6A:90:37:75:79:CC:75:DA:03:E9:6F:6C:E8
Certificate issuer: /CN=54914541fd1b95e7c0afc875fbef78794f55386b
Certificate serial: 18786755
Authority key identifier: 54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/67pSpl61KmqQN3V5zHXaA-lvbOg.roa
Signing time: Thu 21 Apr 2022 03:09:12 +0000
ROA not before: Thu 21 Apr 2022 03:09:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210932
IP address blocks: 2a06:a005:570::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 410543957 (0x18786755)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54914541fd1b95e7c0afc875fbef78794f55386b
Validity
Not Before: Apr 21 03:09:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ebba52a65eb52a6a90377579cc75da03e96f6ce8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:d8:42:19:be:f5:72:8f:59:93:d5:a7:e7:08:
4e:cd:93:5c:20:2b:b9:9e:88:26:5a:bf:3d:ba:bf:
96:4a:1a:bf:57:bb:90:02:78:e6:d4:e9:0d:12:54:
98:e9:66:42:29:1e:fe:28:e1:ca:67:ca:0a:9e:88:
8e:c4:2d:06:3c:89:08:ad:fe:ca:7f:8b:9b:79:45:
e7:ce:59:b2:96:f6:34:79:44:0d:42:e0:d4:56:ee:
41:d9:a8:f7:06:70:67:a0:f1:6f:f6:5f:c1:4b:27:
51:5d:89:57:74:01:50:8f:03:4a:88:2e:ad:82:26:
3c:60:ef:2f:74:10:48:75:2f:2b:61:6a:5c:19:37:
ae:f5:eb:e4:a6:3a:f5:77:4f:29:b9:a2:6f:f9:b1:
cc:92:6c:df:2f:73:58:63:bd:87:6f:a1:e4:5b:51:
df:be:c8:75:10:b2:4e:09:d5:60:63:79:66:54:de:
91:26:11:66:6d:19:10:04:47:55:13:07:07:8f:e9:
90:2f:29:3c:bc:a7:64:17:80:19:a5:6a:80:4b:b6:
8f:50:89:de:a4:c8:7d:93:45:00:e4:bd:2d:13:a7:
c0:aa:e8:b1:59:a5:66:c5:4c:df:c0:b6:51:1e:ac:
86:b9:71:6d:2e:bf:0a:1a:15:3c:71:95:d6:8a:b5:
9f:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:BA:52:A6:5E:B5:2A:6A:90:37:75:79:CC:75:DA:03:E9:6F:6C:E8
X509v3 Authority Key Identifier:
keyid:54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/67pSpl61KmqQN3V5zHXaA-lvbOg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/VJFFQf0blefAr8h1--94eU9VOGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:570::/44
Signature Algorithm: sha256WithRSAEncryption
20:8f:77:67:8c:b2:02:88:b4:7d:5e:29:b8:2c:0b:68:63:65:
df:ab:15:17:f5:3e:bb:26:fc:3d:7f:c0:18:2f:b7:60:2c:e6:
05:a5:4a:ff:c8:74:f6:f6:3e:fb:5f:22:c1:7b:3b:22:d7:05:
f1:af:41:bf:84:bc:d9:26:db:38:57:57:50:dc:81:24:81:c2:
83:e8:30:81:7d:18:78:68:c8:4e:ad:97:13:37:36:44:c2:ed:
7c:01:84:bd:e7:89:40:a1:b1:be:ff:90:ea:94:71:3f:0f:71:
30:82:61:93:17:f4:92:fc:89:79:b1:65:a6:9b:89:e6:fd:b2:
39:4d:1e:30:7d:18:08:c4:10:10:0d:d1:10:72:76:92:4e:e5:
af:37:8e:de:ab:0f:13:26:2f:d8:ba:39:a8:c4:d1:f0:81:40:
79:ca:96:e2:e9:27:75:47:f2:4b:70:aa:71:2a:19:60:02:3c:
bd:99:26:b3:0b:d9:b5:5f:8f:c3:78:1d:1c:88:90:14:24:31:
fd:0f:61:94:91:42:18:8f:a7:42:92:24:e1:bb:49:b1:d8:5d:
77:ea:3e:47:24:dd:2e:9e:9d:26:80:c0:54:db:5e:bb:e9:1b:
01:1d:b7:6d:4a:d0:2c:da:0e:64:e6:48:6b:65:03:97:5f:0d:
76:eb:b9:9b
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEGHhnVTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
NDkxNDU0MWZkMWI5NWU3YzBhZmM4NzVmYmVmNzg3OTRmNTUzODZiMB4XDTIyMDQy
MTAzMDkxMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZWJiYTUyYTY1ZWI1
MmE2YTkwMzc3NTc5Y2M3NWRhMDNlOTZmNmNlODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALTYQhm+9XKPWZPVp+cITs2TXCAruZ6IJlq/Pbq/lkoav1e7
kAJ45tTpDRJUmOlmQike/ijhymfKCp6IjsQtBjyJCK3+yn+Lm3lF585Zspb2NHlE
DULg1FbuQdmo9wZwZ6Dxb/ZfwUsnUV2JV3QBUI8DSogurYImPGDvL3QQSHUvK2Fq
XBk3rvXr5KY69XdPKbmib/mxzJJs3y9zWGO9h2+h5FtR377IdRCyTgnVYGN5ZlTe
kSYRZm0ZEARHVRMHB4/pkC8pPLynZBeAGaVqgEu2j1CJ3qTIfZNFAOS9LROnwKro
sVmlZsVM38C2UR6shrlxbS6/ChoVPHGV1oq1n5UCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBTrulKmXrUqapA3dXnMddoD6W9s6DAfBgNVHSMEGDAWgBRUkUVB/RuV58Cv
yHX773h5T1U4azAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1ZKRkZRZjBibGVmQXI4aDEtLTk0ZVU5Vk9Hcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGEvNDY0NjMxLWNhOGUtNGM2YS1iMDkxLWQ5ZjZkOTY0MjUzNy8x
LzY3cFNwbDYxS21xUU4zVjV6SFhhQS1sdmJPZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGEv
NDY0NjMxLWNhOGUtNGM2YS1iMDkxLWQ5ZjZkOTY0MjUzNy8xL1ZKRkZRZjBibGVm
QXI4aDEtLTk0ZVU5Vk9Hcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHBCoGoAUFcDANBgkqhkiG9w0BAQsF
AAOCAQEAII93Z4yyAoi0fV4puCwLaGNl36sVF/U+uyb8PX/AGC+3YCzmBaVK/8h0
9vY++18iwXs7ItcF8a9Bv4S82SbbOFdXUNyBJIHCg+gwgX0YeGjITq2XEzc2RMLt
fAGEveeJQKGxvv+Q6pRxPw9xMIJhkxf0kvyJebFlppuJ5v2yOU0eMH0YCMQQEA3R
EHJ2kk7lrzeO3qsPEyYv2Lo5qMTR8IFAecqW4ukndUfyS3CqcSoZYAI8vZkmswvZ
tV+Pw3gdHIiQFCQx/Q9hlJFCGI+nQpIk4btJsdhdd+o+RyTdLp6dJoDAVNteu+kb
AR23bUrQLNoOZOZIa2UDl18Nduu5mw==
-----END CERTIFICATE-----
Generated at Fri Apr 18 09:59:31 2025 by rpki-client