Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/KCvWO5yv6UMUvpNwJE4QpHca35s.roa
File: KCvWO5yv6UMUvpNwJE4QpHca35s.roa (raw, json)
Hash identifier: MhJ2tCZxQY/ntsR5O1KfqWUOWPHRirhFxwJg4W3es9Q=
Subject key identifier: 28:2B:D6:3B:9C:AF:E9:43:14:BE:93:70:24:4E:10:A4:77:1A:DF:9B
Certificate issuer: /CN=54914541fd1b95e7c0afc875fbef78794f55386b
Certificate serial: 0184C26AAC5EF6902C56C94F303318E1600A
Authority key identifier: 54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/KCvWO5yv6UMUvpNwJE4QpHca35s.roa
Signing time: Tue 29 Nov 2022 08:04:41 +0000
ROA not before: Tue 29 Nov 2022 08:04:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203843
IP address blocks: 2a0a:6040:a100::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:c2:6a:ac:5e:f6:90:2c:56:c9:4f:30:33:18:e1:60:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54914541fd1b95e7c0afc875fbef78794f55386b
Validity
Not Before: Nov 29 08:04:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=282bd63b9cafe94314be9370244e10a4771adf9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:8f:07:1f:e2:28:bc:16:07:e0:99:da:b5:be:
42:04:af:4c:e7:7b:b6:c3:19:02:a5:83:47:30:f2:
d3:99:ac:a9:e5:8d:db:c9:e7:be:71:ef:b8:62:d0:
fb:a6:61:89:36:06:16:cd:19:2e:12:15:e5:75:e0:
5d:ff:cc:e9:82:18:f1:9c:bf:8e:36:c8:64:1c:94:
38:d5:30:05:e7:30:ce:c5:89:10:f0:79:73:c4:d6:
9f:c0:0b:5c:10:71:62:e6:1c:7a:22:26:58:36:c0:
58:ac:35:54:4c:d0:cb:d3:0c:24:ce:11:30:de:97:
f8:c7:12:fd:d5:3a:d2:20:df:f8:97:d3:fb:c6:ef:
60:c8:df:fc:d8:86:56:34:c1:6e:f4:fb:79:7a:93:
ad:8c:0d:1b:58:19:43:19:23:fe:1f:3a:fb:84:9d:
43:c3:00:cd:aa:57:f8:2e:d2:2c:ca:f9:d7:32:71:
9b:c4:76:bc:77:f6:28:3e:6b:56:cb:c0:07:e3:69:
37:26:c3:b5:7b:89:8e:5c:3c:c2:09:ef:81:3b:06:
41:ed:79:74:08:c3:f7:7a:46:f4:74:00:83:cf:eb:
58:ea:c9:2a:dc:ee:87:86:bc:db:b8:11:62:31:25:
c3:0e:81:89:58:f9:de:89:7b:ec:99:be:21:ba:47:
2e:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:2B:D6:3B:9C:AF:E9:43:14:BE:93:70:24:4E:10:A4:77:1A:DF:9B
X509v3 Authority Key Identifier:
keyid:54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/KCvWO5yv6UMUvpNwJE4QpHca35s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/VJFFQf0blefAr8h1--94eU9VOGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:6040:a100::/40
Signature Algorithm: sha256WithRSAEncryption
64:80:12:77:c0:90:8d:6d:f3:89:fb:47:52:b9:9f:54:de:64:
a8:2f:f0:db:4f:69:13:57:8c:53:86:89:d4:82:c2:26:70:c7:
