Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/6b646e-849b-49c7-afd4-298945b0f599/1/aLStygxJu7sIM-Wq7t7FXX3Khyg.roa
File: aLStygxJu7sIM-Wq7t7FXX3Khyg.roa (raw, json)
Hash identifier: MPt/jbBbWwlz7iV/Pgwue9UiJT0efIiEO6+zmc+EKGo=
Subject key identifier: 68:B4:AD:CA:0C:49:BB:BB:08:33:E5:AA:EE:DE:C5:5D:7D:CA:87:28
Certificate issuer: /CN=64e995f046e92f02b216a0478a0060f3cb9ef7b3
Certificate serial: 0184AED69B89E59514C1DC53BC4706E186E3
Authority key identifier: 64:E9:95:F0:46:E9:2F:02:B2:16:A0:47:8A:00:60:F3:CB:9E:F7:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZOmV8EbpLwKyFqBHigBg88ue97M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/6b646e-849b-49c7-afd4-298945b0f599/1/aLStygxJu7sIM-Wq7t7FXX3Khyg.roa
Signing time: Fri 25 Nov 2022 12:50:10 +0000
ROA not before: Fri 25 Nov 2022 12:50:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204840
IP address blocks: 2001:678:3f0::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:ae:d6:9b:89:e5:95:14:c1:dc:53:bc:47:06:e1:86:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64e995f046e92f02b216a0478a0060f3cb9ef7b3
Validity
Not Before: Nov 25 12:50:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=68b4adca0c49bbbb0833e5aaeedec55d7dca8728
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:39:1f:29:54:40:6c:ab:55:20:6e:c9:0c:1a:
25:77:30:8f:cd:48:3c:50:98:49:c0:74:06:02:36:
ef:4d:a3:5e:8a:c5:81:bd:cd:6e:96:5e:eb:f9:aa:
4d:65:61:cf:02:a8:61:04:ef:20:01:36:da:d5:59:
99:bc:2b:22:93:23:8d:b1:4b:ad:f9:7b:ff:ff:68:
13:bb:3e:a1:46:25:80:d3:bd:c5:76:80:01:5b:9a:
5a:a4:9a:3e:1e:4f:67:e4:7a:30:8b:e7:b0:f7:59:
3d:67:52:90:c7:24:46:55:e0:77:7b:fb:92:d1:92:
8c:b8:d8:24:9e:12:d9:e0:e5:35:20:cc:f9:e4:65:
d8:d2:09:35:32:08:b4:87:f9:37:66:67:01:7f:c4:
80:18:6b:a1:17:a5:db:a1:78:0f:c6:a2:f9:a2:3d:
a6:62:07:80:e3:02:55:69:7c:c0:b4:e5:9a:7e:a2:
30:fd:91:8d:b7:33:d9:02:fe:26:a1:72:cd:3f:c3:
94:a5:69:cb:10:f2:17:9e:7b:97:18:19:b3:94:99:
76:20:d9:51:69:cb:f2:cc:47:21:45:ae:ae:32:c5:
e5:be:b3:dd:99:5f:e4:50:bd:39:53:c7:ac:db:3a:
4c:35:5d:ac:29:05:9d:c0:17:03:c1:51:ff:6b:d4:
46:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:B4:AD:CA:0C:49:BB:BB:08:33:E5:AA:EE:DE:C5:5D:7D:CA:87:28
X509v3 Authority Key Identifier:
keyid:64:E9:95:F0:46:E9:2F:02:B2:16:A0:47:8A:00:60:F3:CB:9E:F7:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZOmV8EbpLwKyFqBHigBg88ue97M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/6b646e-849b-49c7-afd4-298945b0f599/1/aLStygxJu7sIM-Wq7t7FXX3Khyg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/6b646e-849b-49c7-afd4-298945b0f599/1/ZOmV8EbpLwKyFqBHigBg88ue97M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:3f0::/48
