Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/N_2z6HWVEfiZUKc11sGGMs7qnMA.roa
File: N_2z6HWVEfiZUKc11sGGMs7qnMA.roa (raw, json)
Hash identifier: aUGh9PeFRT8kkRjVKN19hn86aP1omrBy89xuvGPnHUk=
Subject key identifier: 37:FD:B3:E8:75:95:11:F8:99:50:A7:35:D6:C1:86:32:CE:EA:9C:C0
Certificate issuer: /CN=54914541fd1b95e7c0afc875fbef78794f55386b
Certificate serial: 1827AF28
Authority key identifier: 54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/N_2z6HWVEfiZUKc11sGGMs7qnMA.roa
Signing time: Sat 16 Apr 2022 09:11:59 +0000
ROA not before: Sat 16 Apr 2022 09:11:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 139859
IP address blocks: 2a06:a005:1c::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 405253928 (0x1827af28)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54914541fd1b95e7c0afc875fbef78794f55386b
Validity
Not Before: Apr 16 09:11:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=37fdb3e8759511f89950a735d6c18632ceea9cc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:19:85:98:91:6a:26:7d:e9:90:85:2c:99:93:
60:3a:52:c6:17:55:93:a6:6e:10:d7:c6:e5:c4:0c:
b5:6f:69:92:f4:f3:95:0e:d1:75:65:51:f3:0d:2c:
f0:57:cd:47:0c:e3:74:76:51:7b:3f:4a:42:0e:55:
21:ed:c8:97:f2:7a:84:f0:67:b5:d7:a2:b6:88:35:
60:a5:50:94:df:bb:95:06:90:f7:b7:64:ca:0f:cf:
ba:ab:66:25:19:ab:86:9a:f3:44:45:9b:9f:17:a5:
cc:9b:3d:81:71:23:83:e9:53:f1:aa:56:c6:fa:8e:
6a:ec:d2:15:6a:34:c8:91:42:ae:41:a8:0e:58:23:
a7:27:81:50:62:95:4c:da:12:04:cc:de:91:84:e7:
6e:dd:9b:06:fb:ed:0a:c1:a5:77:2b:ff:8e:f0:fc:
16:8f:a2:8a:b4:7b:72:22:3e:1f:22:54:62:48:30:
34:08:56:4e:d5:b4:94:4f:b8:91:a9:7c:c2:0c:6f:
09:fe:0d:f2:4d:11:ee:11:6a:51:5f:99:e9:e0:05:
87:a9:21:a5:af:4e:26:46:27:02:2e:8d:e2:6a:6c:
89:07:ca:df:08:81:7f:5e:d9:30:bc:ac:ba:ac:1b:
df:63:8f:62:36:64:ea:07:d9:13:85:66:16:28:09:
28:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:FD:B3:E8:75:95:11:F8:99:50:A7:35:D6:C1:86:32:CE:EA:9C:C0
X509v3 Authority Key Identifier:
keyid:54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/N_2z6HWVEfiZUKc11sGGMs7qnMA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/VJFFQf0blefAr8h1--94eU9VOGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:1c::/48
Signature Algorithm: sha256WithRSAEncryption
5d:91:42:12:d1:fb:e7:7c:ca:c5:1e:8b:19:4b:fd:85:8c:79:
29:38:6e:e2:56:71:64:e5:bf:64:d5:7f:17:0a:0e:3f:9b:47:
b9:4a:d7:80:eb:25:21:08:ec:7c:13:26:74:b1:93:8a:41:87:
