Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/6f0cb6-ab28-4e49-8b2d-8b0cb4432ac6/1/XdZrtFj4mUHKiUbAGVYHo5nhE0w.roa
File: XdZrtFj4mUHKiUbAGVYHo5nhE0w.roa (raw, json)
Hash identifier: 9xrui9AB5ZHluKqu+7+9L12Daz/uJj19EFEG8oq2WR8=
Subject key identifier: 5D:D6:6B:B4:58:F8:99:41:CA:89:46:C0:19:56:07:A3:99:E1:13:4C
Certificate issuer: /CN=3c3784403d86b2d85b3d1d1e02d3dc00a0413d41
Certificate serial: 01823711147B73B47207348A556B33885C02
Authority key identifier: 3C:37:84:40:3D:86:B2:D8:5B:3D:1D:1E:02:D3:DC:00:A0:41:3D:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PDeEQD2GsthbPR0eAtPcAKBBPUE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/6f0cb6-ab28-4e49-8b2d-8b0cb4432ac6/1/XdZrtFj4mUHKiUbAGVYHo5nhE0w.roa
Signing time: Mon 25 Jul 2022 20:34:02 +0000
ROA not before: Mon 25 Jul 2022 20:34:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 2a12:9800::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:37:11:14:7b:73:b4:72:07:34:8a:55:6b:33:88:5c:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c3784403d86b2d85b3d1d1e02d3dc00a0413d41
Validity
Not Before: Jul 25 20:34:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5dd66bb458f89941ca8946c0195607a399e1134c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:21:b1:31:8e:66:c1:c9:87:30:c9:84:ba:c7:
3b:95:89:74:6d:35:e2:b0:88:20:fb:7c:22:c5:05:
af:60:dd:b1:2c:82:64:a7:1a:c3:0f:e2:87:e2:70:
01:40:d6:12:c7:d8:b5:20:40:ce:37:3a:8e:98:86:
b5:c4:46:cd:f3:ba:73:ec:da:7e:5b:c8:44:b2:e5:
9c:50:8c:23:12:cf:ee:7c:22:d0:b3:12:c6:22:45:
50:0f:65:ee:81:f8:3d:22:de:ca:49:45:50:40:16:
c5:dd:74:e5:7a:83:70:bf:5f:2b:6f:31:f8:5e:0f:
2f:8f:a0:19:1b:0e:68:89:46:33:2f:9a:22:c1:1c:
e8:3d:68:98:fc:ef:a3:7e:36:16:46:16:94:75:a9:
49:16:44:1a:d2:03:25:a6:f7:4d:cd:56:9c:3a:e1:
35:2d:07:3a:70:7c:68:3f:65:9b:29:ab:76:34:03:
96:66:eb:37:f0:1c:d2:b1:62:83:78:b8:92:2a:ce:
18:60:6b:3e:26:fc:3b:20:a2:f6:50:e1:0b:c5:de:
64:d5:c7:b7:0b:9d:3e:ec:5f:65:89:ac:7d:46:d1:
2b:91:66:3c:81:4b:0e:1f:11:b9:53:a9:23:a8:ce:
39:77:c9:76:57:82:79:50:fc:37:a4:ce:24:9f:ed:
48:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:D6:6B:B4:58:F8:99:41:CA:89:46:C0:19:56:07:A3:99:E1:13:4C
X509v3 Authority Key Identifier:
keyid:3C:37:84:40:3D:86:B2:D8:5B:3D:1D:1E:02:D3:DC:00:A0:41:3D:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PDeEQD2GsthbPR0eAtPcAKBBPUE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/6f0cb6-ab28-4e49-8b2d-8b0cb4432ac6/1/XdZrtFj4mUHKiUbAGVYHo5nhE0w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/6f0cb6-ab28-4e49-8b2d-8b0cb4432ac6/1/PDeEQD2GsthbPR0eAtPcAKBBPUE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:9800::/29
