Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/KXBRSscROQdRhzdBp9_nEY70K74.roa
File: KXBRSscROQdRhzdBp9_nEY70K74.roa (raw, json)
Hash identifier: 4S9knE+uTCYaYzeVED/LwpNzxME/LJjLpSaWLk4HVWU=
Subject key identifier: 29:70:51:4A:C7:11:39:07:51:87:37:41:A7:DF:E7:11:8E:F4:2B:BE
Certificate issuer: /CN=54914541fd1b95e7c0afc875fbef78794f55386b
Certificate serial: 0183D8176D2A3BE6221A5D8827BA7F84529C
Authority key identifier: 54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/KXBRSscROQdRhzdBp9_nEY70K74.roa
Signing time: Fri 14 Oct 2022 20:02:37 +0000
ROA not before: Fri 14 Oct 2022 20:02:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202262
IP address blocks: 2a07:54c1:3000::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:d8:17:6d:2a:3b:e6:22:1a:5d:88:27:ba:7f:84:52:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54914541fd1b95e7c0afc875fbef78794f55386b
Validity
Not Before: Oct 14 20:02:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2970514ac711390751873741a7dfe7118ef42bbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:e3:af:ba:16:7f:be:74:25:19:6f:3e:0c:df:
72:08:c8:8a:06:f8:0d:22:37:ef:66:a6:f6:fd:02:
db:b3:9b:3a:05:21:3b:53:63:07:84:ee:4c:f8:57:
ba:7a:6f:1d:2f:d6:e9:26:26:a3:c8:ed:9e:4e:1e:
cc:05:b4:f2:22:87:63:65:15:0c:51:bc:8a:19:97:
9b:5a:62:90:c5:ce:9e:d3:62:17:3a:8f:a5:92:1e:
d2:f6:69:eb:3f:d2:4e:ea:b4:ae:18:88:7b:45:75:
bc:6a:d7:ee:1d:f6:49:55:8c:ff:de:0a:1e:9f:6f:
86:38:e7:3e:f4:b2:7c:21:ab:50:01:b3:75:2b:14:
83:b2:a5:97:bc:18:36:2d:3a:d2:c2:ba:38:21:3f:
cd:f7:f2:d6:6a:24:65:81:2c:ed:0c:65:99:fd:a8:
5e:2c:92:fc:80:f7:ed:21:43:ed:fa:a1:ec:32:55:
23:cd:0f:b7:10:59:96:ce:ca:0a:c9:ae:9b:29:f8:
71:5a:e1:2b:b1:22:f1:cf:70:8f:20:c6:72:69:52:
cc:4d:74:18:9c:88:e0:c2:50:4e:93:b7:11:89:fd:
d7:13:fc:cf:74:89:0a:14:31:78:dd:7c:8c:55:ff:
62:5d:ea:17:0d:93:ae:f1:7d:30:72:71:61:8a:77:
65:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:70:51:4A:C7:11:39:07:51:87:37:41:A7:DF:E7:11:8E:F4:2B:BE
X509v3 Authority Key Identifier:
keyid:54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/KXBRSscROQdRhzdBp9_nEY70K74.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/VJFFQf0blefAr8h1--94eU9VOGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:54c1:3000::/40
Signature Algorithm: sha256WithRSAEncryption
66:69:62:da:49:1a:5c:b1:d5:72:df:ab:24:2b:f2:31:f2:27:
2d:34:d2:c8:d8:47:9c:7f:b9:e3:05:e4:53:d2:5b:b1:24:52:
