Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/67d028-67f5-444a-8afd-f0a660657e83/1/klcUbkBsCXfLme3247Pg2msJtnQ.roa
File: klcUbkBsCXfLme3247Pg2msJtnQ.roa (raw, json)
Hash identifier: tXeJA3fsTnlsX+apPue8ubrQSKtQwYD3c3X4Cy6lk2I=
Subject key identifier: 92:57:14:6E:40:6C:09:77:CB:99:ED:F6:E3:B3:E0:DA:6B:09:B6:74
Certificate issuer: /CN=871ba47d7bb1246d5b70078372569f94f358fb06
Certificate serial: 0214C820
Authority key identifier: 87:1B:A4:7D:7B:B1:24:6D:5B:70:07:83:72:56:9F:94:F3:58:FB:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hxukfXuxJG1bcAeDclaflPNY-wY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/67d028-67f5-444a-8afd-f0a660657e83/1/klcUbkBsCXfLme3247Pg2msJtnQ.roa
Signing time: Thu 02 Jun 2022 12:28:21 +0000
ROA not before: Thu 02 Jun 2022 12:28:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210661
IP address blocks: 2a11:78c0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34916384 (0x214c820)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=871ba47d7bb1246d5b70078372569f94f358fb06
Validity
Not Before: Jun 2 12:28:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9257146e406c0977cb99edf6e3b3e0da6b09b674
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:19:f6:c8:1b:3d:63:8b:3f:5a:1a:1c:9d:c0:
54:ad:ef:ac:70:37:4b:9d:fb:41:36:a4:8d:08:1d:
fc:5b:fa:36:a8:de:50:50:0f:b8:0e:54:bf:7c:a7:
c8:12:2d:cf:ec:47:39:d9:77:32:5e:d5:db:b1:a6:
cc:b2:23:7d:d3:1d:34:bb:72:58:f8:5b:f8:75:9d:
71:03:48:f4:a2:2d:cc:fa:55:63:72:65:e3:90:3c:
07:30:dc:98:f7:2c:96:48:25:cc:df:a9:b7:a4:3d:
f5:a9:a8:a4:ce:e8:bf:9e:9d:18:67:7d:1f:ea:8f:
1d:84:bd:43:7f:e7:45:85:b9:47:25:66:3d:5d:b9:
fa:99:14:76:a9:b8:f9:df:bd:80:c8:e1:6b:e1:68:
30:05:f7:55:b9:8c:e2:c8:b4:94:a1:f7:ea:07:86:
9a:a4:f2:24:9d:0a:1e:43:bb:cb:1b:10:00:7d:0d:
92:fb:ad:fb:92:13:02:63:95:15:bb:14:57:ef:2f:
5b:1e:f5:80:16:0c:fa:31:b4:69:a4:9a:1a:ac:83:
07:eb:31:19:d0:f3:67:87:88:d8:a0:e6:de:f2:52:
ff:d9:17:8c:ef:79:ee:37:c7:c1:5f:27:ee:4f:55:
26:36:ee:ca:28:4c:2d:ee:21:cc:7a:81:e7:0b:bf:
57:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:57:14:6E:40:6C:09:77:CB:99:ED:F6:E3:B3:E0:DA:6B:09:B6:74
X509v3 Authority Key Identifier:
keyid:87:1B:A4:7D:7B:B1:24:6D:5B:70:07:83:72:56:9F:94:F3:58:FB:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hxukfXuxJG1bcAeDclaflPNY-wY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/67d028-67f5-444a-8afd-f0a660657e83/1/klcUbkBsCXfLme3247Pg2msJtnQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/67d028-67f5-444a-8afd-f0a660657e83/1/hxukfXuxJG1bcAeDclaflPNY-wY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:78c0::/29
