Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/Mql3OADb-gTmk5n0FJLSlXkbzz8.roa
File: Mql3OADb-gTmk5n0FJLSlXkbzz8.roa (raw, json)
Hash identifier: 6CX6xt+hnGkAtwrKqYkLVloOJXd53G6seEzqPTEV65Y=
Subject key identifier: 32:A9:77:38:00:DB:FA:04:E6:93:99:F4:14:92:D2:95:79:1B:CF:3F
Certificate issuer: /CN=54914541fd1b95e7c0afc875fbef78794f55386b
Certificate serial: 16C3C39E
Authority key identifier: 54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/Mql3OADb-gTmk5n0FJLSlXkbzz8.roa
Signing time: Tue 15 Mar 2022 23:46:24 +0000
ROA not before: Tue 15 Mar 2022 23:46:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9833
IP address blocks: 2a06:a005:a::/47 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 381928350 (0x16c3c39e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54914541fd1b95e7c0afc875fbef78794f55386b
Validity
Not Before: Mar 15 23:46:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=32a9773800dbfa04e69399f41492d295791bcf3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:69:c8:29:73:32:92:e7:ce:cc:c5:ab:8c:e1:
b2:fe:62:88:7c:db:f8:9c:2e:6e:7b:73:c4:30:21:
46:39:40:b7:b4:6f:8e:e0:6e:54:11:ca:18:c4:d1:
a0:73:27:e9:a7:96:e7:66:58:4b:7a:11:91:cb:7e:
3c:d5:df:68:1f:c3:97:53:ce:ab:1b:62:c3:2d:29:
51:f5:6e:ca:1e:71:9d:a2:81:84:5c:f4:19:ef:5a:
ff:a0:d0:23:92:7c:42:78:7a:0e:51:68:45:23:61:
e1:1c:95:da:05:21:ea:d7:56:fc:af:aa:97:8d:08:
1c:26:f4:42:ac:45:b5:9f:4e:08:4c:d5:f1:15:00:
34:00:4a:48:4d:65:05:bd:3f:34:6d:6b:4f:64:19:
4e:3f:08:40:59:bc:da:70:d4:5a:de:6d:9d:36:2c:
18:d1:1c:29:8e:ec:e7:b8:d3:7a:b0:d3:ac:8b:eb:
e7:6d:fa:b3:31:77:33:b8:2f:5a:ec:6d:25:05:af:
90:44:f0:18:2c:db:6b:38:4c:1c:3f:e5:e1:7d:ac:
fb:89:36:9c:e9:29:b1:79:a5:56:e2:07:cc:5c:89:
35:ff:89:ce:2b:d0:90:f9:a2:74:e2:fd:6a:96:33:
d2:b5:9e:3e:34:38:4c:78:cc:1b:63:bc:b4:2f:7d:
31:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:A9:77:38:00:DB:FA:04:E6:93:99:F4:14:92:D2:95:79:1B:CF:3F
X509v3 Authority Key Identifier:
keyid:54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/Mql3OADb-gTmk5n0FJLSlXkbzz8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/VJFFQf0blefAr8h1--94eU9VOGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:a::/47
Signature Algorithm: sha256WithRSAEncryption
01:4f:a7:54:7f:92:28:40:26:e1:50:6a:94:09:c6:6b:ad:46:
11:1d:93:68:a5:33:81:ff:5a:0e:1a:ff:31:0f:f2:93:d9:60:
de:8a:f5:f2:d0:70:64:cb:db:05:9d:1b:da:05:f5:61:5e:da:
