Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/cc11e8-d51b-4679-9c6c-1ef197d6dc69/1/pY2mBz8SrhtMrPfXKTc-KPyA-sQ.roa
File: pY2mBz8SrhtMrPfXKTc-KPyA-sQ.roa (raw, json)
Hash identifier: v6iKf/Ncws3OlFW9tJucMNom0exgIX4HOmwXx+acsSw=
Subject key identifier: A5:8D:A6:07:3F:12:AE:1B:4C:AC:F7:D7:29:37:3E:28:FC:80:FA:C4
Certificate issuer: /CN=6bb3ae11a3a6a5ee1e32ea6cce1f10df231ead88
Certificate serial: 070963F8
Authority key identifier: 6B:B3:AE:11:A3:A6:A5:EE:1E:32:EA:6C:CE:1F:10:DF:23:1E:AD:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a7OuEaOmpe4eMupszh8Q3yMerYg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/cc11e8-d51b-4679-9c6c-1ef197d6dc69/1/pY2mBz8SrhtMrPfXKTc-KPyA-sQ.roa
Signing time: Sat 01 Jan 2022 00:56:44 +0000
ROA not before: Sat 01 Jan 2022 00:56:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207781
IP address blocks: 2a0f:85c1:beef::/48 maxlen: 48
2a0f:85c1:cafe::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118055928 (0x70963f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6bb3ae11a3a6a5ee1e32ea6cce1f10df231ead88
Validity
Not Before: Jan 1 00:56:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a58da6073f12ae1b4cacf7d729373e28fc80fac4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:ed:0b:63:12:f6:85:4e:b0:dd:07:4a:c3:be:
f1:f6:83:cc:fe:6e:64:e8:8d:02:2f:42:4a:3e:d7:
64:bf:1e:0e:34:21:39:9c:96:d1:f3:e7:c2:16:6d:
3f:02:51:b0:ae:fe:d1:5b:17:ea:1c:a4:85:62:87:
2b:23:10:ac:61:93:d6:6c:86:00:fb:1c:e2:2c:b5:
0a:7e:1a:3d:0d:91:46:0a:5e:11:a2:d8:36:47:14:
3b:6f:50:81:a6:03:b6:05:e4:0b:fb:09:56:d0:37:
d0:82:ae:35:5b:91:4b:a0:a0:f3:4b:b9:2d:2e:55:
00:a0:8a:27:01:8c:ac:59:45:e4:6e:cd:df:d8:4b:
50:c6:6c:dc:85:dd:9c:7f:d7:09:cc:65:05:7f:0c:
1c:ba:7a:04:61:a4:d9:67:44:7d:05:bd:1f:44:4a:
86:82:0d:cb:99:15:b7:17:74:b6:f3:ef:db:dc:aa:
89:5c:38:a0:02:4a:93:6b:0a:88:3b:16:78:73:45:
71:e9:72:1c:83:d5:e4:c1:f8:00:cc:b7:51:e9:2d:
40:42:7d:eb:52:a5:7f:2c:33:f5:23:4f:70:a6:0a:
ec:f8:41:5d:9e:63:33:33:a8:83:a5:64:3e:f6:d2:
da:d5:e4:59:b9:15:2e:7e:4f:62:7d:42:ba:59:d8:
48:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:8D:A6:07:3F:12:AE:1B:4C:AC:F7:D7:29:37:3E:28:FC:80:FA:C4
X509v3 Authority Key Identifier:
keyid:6B:B3:AE:11:A3:A6:A5:EE:1E:32:EA:6C:CE:1F:10:DF:23:1E:AD:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7OuEaOmpe4eMupszh8Q3yMerYg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/cc11e8-d51b-4679-9c6c-1ef197d6dc69/1/pY2mBz8SrhtMrPfXKTc-KPyA-sQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/cc11e8-d51b-4679-9c6c-1ef197d6dc69/1/a7OuEaOmpe4eMupszh8Q3yMerYg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:85c1:beef::/48
