Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/851ef6-97b0-463b-8cb3-2d03e4b15376/1/ciMkC9WIoJK_B1JPGWgMEaIqyzs.roa
File: ciMkC9WIoJK_B1JPGWgMEaIqyzs.roa (raw, json)
Hash identifier: WbPi4EDHC9AjDisHCF00qZaJUawCO0HwrgIY3qrIEpc=
Subject key identifier: 72:23:24:0B:D5:88:A0:92:BF:07:52:4F:19:68:0C:11:A2:2A:CB:3B
Certificate issuer: /CN=743a2a1d4382a25ac3eeaff41d403f4d859e52fe
Certificate serial: 1F344553
Authority key identifier: 74:3A:2A:1D:43:82:A2:5A:C3:EE:AF:F4:1D:40:3F:4D:85:9E:52:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dDoqHUOColrD7q_0HUA_TYWeUv4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/851ef6-97b0-463b-8cb3-2d03e4b15376/1/ciMkC9WIoJK_B1JPGWgMEaIqyzs.roa
Signing time: Sat 01 Jan 2022 08:02:10 +0000
ROA not before: Sat 01 Jan 2022 08:02:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51691
IP address blocks: 2a00:1a58:f501::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 523519315 (0x1f344553)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=743a2a1d4382a25ac3eeaff41d403f4d859e52fe
Validity
Not Before: Jan 1 08:02:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7223240bd588a092bf07524f19680c11a22acb3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:24:8c:2d:19:75:0e:d9:da:a0:7b:09:fb:54:
20:cd:cb:11:3a:92:ed:25:ed:95:72:da:6d:d5:a7:
d5:47:a3:c6:d3:68:b7:14:a5:0c:84:fd:11:11:90:
0f:d1:f7:e0:b8:be:72:b8:3f:f1:be:d5:97:0f:00:
bc:74:c9:5c:95:d9:9c:34:45:4d:5e:11:aa:d7:af:
27:5a:4d:23:7d:26:d6:11:a1:41:71:cf:5f:0c:85:
d3:ed:ce:4d:d2:97:ad:ae:97:5e:72:85:0e:fb:85:
b7:4e:ad:35:42:ae:c5:bf:d2:71:fe:dc:2e:aa:ca:
14:05:a8:80:28:a1:8f:75:0a:59:df:23:69:ea:e8:
57:24:59:4b:0a:23:da:41:8a:25:3d:7e:38:cf:cc:
8d:f5:26:2e:ec:44:5e:74:af:57:c9:85:91:ab:98:
08:a7:00:a5:97:dc:b0:18:3c:f3:93:d7:8d:ec:49:
6e:a9:87:77:41:3b:d1:2b:fa:e4:9b:be:37:c4:48:
b4:07:3d:e7:d4:a6:7c:80:9d:f5:dd:80:7e:13:5e:
4b:47:ba:66:2b:05:ac:e6:3a:35:80:52:bb:d1:6a:
2f:62:e1:1f:d9:4e:67:cf:83:de:aa:5a:7d:db:8f:
a4:29:91:37:5a:81:8e:04:f5:23:c5:9a:cb:36:84:
8d:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:23:24:0B:D5:88:A0:92:BF:07:52:4F:19:68:0C:11:A2:2A:CB:3B
X509v3 Authority Key Identifier:
keyid:74:3A:2A:1D:43:82:A2:5A:C3:EE:AF:F4:1D:40:3F:4D:85:9E:52:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dDoqHUOColrD7q_0HUA_TYWeUv4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/851ef6-97b0-463b-8cb3-2d03e4b15376/1/ciMkC9WIoJK_B1JPGWgMEaIqyzs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/851ef6-97b0-463b-8cb3-2d03e4b15376/1/dDoqHUOColrD7q_0HUA_TYWeUv4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:1a58:f501::/48
