Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/0c0c65-9f82-4450-9165-f0c21f8186f0/1/deMVioPMlTNvorGkqDlzJYLDIRY.roa
File: deMVioPMlTNvorGkqDlzJYLDIRY.roa (raw, json)
Hash identifier: 50Q5TfcuBrOYlsNWVyXs8chd4o9G8QqHriaAq0IJyvc=
Subject key identifier: 75:E3:15:8A:83:CC:95:33:6F:A2:B1:A4:A8:39:73:25:82:C3:21:16
Certificate issuer: /CN=d4ff0fecd7bf44148931788dfe7f20d67a67a0db
Certificate serial: 0541E1A7
Authority key identifier: D4:FF:0F:EC:D7:BF:44:14:89:31:78:8D:FE:7F:20:D6:7A:67:A0:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1P8P7Ne_RBSJMXiN_n8g1npnoNs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/0c0c65-9f82-4450-9165-f0c21f8186f0/1/deMVioPMlTNvorGkqDlzJYLDIRY.roa
Signing time: Sat 01 Jan 2022 06:04:03 +0000
ROA not before: Sat 01 Jan 2022 06:04:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5610
IP address blocks: 2a02:9b8::/31 maxlen: 31
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88203687 (0x541e1a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4ff0fecd7bf44148931788dfe7f20d67a67a0db
Validity
Not Before: Jan 1 06:04:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=75e3158a83cc95336fa2b1a4a839732582c32116
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:fb:42:3a:cb:61:05:f9:16:d9:d7:2a:75:4a:
85:15:d7:00:c6:ed:c2:a4:4e:8a:28:7a:9a:6b:91:
54:9a:9b:d9:d9:2b:47:b2:9c:8b:b7:d9:dd:b3:b6:
e0:0b:d4:84:4f:1e:74:63:0e:c0:6e:13:54:c8:18:
35:05:3f:62:ec:4b:89:82:1b:23:24:21:48:23:a0:
cc:c4:95:fc:41:fd:50:91:12:6e:eb:90:96:11:d5:
cf:d8:09:a9:f4:55:01:42:c0:41:2a:d4:4d:5f:7b:
05:2d:43:81:c8:07:86:9e:1f:b8:08:55:5d:34:9e:
35:c1:33:c0:81:df:19:69:f8:49:4a:7b:2f:63:17:
df:c7:7c:89:25:8c:34:c6:c4:8c:0f:6f:e3:b3:f6:
82:74:22:da:0a:90:a4:5d:8e:4b:4b:e1:16:93:47:
2c:96:1c:c5:54:55:f5:45:04:e7:fc:ca:bb:6a:4a:
01:25:99:54:43:70:df:71:f7:f3:f4:b1:90:a7:b5:
9b:f5:a9:3a:cc:b9:cc:cf:a4:07:37:3d:0f:b0:76:
30:a0:91:bc:0d:39:88:5c:81:66:a8:31:a5:7f:76:
29:61:84:26:e6:27:d3:02:96:fa:9c:09:19:91:6b:
74:94:ff:05:06:65:0d:c2:68:39:85:eb:23:7c:dc:
29:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:E3:15:8A:83:CC:95:33:6F:A2:B1:A4:A8:39:73:25:82:C3:21:16
X509v3 Authority Key Identifier:
keyid:D4:FF:0F:EC:D7:BF:44:14:89:31:78:8D:FE:7F:20:D6:7A:67:A0:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1P8P7Ne_RBSJMXiN_n8g1npnoNs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0c0c65-9f82-4450-9165-f0c21f8186f0/1/deMVioPMlTNvorGkqDlzJYLDIRY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0c0c65-9f82-4450-9165-f0c21f8186f0/1/1P8P7Ne_RBSJMXiN_n8g1npnoNs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:9b8::/31