2a0f:85c1:cafe::/48
Signature Algorithm: sha256WithRSAEncryption
8e:34:49:57:98:d9:e3:0f:5b:24:b8:d0:b3:85:42:df:49:36:
0d:2c:dc:68:04:d5:ad:00:4f:22:2e:57:df:c4:59:db:62:23:
ff:4e:90:62:5a:ae:dd:44:f4:fe:32:ec:f2:1c:b2:73:10:94:
07:ff:ac:e2:ac:50:04:27:af:cd:6d:ea:0f:c7:e0:8f:80:1a:
de:49:2a:e4:6d:26:0b:52:ac:80:eb:02:31:e4:60:38:83:a8:
d6:fc:39:89:0d:bb:61:f7:98:7b:9c:6b:e9:0a:00:01:a3:8c:
ba:2a:01:ee:96:12:af:6f:b5:ab:d0:e2:0d:ad:57:3b:34:3a:
54:76:08:bc:fb:df:4f:0c:5d:c4:86:6e:86:d1:1d:f9:ed:fb:
d8:31:15:50:50:b2:bb:e7:ae:4f:12:95:7a:01:69:58:87:d7:
ad:f4:f1:a3:c0:8f:fe:de:57:8d:32:8e:af:64:34:36:80:c8:
99:8c:32:38:b2:64:30:c3:1d:88:6a:64:49:f0:8d:bf:a9:57:
cb:7b:49:11:86:bf:8a:b1:bd:a3:25:35:35:a3:5c:af:ea:d4:
e7:75:70:53:1c:fe:f8:61:72:cd:30:35:6a:a5:8b:e7:eb:d4:
27:5c:c6:83:7b:14:7b:69:1c:b7:5b:01:84:63:19:aa:4c:df:
40:01:89:fe
-----BEGIN CERTIFICATE-----
MIIE+zCCA+OgAwIBAgIEBwlj+DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
YmIzYWUxMWEzYTZhNWVlMWUzMmVhNmNjZTFmMTBkZjIzMWVhZDg4MB4XDTIyMDEw
MTAwNTY0NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTU4ZGE2MDczZjEy
YWUxYjRjYWNmN2Q3MjkzNzNlMjhmYzgwZmFjNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAO3tC2MS9oVOsN0HSsO+8faDzP5uZOiNAi9CSj7XZL8eDjQh
OZyW0fPnwhZtPwJRsK7+0VsX6hykhWKHKyMQrGGT1myGAPsc4iy1Cn4aPQ2RRgpe
EaLYNkcUO29QgaYDtgXkC/sJVtA30IKuNVuRS6Cg80u5LS5VAKCKJwGMrFlF5G7N
39hLUMZs3IXdnH/XCcxlBX8MHLp6BGGk2WdEfQW9H0RKhoINy5kVtxd0tvPv29yq
iVw4oAJKk2sKiDsWeHNFcelyHIPV5MH4AMy3UektQEJ961Klfywz9SNPcKYK7PhB
XZ5jMzOog6VkPvbS2tXkWbkVLn5PYn1CulnYSOsCAwEAAaOCAhUwggIRMB0GA1Ud
DgQWBBSljaYHPxKuG0ys99cpNz4o/ID6xDAfBgNVHSMEGDAWgBRrs64Ro6al7h4y
6mzOHxDfIx6tiDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2E3T3VFYU9tcGU0ZU11cHN6aDhRM3lNZXJZZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNmEvY2MxMWU4LWQ1MWItNDY3OS05YzZjLTFlZjE5N2Q2ZGM2OS8x
L3BZMm1CejhTcmh0TXJQZlhLVGMtS1B5QS1zUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmEv
Y2MxMWU4LWQ1MWItNDY3OS05YzZjLTFlZjE5N2Q2ZGM2OS8xL2E3T3VFYU9tcGU0
ZU11cHN6aDhRM3lNZXJZZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAr
BggrBgEFBQcBBwEB/wQcMBowGAQCAAIwEgMHACoPhcG+7wMHACoPhcHK/jANBgkq
hkiG9w0BAQsFAAOCAQEAjjRJV5jZ4w9bJLjQs4VC30k2DSzcaATVrQBPIi5X38RZ
22Ij/06QYlqu3UT0/jLs8hyycxCUB/+s4qxQBCevzW3qD8fgj4Aa3kkq5G0mC1Ks
gOsCMeRgOIOo1vw5iQ27YfeYe5xr6QoAAaOMuioB7pYSr2+1q9DiDa1XOzQ6VHYI
vPvfTwxdxIZuhtEd+e372DEVUFCyu+euTxKVegFpWIfXrfTxo8CP/t5XjTKOr2Q0
NoDImYwyOLJkMMMdiGpkSfCNv6lXy3tJEYa/irG9oyU1NaNcr+rU53VwUxz++GFy
zTA1aqWL5+vUJ1zGg3sUe2kct1sBhGMZqkzfQAGJ/g==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:46:57 2025 by rpki-client