Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/866243-4a17-4521-adbe-9fc5fea1f8ee/1/L20oECBtqYgdAn4vFS26RJrGBeo.roa
File: L20oECBtqYgdAn4vFS26RJrGBeo.roa (raw, json)
Hash identifier: TtRRZI4bmp9rwrYqUmVyhv2QNY2UbviNFxL/j+3Jnlo=
Subject key identifier: 2F:6D:28:10:20:6D:A9:88:1D:02:7E:2F:15:2D:BA:44:9A:C6:05:EA
Certificate issuer: /CN=a3156e1bb9e544a66e2164d15491e2e16f0078c5
Certificate serial: 0822D983
Authority key identifier: A3:15:6E:1B:B9:E5:44:A6:6E:21:64:D1:54:91:E2:E1:6F:00:78:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oxVuG7nlRKZuIWTRVJHi4W8AeMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/866243-4a17-4521-adbe-9fc5fea1f8ee/1/L20oECBtqYgdAn4vFS26RJrGBeo.roa
Signing time: Sat 01 Jan 2022 04:03:45 +0000
ROA not before: Sat 01 Jan 2022 04:03:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41230
IP address blocks: 2a0e:2a40::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136501635 (0x822d983)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3156e1bb9e544a66e2164d15491e2e16f0078c5
Validity
Not Before: Jan 1 04:03:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2f6d2810206da9881d027e2f152dba449ac605ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:e6:ee:63:da:11:57:92:df:17:df:3a:23:23:
23:21:f5:cb:cb:ac:8d:1d:0f:bf:db:d0:7f:5f:f9:
e8:a1:fa:9e:c2:8a:68:7b:54:a8:aa:ea:ac:6c:dc:
7b:59:a1:32:c2:fe:44:4d:48:68:0a:5a:34:54:ad:
ba:ae:19:90:10:ed:30:4c:ed:e5:9f:b9:73:f1:32:
8c:f2:48:c1:c2:45:e4:b9:12:e7:ab:77:12:f4:89:
e5:9a:a6:e2:31:a3:23:4a:4d:a4:36:a0:1a:99:30:
92:72:37:35:bd:49:69:c8:d2:63:f2:92:00:f2:c3:
79:cc:a4:92:90:79:3e:87:d6:d9:cd:10:4d:a2:9d:
42:fb:f9:3d:16:96:b2:f4:c9:dc:a6:3d:b5:9d:f3:
f6:37:f7:6d:70:72:26:53:b9:d0:c3:83:05:6b:11:
40:17:72:4c:31:3f:eb:c0:d3:1c:6a:d3:4b:73:cd:
60:41:29:ac:c2:7c:48:6a:a8:01:17:2f:b4:a9:49:
b4:ed:bc:1f:fe:98:fc:ac:12:3d:02:bd:39:9d:61:
c3:80:20:fe:ea:9b:92:bf:ce:4b:7b:45:ab:bc:b8:
20:35:6d:cb:d5:fc:41:17:9a:d2:cd:e7:9a:90:fe:
fe:cd:74:19:eb:e0:92:47:19:d0:d8:0b:3d:0a:cf:
4e:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:6D:28:10:20:6D:A9:88:1D:02:7E:2F:15:2D:BA:44:9A:C6:05:EA
X509v3 Authority Key Identifier:
keyid:A3:15:6E:1B:B9:E5:44:A6:6E:21:64:D1:54:91:E2:E1:6F:00:78:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oxVuG7nlRKZuIWTRVJHi4W8AeMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/866243-4a17-4521-adbe-9fc5fea1f8ee/1/L20oECBtqYgdAn4vFS26RJrGBeo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/866243-4a17-4521-adbe-9fc5fea1f8ee/1/oxVuG7nlRKZuIWTRVJHi4W8AeMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:2a40::/29
