Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/0f95a4-9785-456a-999b-0b22c780cb8d/1/Ir2lqEEjcvTPgv0jv6fm6FZwWDU.roa
File: Ir2lqEEjcvTPgv0jv6fm6FZwWDU.roa (raw, json)
Hash identifier: G+juV809Gc5ynDiCU6mBWej+I4Fo8kwLK8cvhSfwUrA=
Subject key identifier: 22:BD:A5:A8:41:23:72:F4:CF:82:FD:23:BF:A7:E6:E8:56:70:58:35
Certificate issuer: /CN=5c5cc07cfa4f0d65e68a95019c256fd7edb66f44
Certificate serial: 0185730CA07A11D0D4EC5058647E4F606617
Authority key identifier: 5C:5C:C0:7C:FA:4F:0D:65:E6:8A:95:01:9C:25:6F:D7:ED:B6:6F:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XFzAfPpPDWXmipUBnCVv1-22b0Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/0f95a4-9785-456a-999b-0b22c780cb8d/1/Ir2lqEEjcvTPgv0jv6fm6FZwWDU.roa
Signing time: Mon 02 Jan 2023 15:14:45 +0000
ROA not before: Mon 02 Jan 2023 15:14:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212144
IP address blocks: 2a12:cac0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:0c:a0:7a:11:d0:d4:ec:50:58:64:7e:4f:60:66:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c5cc07cfa4f0d65e68a95019c256fd7edb66f44
Validity
Not Before: Jan 2 15:14:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=22bda5a8412372f4cf82fd23bfa7e6e856705835
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:db:eb:89:4d:74:a8:a2:1c:60:83:86:a0:67:
1d:4a:65:79:03:e7:8c:29:52:ca:44:4f:d5:33:6d:
59:8b:fb:73:2f:98:86:56:f9:1a:8f:af:4f:c7:13:
61:ca:84:24:e7:bf:c4:0a:18:56:67:21:a5:44:9b:
7d:9e:d0:c3:fb:e3:5e:0d:3c:02:d9:93:27:54:de:
7b:23:0d:7b:a1:d3:28:5d:20:73:6d:ff:26:25:20:
c4:09:30:77:e1:03:cb:d5:7a:8f:66:82:ae:58:20:
2a:00:ab:8b:8a:ef:8c:a2:b6:c1:45:c6:58:75:2d:
66:44:94:73:1b:3c:82:b9:9d:3f:95:ca:5d:15:1a:
a9:06:6a:18:43:21:d7:c3:de:26:b2:12:0a:af:3b:
e3:31:d1:6e:09:b7:ec:6f:94:e6:6e:d7:74:eb:2d:
72:ce:dd:86:81:0d:9e:c5:57:fe:41:20:bf:de:11:
0b:1a:7f:2a:44:a5:6f:fa:26:77:e5:84:29:06:36:
99:71:66:32:fb:cd:ea:70:ae:ef:a4:fe:a8:b2:fe:
7f:be:59:fe:22:60:2f:5f:5e:6d:f7:dc:a7:24:b1:
5e:9e:91:6d:1c:89:99:5c:52:39:12:95:ed:6c:99:
22:15:18:1e:51:2b:e0:ba:c4:6d:98:3e:7e:e0:67:
b1:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:BD:A5:A8:41:23:72:F4:CF:82:FD:23:BF:A7:E6:E8:56:70:58:35
X509v3 Authority Key Identifier:
keyid:5C:5C:C0:7C:FA:4F:0D:65:E6:8A:95:01:9C:25:6F:D7:ED:B6:6F:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XFzAfPpPDWXmipUBnCVv1-22b0Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/0f95a4-9785-456a-999b-0b22c780cb8d/1/Ir2lqEEjcvTPgv0jv6fm6FZwWDU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/0f95a4-9785-456a-999b-0b22c780cb8d/1/XFzAfPpPDWXmipUBnCVv1-22b0Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:cac0::/29