Signature Algorithm: sha256WithRSAEncryption
73:48:c9:8d:66:70:e5:83:c2:12:f6:6e:2b:54:f9:77:bb:ed:
a5:62:ac:19:61:95:17:fe:9c:5e:e2:1f:8c:bc:24:58:54:1b:
b3:70:9a:ff:d7:89:37:af:72:30:26:4d:8b:7e:87:0b:b1:15:
42:db:c7:5d:97:e8:51:77:6a:bb:be:28:e2:2e:ec:4b:07:b1:
22:27:bd:8a:b5:94:e7:14:d4:17:e5:47:43:24:90:4f:c1:13:
5a:26:a4:b7:cb:da:e7:42:df:87:96:fa:fb:e1:eb:e0:39:32:
62:0e:ae:2e:73:4b:78:e5:99:8b:f6:3c:d9:b3:43:d6:e4:07:
03:b3:55:24:00:67:da:04:0d:53:53:85:b8:6b:1f:a7:04:e4:
21:6e:8b:6b:e8:8a:be:66:42:27:1b:c9:ff:da:7b:5a:ef:2d:
0b:8f:f5:71:74:dc:06:a1:2b:25:7e:06:b3:5f:36:07:3f:88:
1a:21:d3:9f:9b:5d:41:41:6b:ec:52:ed:d4:80:bb:9b:43:d7:
7f:54:f5:78:94:3e:f8:54:c1:ef:f1:10:1a:1f:e6:68:45:36:
d9:90:f1:ad:fa:a3:11:e9:64:40:4f:f8:1f:4b:fd:ce:93:41:
51:9b:02:f2:68:4b:57:8b:6e:a1:9d:99:ae:92:6f:0a:2b:df:
61:61:66:be
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYI3ERR7c7RyBzSKVWsziFwCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNjMzc4NDQwM2Q4NmIyZDg1YjNkMWQxZTAyZDNkYzAwYTA0
MTNkNDEwHhcNMjIwNzI1MjAzNDAyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ZGQ2NmJiNDU4Zjg5OTQxY2E4OTQ2YzAxOTU2MDdhMzk5ZTExMzRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhiGxMY5mwcmHMMmEusc7lYl0bTXi
sIgg+3wixQWvYN2xLIJkpxrDD+KH4nABQNYSx9i1IEDONzqOmIa1xEbN87pz7Np+
W8hEsuWcUIwjEs/ufCLQsxLGIkVQD2Xugfg9It7KSUVQQBbF3XTleoNwv18rbzH4
Xg8vj6AZGw5oiUYzL5oiwRzoPWiY/O+jfjYWRhaUdalJFkQa0gMlpvdNzVacOuE1
LQc6cHxoP2WbKat2NAOWZus38BzSsWKDeLiSKs4YYGs+Jvw7IKL2UOELxd5k1ce3
C50+7F9liax9RtErkWY8gUsOHxG5U6kjqM45d8l2V4J5UPw3pM4kn+1I4QIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFF3Wa7RY+JlByolGwBlWB6OZ4RNMMB8GA1UdIwQY
MBaAFDw3hEA9hrLYWz0dHgLT3ACgQT1BMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUERlRVFEMkdzdGhiUFIwZUF0UGNBS0JCUFVFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS82ZjBjYjYtYWIyOC00ZTQ5LThiMmQt
OGIwY2I0NDMyYWM2LzEvWGRacnRGajRtVUhLaVViQUdWWUhvNW5oRTB3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83YS82ZjBjYjYtYWIyOC00ZTQ5LThiMmQtOGIwY2I0NDMyYWM2
LzEvUERlRVFEMkdzdGhiUFIwZUF0UGNBS0JCUFVFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhKYADAN
BgkqhkiG9w0BAQsFAAOCAQEAc0jJjWZw5YPCEvZuK1T5d7vtpWKsGWGVF/6cXuIf
jLwkWFQbs3Ca/9eJN69yMCZNi36HC7EVQtvHXZfoUXdqu74o4i7sSwexIie9irWU
5xTUF+VHQySQT8ETWiakt8va50Lfh5b6++Hr4DkyYg6uLnNLeOWZi/Y82bND1uQH
A7NVJABn2gQNU1OFuGsfpwTkIW6La+iKvmZCJxvJ/9p7Wu8tC4/1cXTcBqErJX4G
s182Bz+IGiHTn5tdQUFr7FLt1IC7m0PXf1T1eJQ++FTB7/EQGh/maEU22ZDxrfqj
EelkQE/4H0v9zpNBUZsC8mhLV4tuoZ2ZrpJvCivfYWFmvg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:59 2024 by rpki-client on console-fra.rpki-client.org