Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/4b8090-fa5d-4ab7-a4ca-2e9d9fd29340/1/PudMx1fTuavbINPNFeweAlc5N9w.roa
File: PudMx1fTuavbINPNFeweAlc5N9w.roa (raw, json)
Hash identifier: Mn2iNcEMmsIzku9pL3K/OSZ1p6W0Xte4xTWeSllpUkQ=
Subject key identifier: 3E:E7:4C:C7:57:D3:B9:AB:DB:20:D3:CD:15:EC:1E:02:57:39:37:DC
Certificate issuer: /CN=a435d043cab8e5091f41546e848006eae83ccdad
Certificate serial: 01876139F9F55616039E084EB5FA0E9B45C4
Authority key identifier: A4:35:D0:43:CA:B8:E5:09:1F:41:54:6E:84:80:06:EA:E8:3C:CD:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pDXQQ8q45QkfQVRuhIAG6ug8za0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/4b8090-fa5d-4ab7-a4ca-2e9d9fd29340/1/PudMx1fTuavbINPNFeweAlc5N9w.roa
Signing time: Sat 08 Apr 2023 14:16:42 +0000
ROA not before: Sat 08 Apr 2023 14:16:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47596
IP address blocks: 2a0a:2e82::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:61:39:f9:f5:56:16:03:9e:08:4e:b5:fa:0e:9b:45:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a435d043cab8e5091f41546e848006eae83ccdad
Validity
Not Before: Apr 8 14:16:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3ee74cc757d3b9abdb20d3cd15ec1e02573937dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:fb:35:20:f7:e8:30:38:a7:8d:ce:2e:f8:5a:
7c:f2:76:b3:26:89:d1:72:e1:60:62:de:4f:cb:09:
49:cd:dc:5f:4c:cb:fe:48:4b:da:b3:b4:3b:a8:f2:
7b:e6:1e:b1:08:63:89:6f:99:89:ae:39:9b:3a:87:
db:f9:47:f2:61:0b:43:ef:e0:b4:a1:f5:e5:03:a5:
77:2a:fa:32:8d:21:39:fd:7d:ac:85:80:19:cb:ed:
6a:6e:ce:34:6b:f8:9b:ad:35:e3:d0:68:f3:f5:a3:
f1:14:cf:d9:fd:16:a0:fc:1d:95:2b:e6:97:94:67:
e7:82:65:de:ba:0c:de:74:6e:93:28:8e:97:35:e7:
56:5a:2c:95:21:d7:85:98:fc:1e:1f:0a:54:f7:84:
9a:25:8e:3a:e6:79:91:7f:b0:d7:2c:2e:b5:21:d9:
54:00:90:25:50:27:40:e7:4a:6a:29:60:f9:66:4b:
5f:13:28:df:d7:9d:af:ff:99:76:47:b8:56:33:17:
f2:a2:24:71:3b:bc:72:39:bd:39:b3:e2:d0:63:88:
f7:98:8a:b3:a4:8a:3e:89:ee:8e:97:9c:61:4d:a0:
d0:34:62:12:d3:73:aa:78:d0:c4:f3:6b:5c:e7:88:
2f:4b:1f:d1:84:e1:5d:c6:37:8b:45:e6:1a:c4:da:
a2:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:E7:4C:C7:57:D3:B9:AB:DB:20:D3:CD:15:EC:1E:02:57:39:37:DC
X509v3 Authority Key Identifier:
keyid:A4:35:D0:43:CA:B8:E5:09:1F:41:54:6E:84:80:06:EA:E8:3C:CD:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pDXQQ8q45QkfQVRuhIAG6ug8za0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/4b8090-fa5d-4ab7-a4ca-2e9d9fd29340/1/PudMx1fTuavbINPNFeweAlc5N9w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/4b8090-fa5d-4ab7-a4ca-2e9d9fd29340/1/pDXQQ8q45QkfQVRuhIAG6ug8za0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:2e82::/32
