Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/00ec78-7e44-49e4-8443-9db5be4d0eff/1/RT0PMTV_CONni4a4G9RPtjjkwRY.roa
File: RT0PMTV_CONni4a4G9RPtjjkwRY.roa (raw, json)
Hash identifier: nYthXaVnZRMWeNKTEdjmWus64JCBXjNFo6uCaUGJ0w0=
Subject key identifier: 45:3D:0F:31:35:7F:08:E3:67:8B:86:B8:1B:D4:4F:B6:38:E4:C1:16
Certificate issuer: /CN=cf640b02311376dc96eebfeca755c3b0061140ec
Certificate serial: 14768167
Authority key identifier: CF:64:0B:02:31:13:76:DC:96:EE:BF:EC:A7:55:C3:B0:06:11:40:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z2QLAjETdtyW7r_sp1XDsAYRQOw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/00ec78-7e44-49e4-8443-9db5be4d0eff/1/RT0PMTV_CONni4a4G9RPtjjkwRY.roa
Signing time: Sat 01 Jan 2022 03:59:00 +0000
ROA not before: Sat 01 Jan 2022 03:59:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44253
IP address blocks: 213.171.128.0/20 maxlen: 24
2a00:1bd8::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 343310695 (0x14768167)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf640b02311376dc96eebfeca755c3b0061140ec
Validity
Not Before: Jan 1 03:59:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=453d0f31357f08e3678b86b81bd44fb638e4c116
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:a9:17:f9:ac:d8:c6:4f:ac:c9:33:0e:40:94:
73:8e:ad:e2:26:94:77:dc:3e:6d:c6:ce:16:25:68:
45:87:ab:8f:71:67:ba:51:0f:ee:de:c9:96:53:69:
92:c1:bc:7f:a3:6d:9e:c2:1e:e1:d6:eb:9c:e6:6b:
ed:39:24:20:e8:8e:bd:58:3d:b1:cd:0d:cb:20:b6:
30:74:dc:23:1d:33:c1:de:ec:f8:0d:25:b3:bd:7a:
8a:4f:1c:76:80:72:ab:7c:cb:06:5f:da:e7:48:67:
78:8c:92:27:08:5f:21:16:d0:65:56:85:d1:e3:24:
df:f1:ea:a9:72:51:ea:d3:0e:12:ff:3d:21:64:10:
0f:ae:57:25:0c:b1:3d:3a:c7:ce:58:d6:89:c8:b1:
d8:5b:18:90:77:4a:f0:b0:d0:70:7a:06:a7:ec:36:
f8:5f:09:36:a0:c0:8f:79:68:b1:58:68:b1:8c:2d:
a9:07:f2:30:c2:d7:10:46:08:ad:7a:e1:6f:0a:1b:
a4:09:08:d2:00:24:22:b6:45:44:62:0f:af:22:35:
7a:e2:82:5a:ba:e4:06:3b:ec:d1:23:42:ce:06:52:
26:45:be:22:49:c0:db:5d:3b:33:e4:a6:55:95:a6:
e3:ef:aa:0b:97:a5:0e:80:f1:27:d3:6b:06:4f:ff:
59:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:3D:0F:31:35:7F:08:E3:67:8B:86:B8:1B:D4:4F:B6:38:E4:C1:16
X509v3 Authority Key Identifier:
keyid:CF:64:0B:02:31:13:76:DC:96:EE:BF:EC:A7:55:C3:B0:06:11:40:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z2QLAjETdtyW7r_sp1XDsAYRQOw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/00ec78-7e44-49e4-8443-9db5be4d0eff/1/RT0PMTV_CONni4a4G9RPtjjkwRY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/00ec78-7e44-49e4-8443-9db5be4d0eff/1/z2QLAjETdtyW7r_sp1XDsAYRQOw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.171.128.0/20