Signature Algorithm: sha256WithRSAEncryption
78:03:2e:af:cf:4b:a3:23:09:70:ba:2e:76:dc:95:98:ed:16:
86:70:46:e0:fb:8b:0b:e8:e6:ad:c7:ca:cd:c2:b2:82:bb:64:
08:1d:22:53:d8:d1:43:a3:86:3b:93:2c:c8:7d:d5:8a:2d:11:
70:00:6d:98:86:91:97:a0:a0:69:97:85:bf:56:85:ce:a4:cd:
fb:08:6b:c7:90:7a:0c:a5:8d:78:ff:6c:26:59:ee:46:b9:db:
5f:2a:ae:86:63:9a:db:cc:b3:c6:dc:c5:9f:41:19:1a:11:36:
e4:d0:41:ef:73:04:c8:8e:d1:64:84:f0:ab:8b:8e:5a:9f:5e:
b6:1c:56:c2:2c:36:c5:88:91:9f:bb:8d:3d:59:08:8a:3e:91:
fa:9f:2c:2b:2d:a9:a3:5b:c9:32:fd:f0:d2:40:92:e8:40:db:
7c:29:ae:c9:82:d6:73:3d:22:00:86:cd:94:78:88:42:82:52:
de:5b:45:fd:0c:46:43:8f:b5:a0:55:a5:a1:53:5d:2e:3d:0c:
ff:20:e3:b5:9a:b9:73:c5:27:81:36:fd:db:fa:3b:0a:52:f2:
db:53:7f:6d:50:db:0e:4e:3f:5e:d8:5b:ae:83:2c:1f:6c:48:
af:87:b4:56:b8:c6:0b:11:98:6f:33:7e:c2:95:e9:ae:00:c8:
b9:34:bd:b7
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYSu1puJ5ZUUwdxTvEcG4YbjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY0ZTk5NWYwNDZlOTJmMDJiMjE2YTA0NzhhMDA2MGYzY2I5
ZWY3YjMwHhcNMjIxMTI1MTI1MDEwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2OGI0YWRjYTBjNDliYmJiMDgzM2U1YWFlZWRlYzU1ZDdkY2E4NzI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAizkfKVRAbKtVIG7JDBoldzCPzUg8
UJhJwHQGAjbvTaNeisWBvc1ull7r+apNZWHPAqhhBO8gATba1VmZvCsikyONsUut
+Xv//2gTuz6hRiWA073FdoABW5papJo+Hk9n5Howi+ew91k9Z1KQxyRGVeB3e/uS
0ZKMuNgknhLZ4OU1IMz55GXY0gk1Mgi0h/k3ZmcBf8SAGGuhF6XboXgPxqL5oj2m
YgeA4wJVaXzAtOWafqIw/ZGNtzPZAv4moXLNP8OUpWnLEPIXnnuXGBmzlJl2INlR
acvyzEchRa6uMsXlvrPdmV/kUL05U8es2zpMNV2sKQWdwBcDwVH/a9RGIwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFGi0rcoMSbu7CDPlqu7exV19yocoMB8GA1UdIwQY
MBaAFGTplfBG6S8CshagR4oAYPPLnvezMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWk9tVjhFYnBMd0t5RnFCSGlnQmc4OHVlOTdNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi82YjY0NmUtODQ5Yi00OWM3LWFmZDQt
Mjk4OTQ1YjBmNTk5LzEvYUxTdHlneEp1N3NJTS1XcTd0N0ZYWDNLaHlnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yi82YjY0NmUtODQ5Yi00OWM3LWFmZDQtMjk4OTQ1YjBmNTk5
LzEvWk9tVjhFYnBMd0t5RnFCSGlnQmc4OHVlOTdNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeAPw
MA0GCSqGSIb3DQEBCwUAA4IBAQB4Ay6vz0ujIwlwui523JWY7RaGcEbg+4sL6Oat
x8rNwrKCu2QIHSJT2NFDo4Y7kyzIfdWKLRFwAG2YhpGXoKBpl4W/VoXOpM37CGvH
kHoMpY14/2wmWe5GudtfKq6GY5rbzLPG3MWfQRkaETbk0EHvcwTIjtFkhPCri45a
n162HFbCLDbFiJGfu409WQiKPpH6nywrLamjW8ky/fDSQJLoQNt8Ka7JgtZzPSIA
hs2UeIhCglLeW0X9DEZDj7WgVaWhU10uPQz/IOO1mrlzxSeBNv3b+jsKUvLbU39t
UNsOTj9e2FuugywfbEivh7RWuMYLEZhvM37ClemuAMi5NL23
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:17:43 2025 by rpki-client