Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/0c0c65-9f82-4450-9165-f0c21f8186f0/1/iYsYiL6ocBkCE8g5J2uvIK7AS1Q.roa
File: iYsYiL6ocBkCE8g5J2uvIK7AS1Q.roa (raw, json)
Hash identifier: lWY2r8cQoAQ33HBnyvKRAJ0OPufOFLchweo5Pdpgpew=
Subject key identifier: 89:8B:18:88:BE:A8:70:19:02:13:C8:39:27:6B:AF:20:AE:C0:4B:54
Certificate issuer: /CN=d4ff0fecd7bf44148931788dfe7f20d67a67a0db
Certificate serial: 01839265CC8E7E47EABE417CCEA8A22A3E99
Authority key identifier: D4:FF:0F:EC:D7:BF:44:14:89:31:78:8D:FE:7F:20:D6:7A:67:A0:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1P8P7Ne_RBSJMXiN_n8g1npnoNs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/0c0c65-9f82-4450-9165-f0c21f8186f0/1/iYsYiL6ocBkCE8g5J2uvIK7AS1Q.roa
Signing time: Sat 01 Oct 2022 07:14:48 +0000
ROA not before: Sat 01 Oct 2022 07:14:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61169
IP address blocks: 2a03:b4c0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:92:65:cc:8e:7e:47:ea:be:41:7c:ce:a8:a2:2a:3e:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4ff0fecd7bf44148931788dfe7f20d67a67a0db
Validity
Not Before: Oct 1 07:14:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=898b1888bea870190213c839276baf20aec04b54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:5e:96:78:9e:eb:9b:f1:00:d7:4f:92:36:34:
11:65:7e:76:c8:e4:9d:77:02:bd:17:9c:05:40:45:
65:05:cc:9b:49:7f:b3:f6:2d:a1:e9:1a:e5:f1:de:
4c:78:61:58:1b:0a:cb:b9:96:ed:0d:ef:f2:fc:2d:
24:b5:e2:fb:00:56:ce:35:0f:48:ee:1d:69:18:92:
96:29:d1:0d:66:9a:0f:72:ef:27:d4:a6:7f:64:8c:
d5:37:53:6b:d1:dd:81:07:0e:14:27:56:bd:f1:34:
c8:1e:ce:f7:bb:a7:22:30:0b:17:c1:5a:6d:c1:19:
58:d9:01:3f:83:f9:d2:7c:59:6f:0c:4a:05:cc:27:
7c:f9:97:40:76:62:e1:b5:6a:5d:1f:ee:f4:fc:31:
72:01:4f:d9:68:87:bb:5f:7d:15:94:e2:7e:03:9b:
93:83:fe:a2:5a:1d:e2:db:da:ef:96:e3:08:26:80:
d4:2a:2a:7d:1e:2a:bd:f0:06:7f:cc:ab:bd:07:57:
c0:2a:18:25:49:01:db:30:3b:19:77:82:56:e4:e4:
27:45:44:c0:a3:bf:40:03:0c:9c:2c:d1:6a:75:9d:
0a:77:8e:09:b5:86:6b:56:20:f7:28:26:89:01:af:
b4:dc:1f:9e:bd:9c:78:e2:ec:76:a6:c8:c5:77:91:
d9:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:8B:18:88:BE:A8:70:19:02:13:C8:39:27:6B:AF:20:AE:C0:4B:54
X509v3 Authority Key Identifier:
keyid:D4:FF:0F:EC:D7:BF:44:14:89:31:78:8D:FE:7F:20:D6:7A:67:A0:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1P8P7Ne_RBSJMXiN_n8g1npnoNs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0c0c65-9f82-4450-9165-f0c21f8186f0/1/iYsYiL6ocBkCE8g5J2uvIK7AS1Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0c0c65-9f82-4450-9165-f0c21f8186f0/1/1P8P7Ne_RBSJMXiN_n8g1npnoNs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:b4c0::/32
