Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/OgkCqsJGP3jAdBPesJnpZFPWit4.roa
File: OgkCqsJGP3jAdBPesJnpZFPWit4.roa (raw, json)
Hash identifier: 3dkotmVepMR/XstmLchKG95PGC+cUbkLzmDnTcIrGio=
Subject key identifier: 3A:09:02:AA:C2:46:3F:78:C0:74:13:DE:B0:99:E9:64:53:D6:8A:DE
Certificate issuer: /CN=54914541fd1b95e7c0afc875fbef78794f55386b
Certificate serial: 1AA48906
Authority key identifier: 54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/OgkCqsJGP3jAdBPesJnpZFPWit4.roa
Signing time: Mon 06 Jun 2022 19:02:20 +0000
ROA not before: Mon 06 Jun 2022 19:02:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203857
IP address blocks: 2a06:a005:5ec::/48 maxlen: 48
2a06:a005:851::/48 maxlen: 48
2a06:a005:11::/48 maxlen: 48
2a06:a005:a02::/48 maxlen: 48
2a06:a005:856::/48 maxlen: 48
2a06:a005:4d6::/48 maxlen: 48
2a06:a005:5e4::/48 maxlen: 48
2a06:a005:5e9::/48 maxlen: 48
2a06:a005:2df::/48 maxlen: 48
2a06:a005:5ee::/48 maxlen: 48
2a06:a005:4d3::/48 maxlen: 48
2a06:a005:a01::/48 maxlen: 48
2a06:a005:4d2::/48 maxlen: 48
2a06:a005:432::/48 maxlen: 48
2a06:a005:12::/48 maxlen: 48
2a06:a005:4d7::/48 maxlen: 48
2a06:a005:10::/48 maxlen: 48
2a06:a005:850::/48 maxlen: 48
2a06:a005:4d5::/48 maxlen: 48
2a06:a005:5eb::/48 maxlen: 48
2a06:a005:2d4::/48 maxlen: 48
2a06:a005:4d4::/48 maxlen: 48
2a06:a005:5ea::/48 maxlen: 48
2a06:a005:5ef::/48 maxlen: 48
2a06:a005:a08::/48 maxlen: 48
2a06:a005:5e8::/48 maxlen: 48
2a06:a005:5ed::/48 maxlen: 48
2a06:a005:5e3::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 446990598 (0x1aa48906)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54914541fd1b95e7c0afc875fbef78794f55386b
Validity
Not Before: Jun 6 19:02:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3a0902aac2463f78c07413deb099e96453d68ade
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:42:68:5d:7b:64:43:9b:fd:87:fa:cc:74:03:
56:45:b0:b3:6e:08:38:71:41:d6:c5:a7:b0:a5:f5:
0a:4a:1c:4a:0f:e6:92:a0:bb:5e:74:c9:dc:d7:1b:
b8:ff:8a:a2:d1:23:ec:d0:38:30:0b:e2:3c:d7:8b:
a7:ae:5d:5f:92:67:a7:f5:91:66:88:e2:5e:24:1b:
a7:9d:68:cf:60:3e:f9:28:84:23:a0:63:4b:bd:15:
ea:36:9a:a6:f7:1e:de:24:ee:bf:f9:8a:af:47:e6:
a0:33:d3:f9:38:6b:5a:18:a2:1e:0d:4d:31:e0:a2:
0e:53:6f:7f:9d:9a:a3:64:8b:f6:7f:f5:35:50:8a:
77:19:6c:90:ba:6e:86:65:d5:21:b6:49:32:b7:9d:
ea:b9:77:2f:fb:da:40:39:e2:d8:93:b7:ff:cf:9d:
23:d1:c5:0b:82:06:04:e8:af:95:f1:be:b1:8f:8e:
5e:70:e7:77:2e:8d:19:11:d6:54:f1:8f:ce:30:bf:
56:4b:ef:03:e7:4c:98:36:9a:7c:48:a5:e4:7e:a9:
9e:40:9f:c8:ca:9d:be:39:db:37:1e:44:b4:3a:76:
bb:e8:3b:50:22:68:ff:9a:80:f3:d0:71:fa:12:fb:
aa:c4:0a:52:fa:d6:21:a9:0f:b9:86:bc:46:85:0d:
80:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:09:02:AA:C2:46:3F:78:C0:74:13:DE:B0:99:E9:64:53:D6:8A:DE
X509v3 Authority Key Identifier:
keyid:54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/OgkCqsJGP3jAdBPesJnpZFPWit4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/VJFFQf0blefAr8h1--94eU9VOGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:10::-2a06:a005:12:ffff:ffff:ffff:ffff:ffff
2a06:a005:2d4::/48
