Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/b41ad4-8500-4f26-9019-0f0bc9f629d3/1/FRZAkwaBFN4eCMivFm1ndTqH7i8.roa
File: FRZAkwaBFN4eCMivFm1ndTqH7i8.roa (raw, json)
Hash identifier: uW+W8NN4YXjHoJvHddhlWNoM8/vHm9XWFaPD6lEqRo0=
Subject key identifier: 15:16:40:93:06:81:14:DE:1E:08:C8:AF:16:6D:67:75:3A:87:EE:2F
Certificate issuer: /CN=07217c0634c102c71ba3e444f0688abdd1af4ce8
Certificate serial: 018CC64B506B3667305E4610DC87C57EE80E
Authority key identifier: 07:21:7C:06:34:C1:02:C7:1B:A3:E4:44:F0:68:8A:BD:D1:AF:4C:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ByF8BjTBAscbo-RE8GiKvdGvTOg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/b41ad4-8500-4f26-9019-0f0bc9f629d3/1/FRZAkwaBFN4eCMivFm1ndTqH7i8.roa
Signing time: Mon 01 Jan 2024 18:31:13 +0000
ROA not before: Mon 01 Jan 2024 18:31:13 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 28788
IP address blocks: 2a03:71e0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:50:6b:36:67:30:5e:46:10:dc:87:c5:7e:e8:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07217c0634c102c71ba3e444f0688abdd1af4ce8
Validity
Not Before: Jan 1 18:31:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=15164093068114de1e08c8af166d67753a87ee2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:35:67:96:21:f0:36:dc:b3:ad:95:5f:94:3d:
be:00:a5:14:22:a0:56:d7:bf:fb:bd:10:10:88:a9:
e7:a8:a6:c2:7d:5e:54:75:6d:0e:0f:01:2a:3e:c4:
1f:41:8a:26:37:a0:f6:23:5e:16:d7:eb:6b:59:9d:
36:e4:12:ed:4b:f2:50:be:47:98:45:98:c9:35:e2:
c7:76:d0:72:5f:ee:d1:94:ac:a5:de:69:56:f9:a1:
ac:28:d2:12:93:14:af:10:65:1e:e2:cc:39:cd:1a:
bf:58:33:97:6a:80:d4:90:da:cf:b4:b2:33:c0:39:
27:e2:12:10:f9:b6:5b:cc:ef:61:f8:ff:73:c4:fc:
93:f3:91:15:15:76:23:41:91:5d:00:39:e6:cc:e5:
2a:4a:b0:5d:61:84:8d:fa:a4:4d:ee:5a:bf:3e:74:
5a:9a:44:c2:52:6e:20:e0:1c:93:d6:f0:41:2e:09:
8a:36:48:3a:c0:e1:c3:f2:a7:2d:aa:33:d1:a7:ca:
55:83:8f:b8:a5:ab:28:95:d3:c6:da:77:fe:c1:97:
4c:cc:8b:51:04:1b:3c:7c:f3:fd:c9:9a:38:4b:2d:
63:ce:f7:73:3e:82:3c:71:10:70:e6:19:73:17:b1:
31:95:c3:11:97:21:c5:de:50:79:90:ec:17:f0:10:
11:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:16:40:93:06:81:14:DE:1E:08:C8:AF:16:6D:67:75:3A:87:EE:2F
X509v3 Authority Key Identifier:
keyid:07:21:7C:06:34:C1:02:C7:1B:A3:E4:44:F0:68:8A:BD:D1:AF:4C:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ByF8BjTBAscbo-RE8GiKvdGvTOg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/b41ad4-8500-4f26-9019-0f0bc9f629d3/1/FRZAkwaBFN4eCMivFm1ndTqH7i8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/b41ad4-8500-4f26-9019-0f0bc9f629d3/1/ByF8BjTBAscbo-RE8GiKvdGvTOg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:71e0::/32
