Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/6b4827-066d-454b-a199-4ac2a2b6e344/1/U5VIJ-g3Tr9DaAcZeWMO7YYEnd4.roa
File: U5VIJ-g3Tr9DaAcZeWMO7YYEnd4.roa (raw, json)
Hash identifier: UhlSc1HEamdWEPXjDc+AL11uYE2RC/qdgHJqeuYLbH8=
Subject key identifier: 53:95:48:27:E8:37:4E:BF:43:68:07:19:79:63:0E:ED:86:04:9D:DE
Certificate issuer: /CN=7031d9c13adb74038204b166621524301628e877
Certificate serial: 105C138D
Authority key identifier: 70:31:D9:C1:3A:DB:74:03:82:04:B1:66:62:15:24:30:16:28:E8:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cDHZwTrbdAOCBLFmYhUkMBYo6Hc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/6b4827-066d-454b-a199-4ac2a2b6e344/1/U5VIJ-g3Tr9DaAcZeWMO7YYEnd4.roa
Signing time: Sat 01 Jan 2022 05:04:40 +0000
ROA not before: Sat 01 Jan 2022 05:04:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 680
IP address blocks: 141.80.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 274469773 (0x105c138d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7031d9c13adb74038204b166621524301628e877
Validity
Not Before: Jan 1 05:04:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=53954827e8374ebf4368071979630eed86049dde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:2e:d9:f5:7d:02:86:3c:92:77:e0:8c:5c:a4:
f4:d6:a0:be:29:56:86:65:15:85:21:68:94:a7:3a:
80:73:6e:26:c6:b3:1e:ba:e9:eb:07:36:59:01:62:
ed:5d:2f:01:3a:2e:ce:a4:d9:ea:46:07:3a:ca:9b:
32:d7:49:c6:7a:e0:e4:c8:64:cf:33:aa:46:92:c9:
2c:f3:97:fb:ad:9b:b8:ca:7e:8c:44:8b:4d:ed:59:
3f:91:76:48:eb:fe:b6:21:0b:15:ae:74:01:86:68:
15:fb:59:58:8a:0b:a1:b4:69:f2:15:a2:ea:8c:9a:
a7:2b:b4:38:aa:cd:23:4c:96:dd:64:a1:28:66:ea:
78:06:68:e1:3e:44:e4:14:30:98:bc:8a:7d:0b:02:
aa:c1:a4:23:fb:79:f3:95:5e:54:05:67:ff:81:a0:
21:5c:15:3a:17:06:29:08:f0:5c:e8:f3:3e:73:bf:
b1:67:4a:df:ae:ad:9c:0a:f5:1e:eb:fd:20:4b:07:
d9:7d:3b:81:76:bb:fa:9b:aa:25:d3:86:85:01:80:
ca:12:7e:88:14:89:26:9b:0c:43:78:47:4e:fa:26:
b7:39:97:fb:50:61:66:e5:e1:21:eb:40:9c:e6:b4:
71:84:67:af:cf:c1:03:9b:33:b7:34:2f:23:27:89:
ee:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:95:48:27:E8:37:4E:BF:43:68:07:19:79:63:0E:ED:86:04:9D:DE
X509v3 Authority Key Identifier:
keyid:70:31:D9:C1:3A:DB:74:03:82:04:B1:66:62:15:24:30:16:28:E8:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cDHZwTrbdAOCBLFmYhUkMBYo6Hc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/6b4827-066d-454b-a199-4ac2a2b6e344/1/U5VIJ-g3Tr9DaAcZeWMO7YYEnd4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/6b4827-066d-454b-a199-4ac2a2b6e344/1/cDHZwTrbdAOCBLFmYhUkMBYo6Hc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.80.0.0/16