Signature Algorithm: sha256WithRSAEncryption
35:af:06:38:9c:54:25:89:2b:7d:86:4b:9a:17:9c:99:84:c7:
42:f6:fe:14:91:03:53:93:85:b4:e8:74:36:b6:31:7a:49:e8:
43:cf:f9:b1:58:c2:7b:ca:c4:4b:bb:4b:70:b9:63:73:ce:0d:
b8:3e:a4:9f:b9:9a:bf:59:94:e9:54:fc:0c:6d:6c:10:1f:df:
cf:27:41:42:8a:07:ab:62:86:17:fd:13:db:30:c8:0f:46:fa:
21:dd:08:2c:6e:69:95:4a:08:e1:79:29:96:49:c6:8c:0b:eb:
dc:58:68:9a:54:30:34:41:32:a7:78:56:fd:1f:82:61:1e:e3:
f6:56:83:33:ce:35:7c:2e:63:85:7d:36:5e:ec:f1:d3:bd:31:
df:13:38:67:42:72:55:77:fe:7d:c4:4e:14:54:2f:46:59:ed:
d2:f5:9e:ed:60:c6:62:cc:a8:08:07:58:60:13:99:f8:4d:ba:
e5:1d:59:06:9e:7f:bb:14:89:99:d7:12:89:52:50:54:34:db:
a4:c0:ea:13:a4:3a:8a:cf:e7:87:aa:ff:25:94:26:be:3b:c3:
66:12:fa:94:19:83:3d:a7:f2:62:63:1a:9b:2e:3c:48:5c:b6:
6f:bf:70:2a:e4:99:f8:d8:37:5d:11:f8:10:a0:08:b5:b7:4d:
0d:7d:ef:95
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYOSZcyOfkfqvkF8zqiiKj6ZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ0ZmYwZmVjZDdiZjQ0MTQ4OTMxNzg4ZGZlN2YyMGQ2N2E2
N2EwZGIwHhcNMjIxMDAxMDcxNDQ4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4OThiMTg4OGJlYTg3MDE5MDIxM2M4MzkyNzZiYWYyMGFlYzA0YjU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg16WeJ7rm/EA10+SNjQRZX52yOSd
dwK9F5wFQEVlBcybSX+z9i2h6Rrl8d5MeGFYGwrLuZbtDe/y/C0kteL7AFbONQ9I
7h1pGJKWKdENZpoPcu8n1KZ/ZIzVN1Nr0d2BBw4UJ1a98TTIHs73u6ciMAsXwVpt
wRlY2QE/g/nSfFlvDEoFzCd8+ZdAdmLhtWpdH+70/DFyAU/ZaIe7X30VlOJ+A5uT
g/6iWh3i29rvluMIJoDUKip9Hiq98AZ/zKu9B1fAKhglSQHbMDsZd4JW5OQnRUTA
o79AAwycLNFqdZ0Kd44JtYZrViD3KCaJAa+03B+evZx44ux2psjFd5HZGQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFImLGIi+qHAZAhPIOSdrryCuwEtUMB8GA1UdIwQY
MBaAFNT/D+zXv0QUiTF4jf5/INZ6Z6DbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMVA4UDdOZV9SQlNKTVhpTl9uOGcxbnBub05zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yi8wYzBjNjUtOWY4Mi00NDUwLTkxNjUt
ZjBjMjFmODE4NmYwLzEvaVlzWWlMNm9jQmtDRThnNUoydXZJSzdBUzFRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Yi8wYzBjNjUtOWY4Mi00NDUwLTkxNjUtZjBjMjFmODE4NmYw
LzEvMVA4UDdOZV9SQlNKTVhpTl9uOGcxbnBub05zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgO0wDAN
BgkqhkiG9w0BAQsFAAOCAQEANa8GOJxUJYkrfYZLmhecmYTHQvb+FJEDU5OFtOh0
NrYxeknoQ8/5sVjCe8rES7tLcLljc84NuD6kn7mav1mU6VT8DG1sEB/fzydBQooH
q2KGF/0T2zDID0b6Id0ILG5plUoI4XkplknGjAvr3FhomlQwNEEyp3hW/R+CYR7j
9laDM841fC5jhX02Xuzx070x3xM4Z0JyVXf+fcROFFQvRlnt0vWe7WDGYsyoCAdY
YBOZ+E265R1ZBp5/uxSJmdcSiVJQVDTbpMDqE6Q6is/nh6r/JZQmvjvDZhL6lBmD
PafyYmMamy48SFy2b79wKuSZ+Ng3XRH4EKAItbdNDX3vlQ==
-----END CERTIFICATE-----
Generated at Mon Apr 21 04:16:14 2025 by rpki-client