Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/bKOepyVrtgotpxiMOPcDUiXHtbk.roa
File: bKOepyVrtgotpxiMOPcDUiXHtbk.roa (raw, json)
Hash identifier: OKZzMOs8M7iiUfFdQB730+bBunluY4Xhd7NXipMOHkc=
Subject key identifier: 6C:A3:9E:A7:25:6B:B6:0A:2D:A7:18:8C:38:F7:03:52:25:C7:B5:B9
Certificate issuer: /CN=54914541fd1b95e7c0afc875fbef78794f55386b
Certificate serial: 018256652BF0600400CD8C25652A4FB57323
Authority key identifier: 54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/bKOepyVrtgotpxiMOPcDUiXHtbk.roa
Signing time: Sun 31 Jul 2022 22:34:07 +0000
ROA not before: Sun 31 Jul 2022 22:34:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204585
IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:56:65:2b:f0:60:04:00:cd:8c:25:65:2a:4f:b5:73:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54914541fd1b95e7c0afc875fbef78794f55386b
Validity
Not Before: Jul 31 22:34:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6ca39ea7256bb60a2da7188c38f7035225c7b5b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:f7:07:a2:58:b6:87:66:b7:45:b4:08:95:ce:
9f:e7:ad:3b:6c:51:87:68:82:51:0f:39:2b:ae:13:
88:dc:39:83:99:53:51:cf:a2:e8:e2:44:01:22:04:
5f:6b:14:4a:47:04:35:ff:a6:60:ac:d2:b0:83:23:
ad:e5:dd:f2:b7:bd:a1:4a:ff:32:6b:4e:24:27:06:
37:fd:b7:f8:e8:83:86:0a:34:38:8a:0f:d0:03:4d:
61:6c:61:c4:e2:08:b8:cc:05:37:46:0a:c0:f1:c7:
2e:ed:a5:b0:2a:04:33:3a:bc:8d:8c:ec:2f:76:c7:
c5:7f:50:50:c5:85:32:ab:2e:b3:85:9a:37:f6:dc:
18:a7:d3:e9:b2:4a:c9:60:fd:8d:c0:63:24:b6:76:
8d:65:19:62:b5:fd:57:b0:1f:c4:ea:4f:3d:6e:fa:
68:fe:b1:7d:f0:d4:02:4b:3d:f7:82:d2:33:64:d3:
8a:dd:db:94:87:be:dd:d2:8a:6c:c3:0b:b4:db:77:
22:80:44:e8:72:75:e3:04:3b:27:b4:d3:13:ea:f5:
0c:56:8e:1e:ed:fe:de:fb:91:8b:3a:61:33:ba:12:
e7:da:38:c9:5c:87:61:8e:f1:f9:a6:e8:a4:f0:8a:
e4:a9:2e:f0:47:03:73:c0:d3:30:38:24:49:c7:de:
b9:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:A3:9E:A7:25:6B:B6:0A:2D:A7:18:8C:38:F7:03:52:25:C7:B5:B9
X509v3 Authority Key Identifier:
keyid:54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/bKOepyVrtgotpxiMOPcDUiXHtbk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/VJFFQf0blefAr8h1--94eU9VOGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:54c2:b00b::/48
Signature Algorithm: sha256WithRSAEncryption
60:d6:88:33:39:f2:91:5f:9f:aa:8e:9b:63:d5:e9:f4:ed:ae:
92:0c:04:9a:60:96:0c:0a:5c:ba:11:ba:21:e4:6f:31:2d:90:
92:e4:1e:8b:0b:22:a5:af:64:c2:f2:78:59:5e:12:ce:4f:17:
c7:14:c5:d9:a7:2c:6e:ea:70:18:9f:55:cc:c4:95:7a:3d:18:
c9:05:eb:8a:04:79:67:2c:c8:a4:1b:a1:c0:95:4a:0a:cc:8e:
9d:83:38:8f:51:2e:0a:44:ce:a7:72:28:a3:96:8c:ad:3a:15:
a2:52:d0:41:99:77:e0:8b:d5:ce:67:97:c6:5e:e7:5e:f3:8b:
10:6b:c7:f1:ca:8d:0a:79:a1:17:70:bb:d4:5e:a7:f0:e9:a5:
36:b1:27:68:07:76:38:7d:01:0a:3a:5f:64:0c:ba:8a:cb:23:
29:87:6e:51:09:b4:a9:77:40:ab:f7:3c:68:97:3c:91:2b:90:
04:f3:d8:3a:dc:13:7e:41:37:a9:ee:73:89:44:54:10:af:c8:
cb:a1:ab:63:7c:75:fe:a1:63:2f:8b:74:be:a5:6d:19:06:e5:
3f:5b:d8:90:30:9c:1b:c2:51:1c:f0:48:a5:5c:1c:5d:5e:32:
31:df:1b:b0:df:e0:4c:1b:6a:94:f1:6d:5d:30:dc:6b:f4:db:
4c:ac:f5:32
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYJWZSvwYAQAzYwlZSpPtXMjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU0OTE0NTQxZmQxYjk1ZTdjMGFmYzg3NWZiZWY3ODc5NGY1
NTM4NmIwHhcNMjIwNzMxMjIzNDA3WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2Y2EzOWVhNzI1NmJiNjBhMmRhNzE4OGMzOGY3MDM1MjI1YzdiNWI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAifcHoli2h2a3RbQIlc6f5607bFGH
aIJRDzkrrhOI3DmDmVNRz6Lo4kQBIgRfaxRKRwQ1/6ZgrNKwgyOt5d3yt72hSv8y
a04kJwY3/bf46IOGCjQ4ig/QA01hbGHE4gi4zAU3RgrA8ccu7aWwKgQzOryNjOwv
dsfFf1BQxYUyqy6zhZo39twYp9PpskrJYP2NwGMktnaNZRlitf1XsB/E6k89bvpo
/rF98NQCSz33gtIzZNOK3duUh77d0opswwu023cigETocnXjBDsntNMT6vUMVo4e
7f7e+5GLOmEzuhLn2jjJXIdhjvH5puik8IrkqS7wRwNzwNMwOCRJx965XQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFGyjnqcla7YKLacYjDj3A1Ilx7W5MB8GA1UdIwQY
MBaAFFSRRUH9G5XnwK/IdfvveHlPVThrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVkpGRlFmMGJsZWZBcjhoMS0tOTRlVTlWT0dzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS80NjQ2MzEtY2E4ZS00YzZhLWIwOTEt
ZDlmNmQ5NjQyNTM3LzEvYktPZXB5VnJ0Z290cHhpTU9QY0RVaVhIdGJrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80YS80NjQ2MzEtY2E4ZS00YzZhLWIwOTEtZDlmNmQ5NjQyNTM3
LzEvVkpGRlFmMGJsZWZBcjhoMS0tOTRlVTlWT0dzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdUwrAL
MA0GCSqGSIb3DQEBCwUAA4IBAQBg1ogzOfKRX5+qjptj1en07a6SDASaYJYMCly6
Eboh5G8xLZCS5B6LCyKlr2TC8nhZXhLOTxfHFMXZpyxu6nAYn1XMxJV6PRjJBeuK
BHlnLMikG6HAlUoKzI6dgziPUS4KRM6nciijloytOhWiUtBBmXfgi9XOZ5fGXude
84sQa8fxyo0KeaEXcLvUXqfw6aU2sSdoB3Y4fQEKOl9kDLqKyyMph25RCbSpd0Cr
9zxolzyRK5AE89g63BN+QTep7nOJRFQQr8jLoatjfHX+oWMvi3S+pW0ZBuU/W9iQ
MJwbwlEc8EilXBxdXjIx3xuw3+BMG2qU8W1dMNxr9NtMrPUy
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:18 2023 by rpki-client on console-ams.rpki-client.org