34:f0:44:5c:1d:f4:70:6c:c9:76:64:75:23:ea:cd:6b:01:19:
1d:02:f5:5e:78:71:d6:e0:ee:ec:c2:13:43:3c:27:41:10:29:
fe:68:7d:e3:72:22:d7:d0:be:37:a9:a7:f9:16:d6:6e:6a:ea:
ef:dd:3c:2f:cb:2c:81:01:21:67:0e:e8:56:7a:fc:a5:e0:e6:
41:ad:29:e1:b3:82:c6:00:e3:9c:4d:d0:af:b1:a8:de:56:7f:
7a:a9:24:b9:99:a6:88:6f:ac:56:f2:99:b8:40:6d:01:47:85:
dd:66:ca:1d:be:8b:32:8f:d9:cb:c4:7c:c3:68:29:22:bf:86:
7a:81:19:76:c6:81:1e:65:e3:13:54:7b:ff:cd:48:1f:6d:95:
3f:16:1a:56:fb:bc:e1:e1:71:05:f0:22:72:aa:53:3c:b5:5c:
17:14:25:75:1c:27:ca:b4:5d:a9:b9:75:1c:35:68:83:cb:fb:
9d:30:04:64:c5:ba:5e:0d:1a:82:22:0d:8e:3a:47:90:a7:55:
31:01:e7:38:03:80:e2:7b:1b:84:cd:a0:1a:3d:33:43:c4:24:
df:7f:2c:65
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYTCaqxe9pAsVslPMDMY4WAKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU0OTE0NTQxZmQxYjk1ZTdjMGFmYzg3NWZiZWY3ODc5NGY1
NTM4NmIwHhcNMjIxMTI5MDgwNDQxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyODJiZDYzYjljYWZlOTQzMTRiZTkzNzAyNDRlMTBhNDc3MWFkZjliMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp48HH+IovBYH4Jnatb5CBK9M53u2
wxkCpYNHMPLTmayp5Y3byee+ce+4YtD7pmGJNgYWzRkuEhXldeBd/8zpghjxnL+O
NshkHJQ41TAF5zDOxYkQ8HlzxNafwAtcEHFi5hx6IiZYNsBYrDVUTNDL0wwkzhEw
3pf4xxL91TrSIN/4l9P7xu9gyN/82IZWNMFu9Pt5epOtjA0bWBlDGSP+Hzr7hJ1D
wwDNqlf4LtIsyvnXMnGbxHa8d/YoPmtWy8AH42k3JsO1e4mOXDzCCe+BOwZB7Xl0
CMP3ekb0dACDz+tY6skq3O6HhrzbuBFiMSXDDoGJWPneiXvsmb4hukcuqwIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFCgr1jucr+lDFL6TcCROEKR3Gt+bMB8GA1UdIwQY
MBaAFFSRRUH9G5XnwK/IdfvveHlPVThrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVkpGRlFmMGJsZWZBcjhoMS0tOTRlVTlWT0dzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS80NjQ2MzEtY2E4ZS00YzZhLWIwOTEt
ZDlmNmQ5NjQyNTM3LzEvS0N2V081eXY2VU1VdnBOd0pFNFFwSGNhMzVzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80YS80NjQ2MzEtY2E4ZS00YzZhLWIwOTEtZDlmNmQ5NjQyNTM3
LzEvVkpGRlFmMGJsZWZBcjhoMS0tOTRlVTlWT0dzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQKEw
DQYJKoZIhvcNAQELBQADggEBAGSAEnfAkI1t84n7R1K5n1TeZKgv8NtPaRNXjFOG
idSCwiZwxzTwRFwd9HBsyXZkdSPqzWsBGR0C9V54cdbg7uzCE0M8J0EQKf5ofeNy
ItfQvjepp/kW1m5q6u/dPC/LLIEBIWcO6FZ6/KXg5kGtKeGzgsYA45xN0K+xqN5W
f3qpJLmZpohvrFbymbhAbQFHhd1myh2+izKP2cvEfMNoKSK/hnqBGXbGgR5l4xNU
e//NSB9tlT8WGlb7vOHhcQXwInKqUzy1XBcUJXUcJ8q0Xam5dRw1aIPL+50wBGTF
ul4NGoIiDY46R5CnVTEB5zgDgOJ7G4TNoBo9M0PEJN9/LGU=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:36 2023 by rpki-client on console-fra.rpki-client.org