Signature Algorithm: sha256WithRSAEncryption
21:2b:9f:d9:cd:35:c5:7f:95:02:90:02:49:1a:08:83:bf:6c:
8d:02:b1:9f:26:d7:35:dc:3e:88:e3:78:ed:75:cb:80:c6:d2:
38:0e:8b:75:82:be:d2:4b:e5:db:49:81:3a:11:39:00:7d:f9:
d3:c0:e8:f4:05:c3:72:54:c7:06:70:5f:ce:a2:99:9e:84:7e:
70:80:a0:89:6c:36:3a:77:af:db:b3:9a:9e:04:bf:ae:c5:51:
fc:e5:21:e4:a0:f6:3b:b9:24:5b:c4:ed:e4:3f:5d:17:5e:d8:
4c:76:94:23:9b:83:58:ea:39:7c:16:08:09:5d:fb:b2:af:d4:
15:0a:eb:44:c1:18:1e:02:4f:79:f3:07:23:84:fb:e0:40:b8:
cb:4a:8e:ff:60:2d:16:a2:a6:df:95:01:bd:48:33:b3:51:02:
a1:a3:0d:37:70:4d:59:7f:1d:92:b9:c3:e5:30:f7:71:ff:1e:
1c:f6:cb:8b:55:4c:05:51:4f:4b:39:af:b9:4b:d4:cd:a3:2f:
31:f6:59:34:c9:57:4c:39:a5:80:b5:35:d5:97:c7:2f:01:46:
5a:60:96:a6:56:e3:3f:40:98:b5:ac:17:39:43:85:ed:4a:17:
a4:41:43:46:d9:b9:fb:96:03:8a:29:c0:a4:39:2f:8a:d8:2a:
8b:1f:cf:0b
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYzGS1BrNmcwXkYQ3IfFfugOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA3MjE3YzA2MzRjMTAyYzcxYmEzZTQ0NGYwNjg4YWJkZDFh
ZjRjZTgwHhcNMjQwMTAxMTgzMTEzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNTE2NDA5MzA2ODExNGRlMWUwOGM4YWYxNjZkNjc3NTNhODdlZTJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAljVnliHwNtyzrZVflD2+AKUUIqBW
17/7vRAQiKnnqKbCfV5UdW0ODwEqPsQfQYomN6D2I14W1+trWZ025BLtS/JQvkeY
RZjJNeLHdtByX+7RlKyl3mlW+aGsKNISkxSvEGUe4sw5zRq/WDOXaoDUkNrPtLIz
wDkn4hIQ+bZbzO9h+P9zxPyT85EVFXYjQZFdADnmzOUqSrBdYYSN+qRN7lq/PnRa
mkTCUm4g4ByT1vBBLgmKNkg6wOHD8qctqjPRp8pVg4+4pasoldPG2nf+wZdMzItR
BBs8fPP9yZo4Sy1jzvdzPoI8cRBw5hlzF7ExlcMRlyHF3lB5kOwX8BARsQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFBUWQJMGgRTeHgjIrxZtZ3U6h+4vMB8GA1UdIwQY
MBaAFAchfAY0wQLHG6PkRPBoir3Rr0zoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQnlGOEJqVEJBc2Niby1SRThHaUt2ZEd2VE9nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC9iNDFhZDQtODUwMC00ZjI2LTkwMTkt
MGYwYmM5ZjYyOWQzLzEvRlJaQWt3YUJGTjRlQ01pdkZtMW5kVHFIN2k4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OC9iNDFhZDQtODUwMC00ZjI2LTkwMTktMGYwYmM5ZjYyOWQz
LzEvQnlGOEJqVEJBc2Niby1SRThHaUt2ZEd2VE9nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgNx4DAN
BgkqhkiG9w0BAQsFAAOCAQEAISuf2c01xX+VApACSRoIg79sjQKxnybXNdw+iON4
7XXLgMbSOA6LdYK+0kvl20mBOhE5AH3508Do9AXDclTHBnBfzqKZnoR+cICgiWw2
Onev27OangS/rsVR/OUh5KD2O7kkW8Tt5D9dF17YTHaUI5uDWOo5fBYICV37sq/U
FQrrRMEYHgJPefMHI4T74EC4y0qO/2AtFqKm35UBvUgzs1ECoaMNN3BNWX8dkrnD
5TD3cf8eHPbLi1VMBVFPSzmvuUvUzaMvMfZZNMlXTDmlgLU11ZfHLwFGWmCWplbj
P0CYtawXOUOF7UoXpEFDRtm5+5YDiinApDkvitgqix/PCw==
-----END CERTIFICATE-----
Generated at Tue Jan 2 17:34:53 2024 by rpki-client on console-fra.rpki-client.org