Signature Algorithm: sha256WithRSAEncryption
50:c3:bc:92:f1:7a:81:7e:1c:13:3d:43:7c:4a:12:41:30:6d:
4c:71:10:38:2e:34:86:2e:56:b1:e3:9d:92:3a:99:06:6c:be:
3a:f2:05:91:8e:10:eb:1f:a6:3c:55:aa:0a:b0:4a:b5:e6:58:
e6:a7:68:50:62:d6:fd:70:8b:ce:f2:66:a4:12:ed:62:70:0b:
b0:ab:e1:d5:dd:0e:77:60:b8:fa:db:9d:e5:32:75:d3:04:f7:
d1:e4:d7:eb:f0:3b:96:94:28:49:f9:9e:e8:72:b3:90:84:c3:
3b:19:e6:f7:c2:f3:29:16:83:67:9a:ba:a2:48:04:78:50:c8:
d5:1e:19:fa:ab:e4:91:0d:5c:e1:4c:63:66:47:12:38:4c:06:
6b:65:6d:67:23:2a:85:0f:95:ea:72:b1:88:fa:fc:c2:5d:74:
d2:c9:c1:a4:51:c6:d9:84:ae:91:8c:58:f4:95:16:5b:ea:17:
46:13:85:65:d4:ab:f6:77:c7:ea:b7:b0:60:46:77:55:99:4f:
34:0f:82:7f:ec:61:19:ce:f0:ca:ac:6d:14:16:92:13:67:d1:
f1:53:b2:8e:a2:aa:12:f0:16:f3:fc:78:be:08:46:6c:ad:25:
1e:63:5a:9d:b2:03:da:05:35:a9:2e:4e:88:39:f3:14:a2:21:
a5:6a:f6:37
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgIEAhTIIDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
NzFiYTQ3ZDdiYjEyNDZkNWI3MDA3ODM3MjU2OWY5NGYzNThmYjA2MB4XDTIyMDYw
MjEyMjgyMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTI1NzE0NmU0MDZj
MDk3N2NiOTllZGY2ZTNiM2UwZGE2YjA5YjY3NDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOwZ9sgbPWOLP1oaHJ3AVK3vrHA3S537QTakjQgd/Fv6Nqje
UFAPuA5Uv3ynyBItz+xHOdl3Ml7V27GmzLIjfdMdNLtyWPhb+HWdcQNI9KItzPpV
Y3Jl45A8BzDcmPcslkglzN+pt6Q99amopM7ov56dGGd9H+qPHYS9Q3/nRYW5RyVm
PV25+pkUdqm4+d+9gMjha+FoMAX3VbmM4si0lKH36geGmqTyJJ0KHkO7yxsQAH0N
kvut+5ITAmOVFbsUV+8vWx71gBYM+jG0aaSaGqyDB+sxGdDzZ4eI2KDm3vJS/9kX
jO957jfHwV8n7k9VJjbuyihMLe4hzHqB5wu/V/kCAwEAAaOCAgowggIGMB0GA1Ud
DgQWBBSSVxRuQGwJd8uZ7fbjs+Daawm2dDAfBgNVHSMEGDAWgBSHG6R9e7EkbVtw
B4NyVp+U81j7BjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2h4dWtmWHV4SkcxYmNBZURjbGFmbFBOWS13WS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGEvNjdkMDI4LTY3ZjUtNDQ0YS04YWZkLWYwYTY2MDY1N2U4My8x
L2tsY1Via0JzQ1hmTG1lMzI0N1BnMm1zSnRuUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGEv
NjdkMDI4LTY3ZjUtNDQ0YS04YWZkLWYwYTY2MDY1N2U4My8xL2h4dWtmWHV4Skcx
YmNBZURjbGFmbFBOWS13WS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAg
BggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFAyoReMAwDQYJKoZIhvcNAQELBQAD
ggEBAFDDvJLxeoF+HBM9Q3xKEkEwbUxxEDguNIYuVrHjnZI6mQZsvjryBZGOEOsf
pjxVqgqwSrXmWOanaFBi1v1wi87yZqQS7WJwC7Cr4dXdDndguPrbneUyddME99Hk
1+vwO5aUKEn5nuhys5CEwzsZ5vfC8ykWg2eauqJIBHhQyNUeGfqr5JENXOFMY2ZH
EjhMBmtlbWcjKoUPlepysYj6/MJddNLJwaRRxtmErpGMWPSVFlvqF0YThWXUq/Z3
x+q3sGBGd1WZTzQPgn/sYRnO8MqsbRQWkhNn0fFTso6iqhLwFvP8eL4IRmytJR5j
Wp2yA9oFNakuTog58xSiIaVq9jc=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:14 2024 by rpki-client on console-fra.rpki-client.org