Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/Y5Xb5B8ym-kbCVp03lzGKhStYLk.roa
File: Y5Xb5B8ym-kbCVp03lzGKhStYLk.roa (raw, json)
Hash identifier: gOBg+yWvvuEYTjL/e2cfA9ApqrBscPdCyCStyHSclnc=
Subject key identifier: 63:95:DB:E4:1F:32:9B:E9:1B:09:5A:74:DE:5C:C6:2A:14:AD:60:B9
Certificate issuer: /CN=54914541fd1b95e7c0afc875fbef78794f55386b
Certificate serial: 17828A7A
Authority key identifier: 54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/Y5Xb5B8ym-kbCVp03lzGKhStYLk.roa
Signing time: Tue 29 Mar 2022 04:01:20 +0000
ROA not before: Tue 29 Mar 2022 04:01:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9267
IP address blocks: 2a06:a005:200::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 394431098 (0x17828a7a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54914541fd1b95e7c0afc875fbef78794f55386b
Validity
Not Before: Mar 29 04:01:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6395dbe41f329be91b095a74de5cc62a14ad60b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:57:6c:27:f1:4d:cc:60:68:c4:79:69:40:a6:
82:fa:5a:7d:4d:34:6d:87:ee:3c:5d:dd:67:24:78:
3c:b1:1a:3e:36:ad:1b:0b:32:e8:f4:ba:7a:a6:f4:
f3:c1:b4:f7:98:af:1d:70:72:3e:b3:1c:ad:2e:d5:
3d:c6:1a:9c:65:ed:15:77:3c:37:e2:26:41:fa:fb:
37:52:9f:0d:c6:8a:67:42:03:b0:9b:ae:a3:12:e6:
11:f3:c7:e5:62:5b:46:43:aa:54:69:7c:e7:ad:a6:
a4:86:97:65:77:d8:5b:3a:3c:a4:4c:d1:e0:77:1a:
fd:ff:61:0d:78:1f:35:20:7a:6e:48:14:4b:db:c4:
e0:f3:92:21:f7:d0:d5:00:5f:15:70:d8:db:58:71:
30:0e:cf:d4:2f:61:8c:43:5e:60:86:c1:de:d0:9a:
e5:85:1b:b8:9c:a4:d6:92:10:3d:7b:59:96:ff:79:
75:50:e3:61:1c:76:7e:11:e4:85:43:75:7e:9d:0a:
5c:7a:7d:3e:f5:65:4a:73:80:19:48:66:d4:96:65:
50:56:92:dc:ff:07:ef:26:fa:be:77:e3:01:47:78:
17:e5:a7:9e:bd:10:40:38:d6:97:13:da:da:cb:e4:
66:4f:94:4f:42:98:44:9b:cf:98:83:77:2f:d3:f8:
16:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:95:DB:E4:1F:32:9B:E9:1B:09:5A:74:DE:5C:C6:2A:14:AD:60:B9
X509v3 Authority Key Identifier:
keyid:54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/Y5Xb5B8ym-kbCVp03lzGKhStYLk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/VJFFQf0blefAr8h1--94eU9VOGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:200::/44
Signature Algorithm: sha256WithRSAEncryption
0f:07:fa:e6:02:ca:29:92:d4:f4:04:01:81:0b:60:65:5a:1a:
d5:c0:55:2b:72:a3:a8:5f:1e:3e:21:5d:a4:c7:40:9c:67:3c:
f0:24:53:5d:62:3d:1c:0d:49:92:62:21:31:cd:9a:4f:08:cd:
a3:1f:50:9d:f0:6c:8a:08:4a:7e:45:73:ff:b9:c1:a1:af:78:
0e:d4:79:9c:c2:55:1c:3e:0a:a4:b1:a8:89:ea:68:76:6c:03:
94:e0:8e:74:8d:0e:98:d8:4a:b9:c6:95:e5:b9:4a:56:b2:05:
97:f6:08:b1:03:77:fb:1b:5e:e6:81:d3:d1:0a:34:a1:b4:03:
c6:6d:6b:76:71:76:4f:e5:d3:1a:57:40:3a:7d:90:72:28:b0:
25:38:b0:ff:a5:b1:7b:58:52:fa:5d:dc:c1:9e:6c:b9:0c:15:
77:81:31:c3:24:2a:8b:be:82:be:31:ac:61:7d:18:11:cc:57:
25:c9:db:62:7c:2c:1a:b0:1b:3f:50:2a:c0:e2:49:54:f6:e8:
a3:61:43:9c:62:e1:d7:f5:52:c5:a5:94:9b:01:a0:63:33:55:
30:a6:ed:14:0c:05:f8:47:e0:61:c8:13:38:5f:69:f2:ea:d5:
46:76:4f:be:5c:99:b3:8e:5f:ac:24:82:76:46:41:cf:c7:71:
cc:00:72:1d
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEF4KKejANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
NDkxNDU0MWZkMWI5NWU3YzBhZmM4NzVmYmVmNzg3OTRmNTUzODZiMB4XDTIyMDMy
OTA0MDEyMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjM5NWRiZTQxZjMy
OWJlOTFiMDk1YTc0ZGU1Y2M2MmExNGFkNjBiOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAORXbCfxTcxgaMR5aUCmgvpafU00bYfuPF3dZyR4PLEaPjat
Gwsy6PS6eqb088G095ivHXByPrMcrS7VPcYanGXtFXc8N+ImQfr7N1KfDcaKZ0ID
sJuuoxLmEfPH5WJbRkOqVGl8562mpIaXZXfYWzo8pEzR4Hca/f9hDXgfNSB6bkgU
S9vE4POSIffQ1QBfFXDY21hxMA7P1C9hjENeYIbB3tCa5YUbuJyk1pIQPXtZlv95
dVDjYRx2fhHkhUN1fp0KXHp9PvVlSnOAGUhm1JZlUFaS3P8H7yb6vnfjAUd4F+Wn
nr0QQDjWlxPa2svkZk+UT0KYRJvPmIN3L9P4Fi8CAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBRjldvkHzKb6RsJWnTeXMYqFK1guTAfBgNVHSMEGDAWgBRUkUVB/RuV58Cv
yHX773h5T1U4azAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1ZKRkZRZjBibGVmQXI4aDEtLTk0ZVU5Vk9Hcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGEvNDY0NjMxLWNhOGUtNGM2YS1iMDkxLWQ5ZjZkOTY0MjUzNy8x
L1k1WGI1Qjh5bS1rYkNWcDAzbHpHS2hTdFlMay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGEv
NDY0NjMxLWNhOGUtNGM2YS1iMDkxLWQ5ZjZkOTY0MjUzNy8xL1ZKRkZRZjBibGVm
QXI4aDEtLTk0ZVU5Vk9Hcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHBCoGoAUCADANBgkqhkiG9w0BAQsF
AAOCAQEADwf65gLKKZLU9AQBgQtgZVoa1cBVK3KjqF8ePiFdpMdAnGc88CRTXWI9
HA1JkmIhMc2aTwjNox9QnfBsighKfkVz/7nBoa94DtR5nMJVHD4KpLGoiepodmwD
lOCOdI0OmNhKucaV5blKVrIFl/YIsQN3+xte5oHT0Qo0obQDxm1rdnF2T+XTGldA
On2QciiwJTiw/6Wxe1hS+l3cwZ5suQwVd4ExwyQqi76CvjGsYX0YEcxXJcnbYnws
GrAbP1AqwOJJVPboo2FDnGLh1/VSxaWUmwGgYzNVMKbtFAwF+EfgYcgTOF9p8urV
RnZPvlyZs45frCSCdkZBz8dxzAByHQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:18 2023 by rpki-client on console-ams.rpki-client.org