Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/hb5gpWluOLOZSMbTCNSyN8fXlvE.roa
File: hb5gpWluOLOZSMbTCNSyN8fXlvE.roa (raw, json)
Hash identifier: 29Ta3plhf9Y0bmT+rPwxf44nwMiR8WY8fGCA/wuVT6c=
Subject key identifier: 85:BE:60:A5:69:6E:38:B3:99:48:C6:D3:08:D4:B2:37:C7:D7:96:F1
Certificate issuer: /CN=54914541fd1b95e7c0afc875fbef78794f55386b
Certificate serial: 018465E2AAE8DC3080403126E71A0376FC02
Authority key identifier: 54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/hb5gpWluOLOZSMbTCNSyN8fXlvE.roa
Signing time: Fri 11 Nov 2022 08:51:04 +0000
ROA not before: Fri 11 Nov 2022 08:51:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201445
IP address blocks: 2a06:a005:1c79::/48 maxlen: 48
2a06:a005:150f::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:65:e2:aa:e8:dc:30:80:40:31:26:e7:1a:03:76:fc:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54914541fd1b95e7c0afc875fbef78794f55386b
Validity
Not Before: Nov 11 08:51:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=85be60a5696e38b39948c6d308d4b237c7d796f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:93:32:0b:0c:5b:6e:08:78:f1:79:85:e4:64:
bf:f8:8a:cd:1a:a9:4d:71:da:b3:dc:2e:b9:d6:c2:
6c:47:c8:61:48:d6:32:21:fe:3a:91:d1:b2:6c:fb:
ca:4e:09:6a:79:6d:b8:ef:fd:31:aa:8b:9b:bc:8d:
55:c3:30:2b:20:ab:0f:46:66:e7:2d:2b:43:3c:2d:
f2:b9:f4:1d:1c:18:40:7c:13:37:73:e6:47:57:84:
06:52:92:47:71:b5:b2:cc:02:fc:46:d1:b7:81:1a:
23:cc:77:ae:d9:98:05:79:fd:53:71:70:8c:64:ea:
3c:33:75:e5:dd:2d:eb:f9:5b:0c:28:4b:a0:f7:a6:
9d:c4:22:a4:8a:41:69:14:72:7e:21:d4:10:e7:a3:
1d:4a:94:91:f3:ae:0e:0c:ea:f5:20:74:ae:38:62:
54:8a:e3:de:89:e5:6c:85:5d:90:0f:14:ef:74:91:
36:be:98:27:ac:71:2d:7f:05:3a:1e:60:19:85:b9:
d8:3a:70:09:b0:5e:f8:80:37:53:5e:44:f8:d4:e8:
f8:9a:a8:2a:ac:9a:a3:d1:4d:76:43:30:95:a8:dc:
0d:21:29:fc:df:5d:60:b1:70:32:0b:f3:98:80:0c:
2a:31:df:76:dc:05:74:82:c9:03:e1:f6:0f:2d:c0:
5a:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:BE:60:A5:69:6E:38:B3:99:48:C6:D3:08:D4:B2:37:C7:D7:96:F1
X509v3 Authority Key Identifier:
keyid:54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/hb5gpWluOLOZSMbTCNSyN8fXlvE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/VJFFQf0blefAr8h1--94eU9VOGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:150f::/48
2a06:a005:1c79::/48
Signature Algorithm: sha256WithRSAEncryption
00:42:f3:f3:88:fa:ab:88:27:dd:8e:6b:de:b1:c1:bb:79:c2:
7b:27:1a:0b:04:ee:d2:0a:b4:ec:1f:43:23:c2:b8:6e:dc:c5:
c9:dc:4b:c9:49:3f:ee:cb:44:9c:49:b1:9e:49:a9:7f:08:59:
83:cd:fd:b5:3b:a5:44:f8:b3:a0:6a:56:e0:fe:59:7a:b5:7d:
aa:b4:49:4a:19:7e:f1:31:8d:cd:d5:a5:f6:9e:1e:99:bb:2e:
a8:12:6a:46:fb:0a:3c:bc:6b:90:90:81:bf:ed:f0:73:53:a7:
6f:b9:13:f2:ea:a9:aa:3f:a2:11:8d:20:68:ed:ea:17:82:a2:
94:eb:3e:56:79:bb:bf:50:db:f0:b3:3b:1a:7a:0b:c6:90:f7:
42:bd:82:f0:a2:00:46:14:f3:7c:b2:be:0d:12:db:bb:10:04:
59:34:89:97:cf:d1:a0:00:ee:ce:42:a3:93:1e:a0:88:79:8e:
0b:71:99:35:c4:91:5d:48:8e:6c:dd:0b:6b:1b:d5:d2:3b:3f:
f4:d3:86:da:6b:49:df:5c:02:be:32:97:c1:b3:6c:80:d4:dc:
25:0b:00:b4:c3:f4:6f:2d:94:29:c0:2f:1c:85:c1:3e:f6:bb:
a8:95:b9:9e:c4:00:95:5d:33:ba:f0:ea:48:f5:41:0e:f3:a2:
4c:2f:60:f7
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAYRl4qro3DCAQDEm5xoDdvwCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU0OTE0NTQxZmQxYjk1ZTdjMGFmYzg3NWZiZWY3ODc5NGY1
NTM4NmIwHhcNMjIxMTExMDg1MTA0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NWJlNjBhNTY5NmUzOGIzOTk0OGM2ZDMwOGQ0YjIzN2M3ZDc5NmYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyZMyCwxbbgh48XmF5GS/+IrNGqlN
cdqz3C651sJsR8hhSNYyIf46kdGybPvKTglqeW247/0xqoubvI1VwzArIKsPRmbn
LStDPC3yufQdHBhAfBM3c+ZHV4QGUpJHcbWyzAL8RtG3gRojzHeu2ZgFef1TcXCM
ZOo8M3Xl3S3r+VsMKEug96adxCKkikFpFHJ+IdQQ56MdSpSR864ODOr1IHSuOGJU
iuPeieVshV2QDxTvdJE2vpgnrHEtfwU6HmAZhbnYOnAJsF74gDdTXkT41Oj4mqgq
rJqj0U12QzCVqNwNISn8311gsXAyC/OYgAwqMd923AV0gskD4fYPLcBa/QIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFIW+YKVpbjizmUjG0wjUsjfH15bxMB8GA1UdIwQY
MBaAFFSRRUH9G5XnwK/IdfvveHlPVThrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVkpGRlFmMGJsZWZBcjhoMS0tOTRlVTlWT0dzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS80NjQ2MzEtY2E4ZS00YzZhLWIwOTEt
ZDlmNmQ5NjQyNTM3LzEvaGI1Z3BXbHVPTE9aU01iVENOU3lOOGZYbHZFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80YS80NjQ2MzEtY2E4ZS00YzZhLWIwOTEtZDlmNmQ5NjQyNTM3
LzEvVkpGRlFmMGJsZWZBcjhoMS0tOTRlVTlWT0dzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAAjASAwcAKgagBRUP
AwcAKgagBRx5MA0GCSqGSIb3DQEBCwUAA4IBAQAAQvPziPqriCfdjmvescG7ecJ7
JxoLBO7SCrTsH0Mjwrhu3MXJ3EvJST/uy0ScSbGeSal/CFmDzf21O6VE+LOgalbg
/ll6tX2qtElKGX7xMY3N1aX2nh6Zuy6oEmpG+wo8vGuQkIG/7fBzU6dvuRPy6qmq
P6IRjSBo7eoXgqKU6z5Webu/UNvwszsaegvGkPdCvYLwogBGFPN8sr4NEtu7EARZ
NImXz9GgAO7OQqOTHqCIeY4LcZk1xJFdSI5s3QtrG9XSOz/004baa0nfXAK+MpfB
s2yA1NwlCwC0w/RvLZQpwC8chcE+9ruolbmexACVXTO68OpI9UEO86JML2D3
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:37 2023 by rpki-client on console-fra.rpki-client.org