Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/4b8090-fa5d-4ab7-a4ca-2e9d9fd29340/1/N2fm9S3MNbNcbNXqm7i2Mc-SFHg.roa
File: N2fm9S3MNbNcbNXqm7i2Mc-SFHg.roa (raw, json)
Hash identifier: PmqXt2ditQ8X3c6QoyVWFjizktuL88g7HeANQGqifoM=
Subject key identifier: 37:67:E6:F5:2D:CC:35:B3:5C:6C:D5:EA:9B:B8:B6:31:CF:92:14:78
Certificate issuer: /CN=a435d043cab8e5091f41546e848006eae83ccdad
Certificate serial: 01876139FACDFBCB566B3BD0740AA6DF5AD3
Authority key identifier: A4:35:D0:43:CA:B8:E5:09:1F:41:54:6E:84:80:06:EA:E8:3C:CD:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pDXQQ8q45QkfQVRuhIAG6ug8za0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/4b8090-fa5d-4ab7-a4ca-2e9d9fd29340/1/N2fm9S3MNbNcbNXqm7i2Mc-SFHg.roa
Signing time: Sat 08 Apr 2023 14:16:42 +0000
ROA not before: Sat 08 Apr 2023 14:16:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210695
IP address blocks: 2a0a:2e80::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:61:39:fa:cd:fb:cb:56:6b:3b:d0:74:0a:a6:df:5a:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a435d043cab8e5091f41546e848006eae83ccdad
Validity
Not Before: Apr 8 14:16:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3767e6f52dcc35b35c6cd5ea9bb8b631cf921478
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:be:b5:b6:fa:38:16:60:71:46:f9:80:3d:f8:
da:d6:df:a0:8d:fa:ea:13:84:f3:cb:db:59:d6:0b:
4e:65:53:25:d2:ce:14:96:63:ce:e7:1e:8e:66:d8:
0b:63:45:1f:e7:4b:6a:5d:45:ae:b3:8f:7e:72:0a:
91:4c:f7:f8:ff:f0:68:22:3e:a6:a0:4b:cd:05:dd:
3f:7a:99:85:f4:15:52:2e:bc:45:dd:91:ca:22:3b:
79:f0:12:57:5e:ed:ee:cf:0d:37:2d:65:a3:51:84:
d0:fd:0e:e9:d9:1b:ec:fc:7f:0d:37:e3:33:80:48:
9d:4d:c0:a3:4a:17:1b:90:68:f4:3a:3b:4d:3a:15:
aa:2e:4c:a3:a2:0f:a4:88:ad:e3:e0:14:74:f2:3f:
e0:84:e2:57:4b:94:8b:3b:9d:b1:24:97:59:4e:45:
08:08:6b:51:c5:08:20:c8:cb:88:f3:44:8a:7d:e7:
00:97:19:03:c3:ab:98:89:ce:18:2d:cf:f9:76:2b:
ed:d5:5f:b1:92:96:c7:a2:af:d8:5e:40:3b:55:3d:
f6:f0:64:32:78:9e:16:43:b8:b7:96:20:41:11:84:
e6:3c:f8:9b:ec:fd:88:af:e4:e4:50:fe:36:fe:97:
65:a4:76:b3:1a:a9:0e:35:d9:0b:b1:1b:94:80:ba:
1b:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:67:E6:F5:2D:CC:35:B3:5C:6C:D5:EA:9B:B8:B6:31:CF:92:14:78
X509v3 Authority Key Identifier:
keyid:A4:35:D0:43:CA:B8:E5:09:1F:41:54:6E:84:80:06:EA:E8:3C:CD:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pDXQQ8q45QkfQVRuhIAG6ug8za0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/4b8090-fa5d-4ab7-a4ca-2e9d9fd29340/1/N2fm9S3MNbNcbNXqm7i2Mc-SFHg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/4b8090-fa5d-4ab7-a4ca-2e9d9fd29340/1/pDXQQ8q45QkfQVRuhIAG6ug8za0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:2e80::/32