Signature Algorithm: sha256WithRSAEncryption
45:3d:8c:94:2c:88:d6:1d:4f:79:bd:a9:41:8a:8a:f1:cd:c6:
df:64:29:06:83:62:55:30:89:7d:26:c3:30:d3:ab:70:e6:22:
d3:05:42:2a:ab:11:0b:b8:e0:6b:e0:0e:ca:1b:ee:c5:bb:ce:
68:ae:ea:d1:7e:46:12:f1:16:4d:02:d2:91:7a:21:11:26:09:
b4:45:53:cb:0b:f6:28:2b:45:83:72:8d:a1:fe:08:88:14:a7:
92:3a:07:52:6e:9b:bc:f8:07:28:06:07:ea:49:b8:37:1b:d9:
28:23:d6:db:a3:3c:58:bd:3e:12:3b:7f:85:f4:03:9d:b9:5c:
60:1b:31:c6:82:c5:66:a0:55:5b:8b:4e:d0:d7:1d:d2:1e:be:
de:c1:af:0d:38:ab:6e:27:f7:f6:0f:a7:30:a2:a9:65:22:f1:
25:3f:19:cd:34:2a:80:8b:cc:4f:08:b5:08:13:cb:9b:72:eb:
57:81:8a:7d:6b:ff:fc:96:70:d7:10:5c:1b:96:ad:e1:17:2a:
3f:69:17:70:9f:b5:32:22:5c:55:e5:7d:2b:a6:e7:ca:36:9f:
16:88:bd:85:dc:05:56:ba:96:36:40:9f:45:5d:9f:33:49:ac:
d3:16:88:ca:af:39:2c:bb:c8:0e:81:77:a4:fa:1b:5c:e8:27:
85:a4:bf:ac
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgIECCLZgzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
MzE1NmUxYmI5ZTU0NGE2NmUyMTY0ZDE1NDkxZTJlMTZmMDA3OGM1MB4XDTIyMDEw
MTA0MDM0NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMmY2ZDI4MTAyMDZk
YTk4ODFkMDI3ZTJmMTUyZGJhNDQ5YWM2MDVlYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANjm7mPaEVeS3xffOiMjIyH1y8usjR0Pv9vQf1/56KH6nsKK
aHtUqKrqrGzce1mhMsL+RE1IaApaNFStuq4ZkBDtMEzt5Z+5c/EyjPJIwcJF5LkS
56t3EvSJ5Zqm4jGjI0pNpDagGpkwknI3Nb1JacjSY/KSAPLDecykkpB5PofW2c0Q
TaKdQvv5PRaWsvTJ3KY9tZ3z9jf3bXByJlO50MODBWsRQBdyTDE/68DTHGrTS3PN
YEEprMJ8SGqoARcvtKlJtO28H/6Y/KwSPQK9OZ1hw4Ag/uqbkr/OS3tFq7y4IDVt
y9X8QRea0s3nmpD+/s10GevgkkcZ0NgLPQrPTtkCAwEAAaOCAgowggIGMB0GA1Ud
DgQWBBQvbSgQIG2piB0Cfi8VLbpEmsYF6jAfBgNVHSMEGDAWgBSjFW4bueVEpm4h
ZNFUkeLhbwB4xTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L294VnVHN25sUktadUlXVFJWSkhpNFc4QWVNVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNWMvODY2MjQzLTRhMTctNDUyMS1hZGJlLTlmYzVmZWExZjhlZS8x
L0wyMG9FQ0J0cVlnZEFuNHZGUzI2UkpyR0Jlby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWMv
ODY2MjQzLTRhMTctNDUyMS1hZGJlLTlmYzVmZWExZjhlZS8xL294VnVHN25sUkta
dUlXVFJWSkhpNFc4QWVNVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAg
BggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFAyoOKkAwDQYJKoZIhvcNAQELBQAD
ggEBAEU9jJQsiNYdT3m9qUGKivHNxt9kKQaDYlUwiX0mwzDTq3DmItMFQiqrEQu4
4GvgDsob7sW7zmiu6tF+RhLxFk0C0pF6IREmCbRFU8sL9igrRYNyjaH+CIgUp5I6
B1Jum7z4BygGB+pJuDcb2Sgj1tujPFi9PhI7f4X0A525XGAbMcaCxWagVVuLTtDX
HdIevt7Brw04q24n9/YPpzCiqWUi8SU/Gc00KoCLzE8ItQgTy5ty61eBin1r//yW
cNcQXBuWreEXKj9pF3CftTIiXFXlfSum58o2nxaIvYXcBVa6ljZAn0VdnzNJrNMW
iMqvOSy7yA6Bd6T6G1zoJ4Wkv6w=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:12:04 2024 by rpki-client on console-ams.rpki-client.org