Signature Algorithm: sha256WithRSAEncryption
b9:17:cf:99:7f:77:0c:76:5c:c1:66:3d:5b:cb:a3:32:c5:08:
0d:e9:fc:09:65:00:5f:45:3b:4a:a3:f6:12:27:60:3b:70:14:
45:df:9f:fe:aa:be:e4:32:35:7f:22:84:d1:ac:28:35:d0:4f:
a6:5b:5e:07:d6:65:89:cf:63:37:dd:82:56:ac:86:1b:47:95:
78:b2:30:ff:9f:56:21:d7:28:b7:8f:4a:91:86:00:60:7c:3e:
e8:bb:a5:88:34:69:61:13:28:9c:ae:9e:7d:b9:e4:b2:45:9b:
f2:56:1b:be:fd:1c:e5:9d:63:9f:70:e2:f8:9b:cc:06:b5:77:
db:e0:53:ec:81:e2:d0:9a:8d:d8:2f:1e:22:da:bb:76:f0:e2:
28:28:53:06:b3:72:a6:48:0c:80:70:41:c5:8f:88:13:b8:bd:
ba:a9:18:60:28:fd:47:36:85:dd:37:e1:d9:5a:56:ab:3d:8f:
ff:f0:83:a8:f3:f9:97:66:4e:e2:67:c8:56:45:a4:34:f7:38:
f6:fa:f9:bc:b0:e4:84:ec:d1:db:19:83:49:a5:62:f1:b2:15:
ce:89:70:4b:a2:09:c4:78:b8:07:5d:92:8c:1d:41:bc:91:d9:
07:67:ff:2e:97:f9:0b:6e:5a:88:7c:ff:5f:86:20:46:9b:f7:
89:89:00:c1
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgIEBUHhpzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
NGZmMGZlY2Q3YmY0NDE0ODkzMTc4OGRmZTdmMjBkNjdhNjdhMGRiMB4XDTIyMDEw
MTA2MDQwM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzVlMzE1OGE4M2Nj
OTUzMzZmYTJiMWE0YTgzOTczMjU4MmMzMjExNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAM77QjrLYQX5FtnXKnVKhRXXAMbtwqROiih6mmuRVJqb2dkr
R7Kci7fZ3bO24AvUhE8edGMOwG4TVMgYNQU/YuxLiYIbIyQhSCOgzMSV/EH9UJES
buuQlhHVz9gJqfRVAULAQSrUTV97BS1DgcgHhp4fuAhVXTSeNcEzwIHfGWn4SUp7
L2MX38d8iSWMNMbEjA9v47P2gnQi2gqQpF2OS0vhFpNHLJYcxVRV9UUE5/zKu2pK
ASWZVENw33H38/SxkKe1m/WpOsy5zM+kBzc9D7B2MKCRvA05iFyBZqgxpX92KWGE
JuYn0wKW+pwJGZFrdJT/BQZlDcJoOYXrI3zcKcsCAwEAAaOCAgowggIGMB0GA1Ud
DgQWBBR14xWKg8yVM2+isaSoOXMlgsMhFjAfBgNVHSMEGDAWgBTU/w/s179EFIkx
eI3+fyDWemeg2zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzFQOFA3TmVfUkJTSk1YaU5fbjhnMW5wbm9Ocy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNmIvMGMwYzY1LTlmODItNDQ1MC05MTY1LWYwYzIxZjgxODZmMC8x
L2RlTVZpb1BNbFROdm9yR2txRGx6SllMRElSWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmIv
MGMwYzY1LTlmODItNDQ1MC05MTY1LWYwYzIxZjgxODZmMC8xLzFQOFA3TmVfUkJT
Sk1YaU5fbjhnMW5wbm9Ocy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAg
BggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFASoCCbgwDQYJKoZIhvcNAQELBQAD
ggEBALkXz5l/dwx2XMFmPVvLozLFCA3p/AllAF9FO0qj9hInYDtwFEXfn/6qvuQy
NX8ihNGsKDXQT6ZbXgfWZYnPYzfdglashhtHlXiyMP+fViHXKLePSpGGAGB8Pui7
pYg0aWETKJyunn255LJFm/JWG779HOWdY59w4vibzAa1d9vgU+yB4tCajdgvHiLa
u3bw4igoUwazcqZIDIBwQcWPiBO4vbqpGGAo/Uc2hd034dlaVqs9j//wg6jz+Zdm
TuJnyFZFpDT3OPb6+byw5ITs0dsZg0mlYvGyFc6JcEuiCcR4uAddkowdQbyR2Qdn
/y6X+QtuWoh8/1+GIEab94mJAME=
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:31:33 2025 by rpki-client