fc:0a:3e:f5:06:66:2d:9a:59:f4:5e:30:42:75:a3:2c:fc:93:
d8:76:4b:d0:bb:e0:94:90:b9:d3:f4:d0:05:6d:8d:b0:67:1d:
a3:1a:e7:03:91:e4:93:c5:eb:b7:0b:4f:63:92:9d:f0:34:50:
d8:79:a1:9f:5c:29:80:c3:2f:8d:e5:99:a2:3b:8e:22:90:59:
99:71:c9:c9:67:b1:86:f1:9b:5d:1c:df:da:45:26:61:6f:3e:
e6:81:d4:7d:25:d3:85:12:86:3d:43:cc:64:71:5b:86:d3:27:
e9:ec:c1:f7:52:ae:68:c3:dc:f5:f4:3b:6b:c3:44:bd:a6:73:
66:2d:bd:33:e2:b5:f6:dd:be:7b:68:75:50:e5:8a:fb:f0:d1:
2d:9c:60:bc:54:08:a2:3f:58:6f:00:a9:9c:7b:c1:fa:e9:61:
25:9a:76:df:18:66:c8:54:08:56:fa:27:56:b8:e4:2b:39:ad:
68:d1:f1:81:28:1e:be:e0:0b:a6:1b:5b:bc:a1:8a:05:cd:16:
68:91:b5:f5:71:6c:42:27:7f:8a:2e:69:46:aa:5b:54:ac:c3:
2f:96:a6:6f
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYPYF20qO+YiGl2IJ7p/hFKcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU0OTE0NTQxZmQxYjk1ZTdjMGFmYzg3NWZiZWY3ODc5NGY1
NTM4NmIwHhcNMjIxMDE0MjAwMjM3WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyOTcwNTE0YWM3MTEzOTA3NTE4NzM3NDFhN2RmZTcxMThlZjQyYmJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmuOvuhZ/vnQlGW8+DN9yCMiKBvgN
IjfvZqb2/QLbs5s6BSE7U2MHhO5M+Fe6em8dL9bpJiajyO2eTh7MBbTyIodjZRUM
UbyKGZebWmKQxc6e02IXOo+lkh7S9mnrP9JO6rSuGIh7RXW8atfuHfZJVYz/3goe
n2+GOOc+9LJ8IatQAbN1KxSDsqWXvBg2LTrSwro4IT/N9/LWaiRlgSztDGWZ/ahe
LJL8gPftIUPt+qHsMlUjzQ+3EFmWzsoKya6bKfhxWuErsSLxz3CPIMZyaVLMTXQY
nIjgwlBOk7cRif3XE/zPdIkKFDF43XyMVf9iXeoXDZOu8X0wcnFhindlIwIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFClwUUrHETkHUYc3Qaff5xGO9Cu+MB8GA1UdIwQY
MBaAFFSRRUH9G5XnwK/IdfvveHlPVThrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVkpGRlFmMGJsZWZBcjhoMS0tOTRlVTlWT0dzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS80NjQ2MzEtY2E4ZS00YzZhLWIwOTEt
ZDlmNmQ5NjQyNTM3LzEvS1hCUlNzY1JPUWRSaHpkQnA5X25FWTcwSzc0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80YS80NjQ2MzEtY2E4ZS00YzZhLWIwOTEtZDlmNmQ5NjQyNTM3
LzEvVkpGRlFmMGJsZWZBcjhoMS0tOTRlVTlWT0dzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgdUwTAw
DQYJKoZIhvcNAQELBQADggEBAGZpYtpJGlyx1XLfqyQr8jHyJy000sjYR5x/ueMF
5FPSW7EkUvwKPvUGZi2aWfReMEJ1oyz8k9h2S9C74JSQudP00AVtjbBnHaMa5wOR
5JPF67cLT2OSnfA0UNh5oZ9cKYDDL43lmaI7jiKQWZlxyclnsYbxm10c39pFJmFv
PuaB1H0l04UShj1DzGRxW4bTJ+nswfdSrmjD3PX0O2vDRL2mc2YtvTPitfbdvnto
dVDlivvw0S2cYLxUCKI/WG8AqZx7wfrpYSWadt8YZshUCFb6J1a45Cs5rWjR8YEo
Hr7gC6YbW7yhigXNFmiRtfVxbEInf4ouaUaqW1Sswy+Wpm8=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:17 2023 by rpki-client on console-ams.rpki-client.org