Signature Algorithm: sha256WithRSAEncryption
09:0d:ad:7c:e6:12:47:ea:8e:c2:a4:a4:fc:d0:11:13:c9:f1:
24:fe:91:9e:c4:83:84:91:07:7f:91:81:3f:35:f9:2e:d4:0a:
33:e7:f4:68:7e:13:83:8f:2b:b0:7f:ff:21:29:d2:41:f1:de:
77:1d:19:c6:2e:c6:6c:fc:5a:fa:4b:6c:72:e8:18:ba:83:3a:
1b:10:43:d0:48:b7:a4:b8:53:ef:33:31:30:a6:5d:53:a8:ea:
50:1b:e2:7d:c6:6b:ca:22:62:60:d6:94:ed:79:fe:5c:6a:7d:
2a:7f:ce:68:b8:f8:74:2b:0f:26:83:0b:07:73:4b:b3:ef:fe:
38:ca:71:a6:44:e6:02:60:15:54:20:ba:0a:8c:38:01:df:fe:
aa:ab:82:fd:12:37:d7:5b:44:22:30:1c:b8:8c:da:84:36:40:
af:06:f9:66:85:ed:47:d2:cf:b6:c2:dc:56:b5:23:d2:d9:87:
d2:3c:fb:b4:97:87:8e:25:25:87:29:c1:3f:20:86:8d:5e:2f:
49:7f:66:b6:10:ab:f8:fd:eb:e7:f2:53:d4:56:5d:b1:93:af:
a1:40:cd:bf:b3:43:42:2f:d1:e0:f1:ad:3e:d0:a5:13:49:d5:
c9:7b:e5:41:3c:ba:a3:2c:b3:80:52:d2:77:b4:37:c0:fa:12:
ed:b8:3d:37
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIEEFwTjTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
MDMxZDljMTNhZGI3NDAzODIwNGIxNjY2MjE1MjQzMDE2MjhlODc3MB4XDTIyMDEw
MTA1MDQ0MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTM5NTQ4MjdlODM3
NGViZjQzNjgwNzE5Nzk2MzBlZWQ4NjA0OWRkZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMMu2fV9AoY8knfgjFyk9NagvilWhmUVhSFolKc6gHNuJsaz
Hrrp6wc2WQFi7V0vATouzqTZ6kYHOsqbMtdJxnrg5MhkzzOqRpLJLPOX+62buMp+
jESLTe1ZP5F2SOv+tiELFa50AYZoFftZWIoLobRp8hWi6oyapyu0OKrNI0yW3WSh
KGbqeAZo4T5E5BQwmLyKfQsCqsGkI/t585VeVAVn/4GgIVwVOhcGKQjwXOjzPnO/
sWdK366tnAr1Huv9IEsH2X07gXa7+puqJdOGhQGAyhJ+iBSJJpsMQ3hHTvomtzmX
+1BhZuXhIetAnOa0cYRnr8/BA5sztzQvIyeJ7rkCAwEAAaOCAggwggIEMB0GA1Ud
DgQWBBRTlUgn6DdOv0NoBxl5Yw7thgSd3jAfBgNVHSMEGDAWgBRwMdnBOtt0A4IE
sWZiFSQwFijodzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2NESFp3VHJiZEFPQ0JMRm1ZaFVrTUJZbzZIYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjMvNmI0ODI3LTA2NmQtNDU0Yi1hMTk5LTRhYzJhMmI2ZTM0NC8x
L1U1VklKLWczVHI5RGFBY1plV01PN1lZRW5kNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjMv
NmI0ODI3LTA2NmQtNDU0Yi1hMTk5LTRhYzJhMmI2ZTM0NC8xL2NESFp3VHJiZEFP
Q0JMRm1ZaFVrTUJZbzZIYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAe
BggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAI1QMA0GCSqGSIb3DQEBCwUAA4IB
AQAJDa185hJH6o7CpKT80BETyfEk/pGexIOEkQd/kYE/Nfku1Aoz5/RofhODjyuw
f/8hKdJB8d53HRnGLsZs/Fr6S2xy6Bi6gzobEEPQSLekuFPvMzEwpl1TqOpQG+J9
xmvKImJg1pTtef5can0qf85ouPh0Kw8mgwsHc0uz7/44ynGmROYCYBVUILoKjDgB
3/6qq4L9EjfXW0QiMBy4jNqENkCvBvlmhe1H0s+2wtxWtSPS2YfSPPu0l4eOJSWH
KcE/IIaNXi9Jf2a2EKv4/evn8lPUVl2xk6+hQM2/s0NCL9Hg8a0+0KUTSdXJe+VB
PLqjLLOAUtJ3tDfA+hLtuD03
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:19:14 2025 by rpki-client