2a06:a005:2df::/48
2a06:a005:432::/48
2a06:a005:4d2::-2a06:a005:4d7:ffff:ffff:ffff:ffff:ffff
2a06:a005:5e3::-2a06:a005:5e4:ffff:ffff:ffff:ffff:ffff
2a06:a005:5e8::/45
2a06:a005:850::/47
2a06:a005:856::/48
2a06:a005:a01::-2a06:a005:a02:ffff:ffff:ffff:ffff:ffff
2a06:a005:a08::/48
Signature Algorithm: sha256WithRSAEncryption
0f:a1:4c:70:70:21:f9:a4:c2:8b:2c:e0:d9:03:d3:e3:d7:55:
e8:4b:40:f9:4c:07:05:83:9a:7b:09:b9:e1:11:cd:79:01:0f:
4f:21:b2:d9:8c:75:20:81:a4:e8:20:9d:97:13:a8:44:80:bd:
44:30:f5:a6:79:f6:cf:6d:4a:bb:d2:ba:c6:0f:f2:a8:2a:8e:
3a:ed:a7:94:34:04:f6:1a:16:02:78:39:e2:9d:5a:a1:b5:3e:
06:62:bf:fb:58:46:9d:dc:23:99:e7:a8:95:0a:0a:2b:e1:35:
ad:03:23:a9:30:71:36:77:27:46:34:92:dc:97:a2:b6:fc:5f:
9f:f2:6c:d2:b1:db:1c:1b:6c:57:7a:ed:03:2b:93:42:45:a2:
2e:5e:c0:16:7d:33:ba:7d:ea:9d:1f:61:69:13:be:3f:a0:a2:
db:f8:5b:a0:bd:5a:35:da:23:37:a4:a1:ea:30:c8:6c:e7:80:
a7:e4:79:00:f2:8e:0f:fb:96:8c:64:f0:78:91:85:3d:48:ba:
28:b1:cb:48:44:08:81:da:3b:bc:c7:9c:c6:21:57:7e:f1:41:
a9:00:31:c8:42:31:82:9b:41:e7:a5:dd:71:a9:1a:84:6b:68:
bf:b0:fb:b7:10:a6:94:b7:5f:a6:6d:bc:30:d4:d2:d7:69:85:
4d:2b:79:87
-----BEGIN CERTIFICATE-----
MIIFfTCCBGWgAwIBAgIEGqSJBjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
NDkxNDU0MWZkMWI5NWU3YzBhZmM4NzVmYmVmNzg3OTRmNTUzODZiMB4XDTIyMDYw
NjE5MDIyMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoM2EwOTAyYWFjMjQ2
M2Y3OGMwNzQxM2RlYjA5OWU5NjQ1M2Q2OGFkZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALlCaF17ZEOb/Yf6zHQDVkWws24IOHFB1sWnsKX1CkocSg/m
kqC7XnTJ3NcbuP+KotEj7NA4MAviPNeLp65dX5Jnp/WRZojiXiQbp51oz2A++SiE
I6BjS70V6jaapvce3iTuv/mKr0fmoDPT+ThrWhiiHg1NMeCiDlNvf52ao2SL9n/1
NVCKdxlskLpuhmXVIbZJMred6rl3L/vaQDni2JO3/8+dI9HFC4IGBOivlfG+sY+O
XnDndy6NGRHWVPGPzjC/VkvvA+dMmDaafEil5H6pnkCfyMqdvjnbNx5EtDp2u+g7
UCJo/5qA89Bx+hL7qsQKUvrWIakPuYa8RoUNgIkCAwEAAaOCApcwggKTMB0GA1Ud
DgQWBBQ6CQKqwkY/eMB0E96wmelkU9aK3jAfBgNVHSMEGDAWgBRUkUVB/RuV58Cv
yHX773h5T1U4azAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1ZKRkZRZjBibGVmQXI4aDEtLTk0ZVU5Vk9Hcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGEvNDY0NjMxLWNhOGUtNGM2YS1iMDkxLWQ5ZjZkOTY0MjUzNy8x
L09na0Nxc0pHUDNqQWRCUGVzSm5wWkZQV2l0NC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGEv
NDY0NjMxLWNhOGUtNGM2YS1iMDkxLWQ5ZjZkOTY0MjUzNy8xL1ZKRkZRZjBibGVm
QXI4aDEtLTk0ZVU5Vk9Hcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
rAYIKwYBBQUHAQcBAf8EgZwwgZkwgZYEAgACMIGPMBIDBwQqBqAFABADBwAqBqAF
ABIDBwAqBqAFAtQDBwAqBqAFAt8DBwAqBqAFBDIwEgMHASoGoAUE0gMHAyoGoAUE
0DASAwcAKgagBQXjAwcAKgagBQXkAwcDKgagBQXoAwcBKgagBQhQAwcAKgagBQhW
MBIDBwAqBqAFCgEDBwAqBqAFCgIDBwAqBqAFCggwDQYJKoZIhvcNAQELBQADggEB
AA+hTHBwIfmkwoss4NkD0+PXVehLQPlMBwWDmnsJueERzXkBD08hstmMdSCBpOgg
nZcTqESAvUQw9aZ59s9tSrvSusYP8qgqjjrtp5Q0BPYaFgJ4OeKdWqG1PgZiv/tY
Rp3cI5nnqJUKCivhNa0DI6kwcTZ3J0Y0ktyXorb8X5/ybNKx2xwbbFd67QMrk0JF
oi5ewBZ9M7p96p0fYWkTvj+gotv4W6C9WjXaIzekoeowyGzngKfkeQDyjg/7loxk
8HiRhT1Iuiixy0hECIHaO7zHnMYhV37xQakAMchCMYKbQeel3XGpGoRraL+w+7cQ
ppS3X6ZtvDDU0tdphU0reYc=
-----END CERTIFICATE-----
Generated at Fri Apr 18 10:03:34 2025 by rpki-client