Signature Algorithm: sha256WithRSAEncryption
8d:67:03:06:c3:5e:7a:52:9b:02:ac:21:0c:59:e5:e0:32:bc:
82:d6:1b:27:7b:e4:17:13:22:7b:5d:48:c6:ea:0f:45:3f:e0:
fb:67:9a:ea:01:b3:93:22:69:9a:20:d7:6f:8f:85:6e:a9:1b:
ba:04:06:b0:5c:84:d5:c0:ab:5a:ca:71:9d:b5:e5:91:47:2c:
b2:b2:f9:83:fa:dd:2b:6d:0e:da:7b:2c:d4:fb:d3:d8:97:86:
12:d9:36:d1:70:d0:d2:b4:51:b0:dc:83:cb:69:81:f3:56:f8:
f6:6f:e9:2b:92:1c:38:10:fe:b7:11:c3:8d:15:8e:7f:19:a3:
47:18:25:cb:de:f0:7f:6f:1a:a5:7e:e9:93:14:bb:5f:a4:0e:
69:da:4c:bb:3c:6e:9b:61:9e:2e:61:d5:c1:02:c8:ec:99:94:
7b:e1:88:62:08:c2:c4:01:28:e2:7e:3b:2c:4a:44:f1:96:f2:
27:cb:05:b3:82:8a:49:42:82:cb:96:ee:ec:6b:cd:29:e2:30:
4a:df:3f:86:cb:c7:7a:91:f0:a2:77:63:f9:bd:ae:b0:96:12:
e0:9a:62:96:51:18:ad:18:48:ca:1e:67:a4:49:d3:5f:ac:d3:
60:0d:71:6e:77:2c:05:92:06:d7:b9:a7:a3:64:0e:60:82:99:
a5:df:8a:45
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYdhOfn1VhYDnghOtfoOm0XEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE0MzVkMDQzY2FiOGU1MDkxZjQxNTQ2ZTg0ODAwNmVhZTgz
Y2NkYWQwHhcNMjMwNDA4MTQxNjQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzZWU3NGNjNzU3ZDNiOWFiZGIyMGQzY2QxNWVjMWUwMjU3MzkzN2RjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkvs1IPfoMDinjc4u+Fp88nazJonR
cuFgYt5PywlJzdxfTMv+SEvas7Q7qPJ75h6xCGOJb5mJrjmbOofb+UfyYQtD7+C0
ofXlA6V3KvoyjSE5/X2shYAZy+1qbs40a/ibrTXj0Gjz9aPxFM/Z/Rag/B2VK+aX
lGfngmXeugzedG6TKI6XNedWWiyVIdeFmPweHwpU94SaJY465nmRf7DXLC61IdlU
AJAlUCdA50pqKWD5ZktfEyjf152v/5l2R7hWMxfyoiRxO7xyOb05s+LQY4j3mIqz
pIo+ie6Ol5xhTaDQNGIS03OqeNDE82tc54gvSx/RhOFdxjeLReYaxNqicwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFD7nTMdX07mr2yDTzRXsHgJXOTfcMB8GA1UdIwQY
MBaAFKQ10EPKuOUJH0FUboSABuroPM2tMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcERYUVE4cTQ1UWtmUVZSdWhJQUc2dWc4emEwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC80YjgwOTAtZmE1ZC00YWI3LWE0Y2Et
MmU5ZDlmZDI5MzQwLzEvUHVkTXgxZlR1YXZiSU5QTkZld2VBbGM1Tjl3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OC80YjgwOTAtZmE1ZC00YWI3LWE0Y2EtMmU5ZDlmZDI5MzQw
LzEvcERYUVE4cTQ1UWtmUVZSdWhJQUc2dWc4emEwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgougjAN
BgkqhkiG9w0BAQsFAAOCAQEAjWcDBsNeelKbAqwhDFnl4DK8gtYbJ3vkFxMie11I
xuoPRT/g+2ea6gGzkyJpmiDXb4+FbqkbugQGsFyE1cCrWspxnbXlkUcssrL5g/rd
K20O2nss1PvT2JeGEtk20XDQ0rRRsNyDy2mB81b49m/pK5IcOBD+txHDjRWOfxmj
Rxgly97wf28apX7pkxS7X6QOadpMuzxum2GeLmHVwQLI7JmUe+GIYgjCxAEo4n47
LEpE8ZbyJ8sFs4KKSUKCy5bu7GvNKeIwSt8/hsvHepHwondj+b2usJYS4JpillEY
rRhIyh5npEnTX6zTYA1xbncsBZIG17mno2QOYIKZpd+KRQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:25 2024 by rpki-client on console-fra.rpki-client.org