Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/e5c0b6-8788-4bb9-b885-3fbfb94d9100/1/aZRTZ3RFER0an6Boc6dHNVAxu40.roa
File: aZRTZ3RFER0an6Boc6dHNVAxu40.roa (raw, json)
Hash identifier: 7hLOUR9/gdeqYUQ0jrCLkEoUSGuGyfxnqHGg5JbWWPY=
Subject key identifier: 69:94:53:67:74:45:11:1D:1A:9F:A0:68:73:A7:47:35:50:31:BB:8D
Certificate issuer: /CN=09b9d37450b62ae3f144eb42ac52ce243b628a7a
Certificate serial: 01ED3F8F
Authority key identifier: 09:B9:D3:74:50:B6:2A:E3:F1:44:EB:42:AC:52:CE:24:3B:62:8A:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CbnTdFC2KuPxROtCrFLOJDtiino.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/e5c0b6-8788-4bb9-b885-3fbfb94d9100/1/aZRTZ3RFER0an6Boc6dHNVAxu40.roa
Signing time: Sat 01 Jan 2022 08:00:43 +0000
ROA not before: Sat 01 Jan 2022 08:00:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211066
IP address blocks: 2a0e:d487:f00e::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32325519 (0x1ed3f8f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09b9d37450b62ae3f144eb42ac52ce243b628a7a
Validity
Not Before: Jan 1 08:00:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=699453677445111d1a9fa06873a747355031bb8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:82:d2:85:04:e8:0a:d6:55:a6:b7:b0:cb:fb:
ee:82:db:52:54:1c:9e:7e:87:69:ca:89:29:62:d5:
0b:50:0b:20:3b:14:b9:80:6f:80:a9:c2:6e:7e:cf:
4b:df:82:ca:87:61:af:3d:b1:07:76:ae:2d:46:f2:
02:29:a3:f3:39:ea:92:54:88:b0:aa:59:00:a8:fe:
85:c9:ba:34:61:7c:3f:ee:17:b0:a9:9f:5d:a7:66:
c7:03:99:7e:62:1a:a8:22:58:99:1e:88:e1:99:0c:
b8:90:e2:1d:ab:7e:4a:ff:de:11:0e:e7:f3:af:8e:
1c:1e:41:4e:aa:5e:5c:2e:fd:5e:66:2a:91:99:82:
14:67:4b:0c:b1:e2:4d:d4:02:1b:fa:a5:2e:b6:0a:
9f:99:b4:ba:89:15:42:44:8b:17:44:11:66:b1:a7:
74:e0:77:6c:40:60:97:04:0f:68:ae:a3:bb:6f:29:
31:8f:50:a1:69:74:3e:7e:16:1f:a2:2c:2d:79:b6:
a2:0f:e3:57:22:55:f9:0c:c2:f1:55:48:7b:4f:85:
81:73:b7:1c:d0:05:67:5a:42:f5:38:55:7b:3d:ae:
19:77:b5:c0:33:a0:d5:47:93:f5:04:fa:fc:e7:a1:
ea:3f:df:52:cb:68:8a:83:bb:5e:ec:a0:22:d5:c8:
de:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:94:53:67:74:45:11:1D:1A:9F:A0:68:73:A7:47:35:50:31:BB:8D
X509v3 Authority Key Identifier:
keyid:09:B9:D3:74:50:B6:2A:E3:F1:44:EB:42:AC:52:CE:24:3B:62:8A:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CbnTdFC2KuPxROtCrFLOJDtiino.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/e5c0b6-8788-4bb9-b885-3fbfb94d9100/1/aZRTZ3RFER0an6Boc6dHNVAxu40.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/e5c0b6-8788-4bb9-b885-3fbfb94d9100/1/CbnTdFC2KuPxROtCrFLOJDtiino.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:d487:f00e::/48