94:2e:8b:08:a5:8a:3c:e3:cb:5c:49:1c:25:fc:e3:f0:93:be:
23:b3:fd:d0:1a:a9:6d:3f:d2:17:cf:7a:17:32:c3:cc:31:ea:
53:65:67:c2:05:44:71:e5:70:fd:de:ba:8b:f4:a4:a2:4c:04:
35:13:cc:0f:1c:a4:53:a4:fc:66:e0:a4:ed:2b:70:c4:55:46:
f9:81:25:a5:ff:c1:f1:dc:02:71:6f:8f:b9:c2:f3:c5:3c:84:
2e:eb:49:7b:19:f7:79:57:77:c1:43:27:c0:af:d0:69:b7:0e:
d7:be:01:46:33:97:ff:da:4e:94:cc:95:bc:48:88:c0:6f:0c:
a9:d2:0c:df:c9:3d:69:fd:cc:3b:37:04:c2:9b:af:2f:6b:a8:
3b:ac:e2:61:62:01:cd:64:dc:68:07:5c:23:c8:71:39:e5:c0:
48:3e:2e:7e:3c:5c:b5:80:10:de:fb:57:55:b5:3e:03:67:9e:
eb:a9:a9:78:1e:3c:3e:7d:62:e0:a5:4d:7a:ab:6f:88:1f:32:
b4:82:10:12
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEGCevKDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
NDkxNDU0MWZkMWI5NWU3YzBhZmM4NzVmYmVmNzg3OTRmNTUzODZiMB4XDTIyMDQx
NjA5MTE1OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzdmZGIzZTg3NTk1
MTFmODk5NTBhNzM1ZDZjMTg2MzJjZWVhOWNjMDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAN0ZhZiRaiZ96ZCFLJmTYDpSxhdVk6ZuENfG5cQMtW9pkvTz
lQ7RdWVR8w0s8FfNRwzjdHZRez9KQg5VIe3Il/J6hPBntdeitog1YKVQlN+7lQaQ
97dkyg/PuqtmJRmrhprzREWbnxelzJs9gXEjg+lT8apWxvqOauzSFWo0yJFCrkGo
DlgjpyeBUGKVTNoSBMzekYTnbt2bBvvtCsGldyv/jvD8Fo+iirR7ciI+HyJUYkgw
NAhWTtW0lE+4kal8wgxvCf4N8k0R7hFqUV+Z6eAFh6khpa9OJkYnAi6N4mpsiQfK
3wiBf17ZMLysuqwb32OPYjZk6gfZE4VmFigJKIECAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBQ3/bPodZUR+JlQpzXWwYYyzuqcwDAfBgNVHSMEGDAWgBRUkUVB/RuV58Cv
yHX773h5T1U4azAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1ZKRkZRZjBibGVmQXI4aDEtLTk0ZVU5Vk9Hcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGEvNDY0NjMxLWNhOGUtNGM2YS1iMDkxLWQ5ZjZkOTY0MjUzNy8x
L05fMno2SFdWRWZpWlVLYzExc0dHTXM3cW5NQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGEv
NDY0NjMxLWNhOGUtNGM2YS1iMDkxLWQ5ZjZkOTY0MjUzNy8xL1ZKRkZRZjBibGVm
QXI4aDEtLTk0ZVU5Vk9Hcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoGoAUAHDANBgkqhkiG9w0BAQsF
AAOCAQEAXZFCEtH753zKxR6LGUv9hYx5KThu4lZxZOW/ZNV/FwoOP5tHuUrXgOsl
IQjsfBMmdLGTikGHlC6LCKWKPOPLXEkcJfzj8JO+I7P90BqpbT/SF896FzLDzDHq
U2VnwgVEceVw/d66i/SkokwENRPMDxykU6T8ZuCk7StwxFVG+YElpf/B8dwCcW+P
ucLzxTyELutJexn3eVd3wUMnwK/QabcO174BRjOX/9pOlMyVvEiIwG8MqdIM38k9
af3MOzcEwpuvL2uoO6ziYWIBzWTcaAdcI8hxOeXASD4ufjxctYAQ3vtXVbU+A2ee
66mpeB48Pn1i4KVNeqtviB8ytIIQEg==
-----END CERTIFICATE-----
Generated at Fri Apr 18 10:10:46 2025 by rpki-client