IPv6:
2a00:1bd8::/32
Signature Algorithm: sha256WithRSAEncryption
4e:cd:09:50:d1:e1:bc:9d:80:05:d0:ea:94:cf:f8:44:a9:e6:
c7:36:60:99:68:16:f2:2d:cb:23:63:32:e6:ce:f1:11:4a:6b:
62:85:aa:41:69:70:0c:9b:e4:79:f6:34:87:4a:cd:87:45:3b:
c8:11:ff:2e:f1:dc:c6:00:f5:54:03:dd:48:a8:37:d9:a5:03:
11:bc:57:64:5a:9c:aa:c9:f4:a2:06:35:4b:6d:a1:94:26:d8:
23:e6:0f:31:6a:e7:27:79:11:17:5d:5a:d0:d5:5a:a7:e3:2f:
9d:50:f3:ff:0c:6f:c3:e7:4b:77:8d:9f:a2:34:c9:5a:aa:aa:
67:12:af:06:09:61:07:8a:8c:e8:61:7f:64:d1:77:ae:9d:b0:
ab:9c:16:02:9c:c2:11:e8:d3:94:0d:76:82:e4:00:74:d7:45:
b8:1b:44:1c:eb:ce:72:75:30:14:66:44:70:d9:3d:0d:d7:92:
3d:de:9a:cc:ad:80:8c:24:4c:fc:6b:44:ef:39:3c:5b:98:a6:
5a:32:47:b6:a4:46:93:18:dc:5d:0c:68:f8:fb:e6:5d:f0:fe:
3a:67:eb:dc:bf:cb:15:a7:d5:0a:c3:04:bc:2a:31:85:1f:ad:
5c:10:d7:97:c9:78:f5:73:4f:16:4b:51:d9:66:b0:28:65:f3:
5a:1d:0f:7a
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEFHaBZzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
ZjY0MGIwMjMxMTM3NmRjOTZlZWJmZWNhNzU1YzNiMDA2MTE0MGVjMB4XDTIyMDEw
MTAzNTkwMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDUzZDBmMzEzNTdm
MDhlMzY3OGI4NmI4MWJkNDRmYjYzOGU0YzExNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJapF/ms2MZPrMkzDkCUc46t4iaUd9w+bcbOFiVoRYerj3Fn
ulEP7t7JllNpksG8f6NtnsIe4dbrnOZr7TkkIOiOvVg9sc0NyyC2MHTcIx0zwd7s
+A0ls716ik8cdoByq3zLBl/a50hneIySJwhfIRbQZVaF0eMk3/HqqXJR6tMOEv89
IWQQD65XJQyxPTrHzljWicix2FsYkHdK8LDQcHoGp+w2+F8JNqDAj3losVhosYwt
qQfyMMLXEEYIrXrhbwobpAkI0gAkIrZFRGIPryI1euKCWrrkBjvs0SNCzgZSJkW+
IknA2107M+SmVZWm4++qC5elDoDxJ9NrBk//WR8CAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBRFPQ8xNX8I42eLhrgb1E+2OOTBFjAfBgNVHSMEGDAWgBTPZAsCMRN23Jbu
v+ynVcOwBhFA7DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3oyUUxBakVUZHR5VzdyX3NwMVhEc0FZUlFPdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjUvMDBlYzc4LTdlNDQtNDllNC04NDQzLTlkYjViZTRkMGVmZi8x
L1JUMFBNVFZfQ09Obmk0YTRHOVJQdGpqa3dSWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjUv
MDBlYzc4LTdlNDQtNDllNC04NDQzLTlkYjViZTRkMGVmZi8xL3oyUUxBakVUZHR5
VzdyX3NwMVhEc0FZUlFPdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEBNWrgDANBAIAAjAHAwUAKgAb2DAN
BgkqhkiG9w0BAQsFAAOCAQEATs0JUNHhvJ2ABdDqlM/4RKnmxzZgmWgW8i3LI2My
5s7xEUprYoWqQWlwDJvkefY0h0rNh0U7yBH/LvHcxgD1VAPdSKg32aUDEbxXZFqc
qsn0ogY1S22hlCbYI+YPMWrnJ3kRF11a0NVap+MvnVDz/wxvw+dLd42fojTJWqqq
ZxKvBglhB4qM6GF/ZNF3rp2wq5wWApzCEejTlA12guQAdNdFuBtEHOvOcnUwFGZE
cNk9DdeSPd6azK2AjCRM/GtE7zk8W5imWjJHtqRGkxjcXQxo+PvmXfD+Omfr3L/L
FafVCsMEvCoxhR+tXBDXl8l49XNPFktR2WawKGXzWh0Peg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:55 2024 by rpki-client on console-fra.rpki-client.org