Signature Algorithm: sha256WithRSAEncryption
37:4f:e4:1f:2e:5f:36:35:80:10:34:45:6f:20:2b:31:46:c8:
b8:77:d6:4c:77:1d:d5:65:cf:c7:b3:1b:dd:8f:69:aa:3f:72:
ff:17:7f:e6:22:88:8e:6f:9a:f1:ca:14:72:27:73:09:3b:16:
91:30:9b:df:d4:fd:5b:db:22:f2:b3:26:b5:bf:2f:28:c1:3a:
6c:0c:b9:b2:73:bd:98:fc:50:4b:ee:fd:cc:97:ef:1a:b9:82:
57:44:10:6f:5f:8c:a0:da:bb:25:bb:e7:9b:fc:0c:99:cb:93:
45:ce:e1:ea:c1:83:1e:1e:f4:e6:58:08:45:2e:c3:13:c3:40:
a2:c2:4e:6b:88:8a:30:00:98:e6:44:5a:83:61:e1:5d:7e:d3:
10:62:f7:48:3e:93:79:3d:cd:82:55:77:b3:6f:4b:5f:52:f7:
8e:07:c1:33:c1:81:51:a8:38:e4:cc:02:34:56:47:1f:4a:89:
ba:5d:a5:cc:5a:9b:c8:06:e1:82:ed:65:30:64:85:90:a5:21:
88:99:c5:a2:02:77:18:57:0e:5b:a3:15:26:d1:f9:c7:43:e4:
a0:17:48:e2:ca:b5:41:96:9d:13:5f:48:5b:87:d5:3f:0f:f8:
a0:b2:52:d9:b1:94:70:8b:ea:55:54:19:0a:3c:07:6f:5a:d3:
f2:5c:0e:ce
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYVzDKB6EdDU7FBYZH5PYGYXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVjNWNjMDdjZmE0ZjBkNjVlNjhhOTUwMTljMjU2ZmQ3ZWRi
NjZmNDQwHhcNMjMwMTAyMTUxNDQ1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMmJkYTVhODQxMjM3MmY0Y2Y4MmZkMjNiZmE3ZTZlODU2NzA1ODM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArtvriU10qKIcYIOGoGcdSmV5A+eM
KVLKRE/VM21Zi/tzL5iGVvkaj69PxxNhyoQk57/EChhWZyGlRJt9ntDD++NeDTwC
2ZMnVN57Iw17odMoXSBzbf8mJSDECTB34QPL1XqPZoKuWCAqAKuLiu+MorbBRcZY
dS1mRJRzGzyCuZ0/lcpdFRqpBmoYQyHXw94mshIKrzvjMdFuCbfsb5Tmbtd06y1y
zt2GgQ2exVf+QSC/3hELGn8qRKVv+iZ35YQpBjaZcWYy+83qcK7vpP6osv5/vln+
ImAvX15t99ynJLFenpFtHImZXFI5EpXtbJkiFRgeUSvgusRtmD5+4GexcwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFCK9pahBI3L0z4L9I7+n5uhWcFg1MB8GA1UdIwQY
MBaAFFxcwHz6Tw1l5oqVAZwlb9fttm9EMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWEZ6QWZQcFBEV1htaXBVQm5DVnYxLTIyYjBRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8wZjk1YTQtOTc4NS00NTZhLTk5OWIt
MGIyMmM3ODBjYjhkLzEvSXIybHFFRWpjdlRQZ3YwanY2Zm02Rlp3V0RVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS8wZjk1YTQtOTc4NS00NTZhLTk5OWItMGIyMmM3ODBjYjhk
LzEvWEZ6QWZQcFBEV1htaXBVQm5DVnYxLTIyYjBRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhLKwDAN
BgkqhkiG9w0BAQsFAAOCAQEAN0/kHy5fNjWAEDRFbyArMUbIuHfWTHcd1WXPx7Mb
3Y9pqj9y/xd/5iKIjm+a8coUcidzCTsWkTCb39T9W9si8rMmtb8vKME6bAy5snO9
mPxQS+79zJfvGrmCV0QQb1+MoNq7Jbvnm/wMmcuTRc7h6sGDHh705lgIRS7DE8NA
osJOa4iKMACY5kRag2HhXX7TEGL3SD6TeT3NglV3s29LX1L3jgfBM8GBUag45MwC
NFZHH0qJul2lzFqbyAbhgu1lMGSFkKUhiJnFogJ3GFcOW6MVJtH5x0PkoBdI4sq1
QZadE19IW4fVPw/4oLJS2bGUcIvqVVQZCjwHb1rT8lwOzg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:57 2024 by rpki-client on console-ams.rpki-client.org