Signature Algorithm: sha256WithRSAEncryption
22:21:f6:ca:b2:f3:f2:90:7c:fc:c2:49:15:39:a4:8e:48:6e:
b6:7d:82:f4:d8:31:7e:f1:5a:c1:6f:6a:8d:68:41:0e:b1:d1:
41:e4:f1:ea:90:c3:ab:7c:44:c2:7f:2b:e4:a8:32:54:4d:39:
fa:35:a9:ea:38:7c:06:c5:73:c9:cb:d4:5b:05:62:86:ce:36:
1b:eb:f6:cc:45:f8:b2:8c:ed:94:26:74:82:62:8c:bd:18:ec:
45:82:87:7b:86:ec:4b:8d:2c:27:87:ea:1a:18:62:55:b0:7f:
cf:2f:31:17:23:41:35:2f:68:09:0a:b0:fd:59:9b:e1:14:f3:
54:c2:46:18:0d:b9:cc:84:0d:4b:3c:25:82:58:5a:8b:b5:c1:
c8:93:9d:3a:94:74:cb:37:f8:71:1a:48:ee:d9:e1:cd:e0:8e:
23:c7:ca:84:d6:83:40:f5:a9:b1:68:e1:56:5d:c3:39:7e:4d:
e2:0a:ff:44:05:98:06:e8:bc:58:d9:5a:8e:7b:8f:bd:5f:91:
2c:fb:e1:e9:fd:5e:24:c5:e5:fc:a3:4b:b7:96:a2:61:9d:f4:
a8:f6:7c:ca:db:eb:a4:97:3a:c2:52:17:b4:28:ba:a1:46:88:
08:2d:91:29:57:db:9f:1e:ae:df:bf:d4:f9:70:b4:d1:4c:f4:
7b:20:97:6c
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYdhOfrN+8tWazvQdAqm31rTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE0MzVkMDQzY2FiOGU1MDkxZjQxNTQ2ZTg0ODAwNmVhZTgz
Y2NkYWQwHhcNMjMwNDA4MTQxNjQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNzY3ZTZmNTJkY2MzNWIzNWM2Y2Q1ZWE5YmI4YjYzMWNmOTIxNDc4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgb61tvo4FmBxRvmAPfja1t+gjfrq
E4Tzy9tZ1gtOZVMl0s4UlmPO5x6OZtgLY0Uf50tqXUWus49+cgqRTPf4//BoIj6m
oEvNBd0/epmF9BVSLrxF3ZHKIjt58BJXXu3uzw03LWWjUYTQ/Q7p2Rvs/H8NN+Mz
gEidTcCjShcbkGj0OjtNOhWqLkyjog+kiK3j4BR08j/ghOJXS5SLO52xJJdZTkUI
CGtRxQggyMuI80SKfecAlxkDw6uYic4YLc/5divt1V+xkpbHoq/YXkA7VT328GQy
eJ4WQ7i3liBBEYTmPPib7P2Ir+TkUP42/pdlpHazGqkONdkLsRuUgLobUQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFDdn5vUtzDWzXGzV6pu4tjHPkhR4MB8GA1UdIwQY
MBaAFKQ10EPKuOUJH0FUboSABuroPM2tMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcERYUVE4cTQ1UWtmUVZSdWhJQUc2dWc4emEwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC80YjgwOTAtZmE1ZC00YWI3LWE0Y2Et
MmU5ZDlmZDI5MzQwLzEvTjJmbTlTM01OYk5jYk5YcW03aTJNYy1TRkhnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OC80YjgwOTAtZmE1ZC00YWI3LWE0Y2EtMmU5ZDlmZDI5MzQw
LzEvcERYUVE4cTQ1UWtmUVZSdWhJQUc2dWc4emEwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgougDAN
BgkqhkiG9w0BAQsFAAOCAQEAIiH2yrLz8pB8/MJJFTmkjkhutn2C9NgxfvFawW9q
jWhBDrHRQeTx6pDDq3xEwn8r5KgyVE05+jWp6jh8BsVzycvUWwVihs42G+v2zEX4
soztlCZ0gmKMvRjsRYKHe4bsS40sJ4fqGhhiVbB/zy8xFyNBNS9oCQqw/Vmb4RTz
VMJGGA25zIQNSzwlglhai7XByJOdOpR0yzf4cRpI7tnhzeCOI8fKhNaDQPWpsWjh
Vl3DOX5N4gr/RAWYBui8WNlajnuPvV+RLPvh6f1eJMXl/KNLt5aiYZ30qPZ8ytvr
pJc6wlIXtCi6oUaICC2RKVfbnx6u37/U+XC00Uz0eyCXbA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:25 2024 by rpki-client on console-fra.rpki-client.org