Signature Algorithm: sha256WithRSAEncryption
1c:d0:84:ea:59:1c:eb:55:4d:63:6c:21:7e:a2:93:b7:ac:22:
ef:17:cf:71:05:43:50:37:91:e3:99:99:3e:76:e0:f4:32:e8:
c0:88:00:0c:06:75:d4:75:e5:11:1b:8f:01:36:4d:3a:ff:b1:
15:c9:8c:f5:cc:24:71:a1:88:f4:e8:08:7a:f4:d2:18:da:05:
5a:1c:7e:cb:ef:32:59:df:3c:7e:eb:c0:04:54:06:f0:2d:23:
cf:55:ac:29:46:d2:c1:c0:b2:5b:4a:be:55:99:be:f8:62:e3:
dd:e6:10:a3:2c:89:6e:07:ee:c1:1c:5c:45:8e:73:36:d4:7a:
f5:be:b3:e4:55:0a:de:17:6d:a5:df:56:af:b8:10:9b:22:92:
5d:df:5f:e9:6c:a6:c6:d9:2d:d8:a6:a8:6b:cf:59:a7:a2:18:
14:bf:72:b9:37:aa:20:50:41:4c:7c:77:98:87:67:27:87:2d:
99:e5:e0:d3:3b:80:af:8a:dc:6c:c9:a7:4f:0e:68:24:f3:ff:
5d:18:d0:15:60:7b:89:19:f8:8b:67:49:15:6f:a9:97:c8:78:
31:2f:1a:2d:3c:28:e1:dc:bb:6b:48:9f:6e:79:22:bc:ac:d0:
ca:e6:ed:2a:6f:78:2c:ca:96:17:3d:aa:07:5b:19:43:1c:c0:
db:bf:cc:d4
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEHzRFUzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
NDNhMmExZDQzODJhMjVhYzNlZWFmZjQxZDQwM2Y0ZDg1OWU1MmZlMB4XDTIyMDEw
MTA4MDIxMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzIyMzI0MGJkNTg4
YTA5MmJmMDc1MjRmMTk2ODBjMTFhMjJhY2IzYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMokjC0ZdQ7Z2qB7CftUIM3LETqS7SXtlXLabdWn1UejxtNo
txSlDIT9ERGQD9H34Li+crg/8b7Vlw8AvHTJXJXZnDRFTV4RqtevJ1pNI30m1hGh
QXHPXwyF0+3OTdKXra6XXnKFDvuFt06tNUKuxb/Scf7cLqrKFAWogCihj3UKWd8j
aeroVyRZSwoj2kGKJT1+OM/MjfUmLuxEXnSvV8mFkauYCKcApZfcsBg885PXjexJ
bqmHd0E70Sv65Ju+N8RItAc959SmfICd9d2AfhNeS0e6ZisFrOY6NYBSu9FqL2Lh
H9lOZ8+D3qpafduPpCmRN1qBjgT1I8WayzaEjZ0CAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBRyIyQL1Yigkr8HUk8ZaAwRoirLOzAfBgNVHSMEGDAWgBR0OiodQ4KiWsPu
r/QdQD9NhZ5S/jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2REb3FIVU9Db2xyRDdxXzBIVUFfVFlXZVV2NC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjkvODUxZWY2LTk3YjAtNDYzYi04Y2IzLTJkMDNlNGIxNTM3Ni8x
L2NpTWtDOVdJb0pLX0IxSlBHV2dNRWFJcXl6cy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjkv
ODUxZWY2LTk3YjAtNDYzYi04Y2IzLTJkMDNlNGIxNTM3Ni8xL2REb3FIVU9Db2xy
RDdxXzBIVUFfVFlXZVV2NC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoAGlj1ATANBgkqhkiG9w0BAQsF
AAOCAQEAHNCE6lkc61VNY2whfqKTt6wi7xfPcQVDUDeR45mZPnbg9DLowIgADAZ1
1HXlERuPATZNOv+xFcmM9cwkcaGI9OgIevTSGNoFWhx+y+8yWd88fuvABFQG8C0j
z1WsKUbSwcCyW0q+VZm++GLj3eYQoyyJbgfuwRxcRY5zNtR69b6z5FUK3hdtpd9W
r7gQmyKSXd9f6Wymxtkt2Kaoa89Zp6IYFL9yuTeqIFBBTHx3mIdnJ4ctmeXg0zuA
r4rcbMmnTw5oJPP/XRjQFWB7iRn4i2dJFW+pl8h4MS8aLTwo4dy7a0ifbnkivKzQ
yubtKm94LMqWFz2qB1sZQxzA27/M1A==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:12:39 2025 by rpki-client