Signature Algorithm: sha256WithRSAEncryption
8b:d8:70:84:84:e5:72:4e:c5:f6:1e:85:90:95:bb:ba:e8:0e:
be:b4:76:3d:b2:da:b9:d3:ad:bd:20:3d:e2:55:4c:08:67:62:
66:d7:ce:63:19:65:b8:60:29:93:fc:83:1f:d2:a9:63:49:32:
41:c7:b0:5e:3a:c9:8e:fb:3f:f0:af:8f:b6:0a:43:51:a4:d9:
b1:ca:14:a8:94:35:3d:4c:9c:e9:37:f4:3f:89:bc:de:74:d9:
a5:87:07:3c:01:9f:08:e2:1e:f2:f4:4d:ac:b5:81:9c:1b:48:
2c:16:be:97:9e:ef:f7:df:53:b2:e7:64:48:da:f0:ee:fe:90:
4a:fa:ee:1c:6a:e1:10:be:62:fd:fa:8a:b4:15:9b:83:fb:a7:
6d:07:7e:d1:8f:10:32:1f:24:8f:73:5f:31:81:7d:ef:60:cb:
3b:75:2a:bd:ff:6f:dd:4e:83:1c:d3:d0:74:eb:34:00:b6:05:
d1:b9:f8:2c:09:85:6b:1c:15:4f:5b:37:4e:07:29:01:b7:89:
4c:ef:e4:aa:a1:67:63:53:ee:e2:8a:8d:ea:f2:86:73:30:68:
37:c0:b6:80:0f:5e:4f:0c:fe:cb:3f:d1:0e:e4:05:de:74:ae:
d1:51:ef:4d:f6:cd:98:25:1f:f9:0e:99:6c:53:ac:6e:dd:b7:
35:2c:f6:cb
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEAe0/jzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
OWI5ZDM3NDUwYjYyYWUzZjE0NGViNDJhYzUyY2UyNDNiNjI4YTdhMB4XDTIyMDEw
MTA4MDA0M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjk5NDUzNjc3NDQ1
MTExZDFhOWZhMDY4NzNhNzQ3MzU1MDMxYmI4ZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAN6C0oUE6ArWVaa3sMv77oLbUlQcnn6HacqJKWLVC1ALIDsU
uYBvgKnCbn7PS9+Cyodhrz2xB3auLUbyAimj8znqklSIsKpZAKj+hcm6NGF8P+4X
sKmfXadmxwOZfmIaqCJYmR6I4ZkMuJDiHat+Sv/eEQ7n86+OHB5BTqpeXC79XmYq
kZmCFGdLDLHiTdQCG/qlLrYKn5m0uokVQkSLF0QRZrGndOB3bEBglwQPaK6ju28p
MY9QoWl0Pn4WH6IsLXm2og/jVyJV+QzC8VVIe0+FgXO3HNAFZ1pC9ThVez2uGXe1
wDOg1UeT9QT6/Oeh6j/fUstoioO7XuygItXI3o8CAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBRplFNndEURHRqfoGhzp0c1UDG7jTAfBgNVHSMEGDAWgBQJudN0ULYq4/FE
60KsUs4kO2KKejAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0NiblRkRkMyS3VQeFJPdENyRkxPSkR0aWluby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTAvZTVjMGI2LTg3ODgtNGJiOS1iODg1LTNmYmZiOTRkOTEwMC8x
L2FaUlRaM1JGRVIwYW42Qm9jNmRITlZBeHU0MC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTAv
ZTVjMGI2LTg3ODgtNGJiOS1iODg1LTNmYmZiOTRkOTEwMC8xL0NiblRkRkMyS3VQ
eFJPdENyRkxPSkR0aWluby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoO1IfwDjANBgkqhkiG9w0BAQsF
AAOCAQEAi9hwhITlck7F9h6FkJW7uugOvrR2PbLaudOtvSA94lVMCGdiZtfOYxll
uGApk/yDH9KpY0kyQcewXjrJjvs/8K+PtgpDUaTZscoUqJQ1PUyc6Tf0P4m83nTZ
pYcHPAGfCOIe8vRNrLWBnBtILBa+l57v999TsudkSNrw7v6QSvruHGrhEL5i/fqK
tBWbg/unbQd+0Y8QMh8kj3NfMYF972DLO3Uqvf9v3U6DHNPQdOs0ALYF0bn4LAmF
axwVT1s3TgcpAbeJTO/kqqFnY1Pu4oqN6vKGczBoN8C2gA9eTwz+yz/RDuQF3nSu
0VHvTfbNmCUf+Q6ZbFOsbt23NSz2yw==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:16:45 2025 by rpki-client