51:00:86:a4:93:f2:0f:de:88:49:58:23:9c:c3:c3:af:4f:fd:
69:92:cf:9d:bb:b2:e4:f3:0e:84:16:37:c4:0c:c4:2c:50:9d:
c0:72:4a:a7:81:67:6f:fc:69:67:a4:36:c7:33:95:d3:2c:48:
64:fb:52:34:6c:f0:cc:7a:d7:46:32:c1:6a:67:9f:05:78:55:
bf:c4:76:79:01:88:bd:2f:e5:57:90:55:30:59:d3:02:d3:6c:
01:de:69:a7:6d:57:11:0d:ed:a4:45:7f:d6:3c:41:33:11:dc:
34:9b:f0:d2:8d:0a:19:6c:43:91:ef:31:26:16:ab:b2:66:b9:
6f:9b:da:fd:44:07:6d:44:89:a4:22:35:d6:49:a8:20:60:50:
c8:34:92:a4:eb:ab:9b:ad:9e:13:bf:7c:ac:5c:d2:89:6c:19:
a2:ff:e8:dd:2d:fd:e4:89:69:0c:cb:8e:9f:ae:7e:1d:49:83:
cb:82:51:ca:23:9d:24:88:03:20:12:54:6c:8d:69:fc:61:85:
2e:f7:53:1b
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEFsPDnjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
NDkxNDU0MWZkMWI5NWU3YzBhZmM4NzVmYmVmNzg3OTRmNTUzODZiMB4XDTIyMDMx
NTIzNDYyNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzJhOTc3MzgwMGRi
ZmEwNGU2OTM5OWY0MTQ5MmQyOTU3OTFiY2YzZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJBpyClzMpLnzszFq4zhsv5iiHzb+JwubntzxDAhRjlAt7Rv
juBuVBHKGMTRoHMn6aeW52ZYS3oRkct+PNXfaB/Dl1POqxtiwy0pUfVuyh5xnaKB
hFz0Ge9a/6DQI5J8Qnh6DlFoRSNh4RyV2gUh6tdW/K+ql40IHCb0QqxFtZ9OCEzV
8RUANABKSE1lBb0/NG1rT2QZTj8IQFm82nDUWt5tnTYsGNEcKY7s57jTerDTrIvr
5236szF3M7gvWuxtJQWvkETwGCzbazhMHD/l4X2s+4k2nOkpsXmlVuIHzFyJNf+J
zivQkPmidOL9apYz0rWePjQ4THjMG2O8tC99MSUCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBQyqXc4ANv6BOaTmfQUktKVeRvPPzAfBgNVHSMEGDAWgBRUkUVB/RuV58Cv
yHX773h5T1U4azAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1ZKRkZRZjBibGVmQXI4aDEtLTk0ZVU5Vk9Hcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGEvNDY0NjMxLWNhOGUtNGM2YS1iMDkxLWQ5ZjZkOTY0MjUzNy8x
L01xbDNPQURiLWdUbWs1bjBGSkxTbFhrYnp6OC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGEv
NDY0NjMxLWNhOGUtNGM2YS1iMDkxLWQ5ZjZkOTY0MjUzNy8xL1ZKRkZRZjBibGVm
QXI4aDEtLTk0ZVU5Vk9Hcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHASoGoAUACjANBgkqhkiG9w0BAQsF
AAOCAQEAAU+nVH+SKEAm4VBqlAnGa61GER2TaKUzgf9aDhr/MQ/yk9lg3or18tBw
ZMvbBZ0b2gX1YV7aUQCGpJPyD96ISVgjnMPDr0/9aZLPnbuy5PMOhBY3xAzELFCd
wHJKp4Fnb/xpZ6Q2xzOV0yxIZPtSNGzwzHrXRjLBamefBXhVv8R2eQGIvS/lV5BV
MFnTAtNsAd5pp21XEQ3tpEV/1jxBMxHcNJvw0o0KGWxDke8xJharsma5b5va/UQH
bUSJpCI11kmoIGBQyDSSpOurm62eE798rFzSiWwZov/o3S395IlpDMuOn65+HUmD
y4JRyiOdJIgDIBJUbI1p/GGFLvdTGw==
-----END CERTIFICATE-----
Generated at Fri Apr 18 10:09:39 2025 by rpki-client