Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/b30fdb-32e3-4eb2-841f-8b20aa3baae9/1/Mmd8c-pFIEVgyCn5QqnDoVMwDDo.roa
File: Mmd8c-pFIEVgyCn5QqnDoVMwDDo.roa (raw, json)
Hash identifier: PYHZp1QZoRWg6VH9jRLd/mVesAmYUzR6UQzAAl/kyNs=
Subject key identifier: 32:67:7C:73:EA:45:20:45:60:C8:29:F9:42:A9:C3:A1:53:30:0C:3A
Certificate issuer: /CN=0d03df51f0818531d8ade8208eb8225354116e80
Certificate serial: 0188E33242506E6843614006E2A149D45FEC
Authority key identifier: 0D:03:DF:51:F0:81:85:31:D8:AD:E8:20:8E:B8:22:53:54:11:6E:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DQPfUfCBhTHYreggjrgiU1QRboA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/b30fdb-32e3-4eb2-841f-8b20aa3baae9/1/Mmd8c-pFIEVgyCn5QqnDoVMwDDo.roa
Signing time: Thu 22 Jun 2023 13:01:41 +0000
ROA not before: Thu 22 Jun 2023 13:01:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47251
IP address blocks: 2001:678:254::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:e3:32:42:50:6e:68:43:61:40:06:e2:a1:49:d4:5f:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d03df51f0818531d8ade8208eb8225354116e80
Validity
Not Before: Jun 22 13:01:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=32677c73ea45204560c829f942a9c3a153300c3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:4e:2c:83:59:92:0b:c2:79:77:0d:60:e1:fb:
81:27:95:9d:3f:3e:5f:76:ec:99:95:18:b1:44:57:
01:c0:86:35:d4:bc:0f:e3:3a:c6:95:40:a9:c0:8d:
8d:10:54:6c:85:0c:8d:a7:04:82:1a:8d:af:61:8f:
1a:36:45:bc:3a:56:49:06:b9:b3:21:83:e1:d2:37:
4f:05:b1:4a:e7:a3:af:bf:da:99:88:ea:fd:5b:45:
7a:1d:7d:3d:ea:60:f8:af:ff:80:96:ac:de:5b:b3:
9c:a8:2a:2f:68:09:62:85:b6:5a:a7:07:e5:b6:42:
ed:61:f2:0b:a5:70:6c:37:c2:7e:aa:69:fc:7a:9d:
92:cb:42:b8:2a:21:b4:d8:89:f6:9d:51:2e:65:14:
60:61:97:73:db:1e:25:93:b2:23:78:8b:32:e5:28:
e9:36:6b:d2:ed:e0:5a:20:61:06:17:42:67:2c:f7:
b4:55:e5:fa:ab:93:6a:c9:d1:f6:a7:6d:43:38:e0:
c9:da:9c:f2:ff:13:74:4b:ee:5a:82:51:79:4f:03:
ae:c3:08:59:33:ec:b1:b5:da:8e:e9:82:53:17:fe:
3d:1c:0b:20:b4:50:bb:a2:a4:ce:ce:7a:17:5c:22:
98:bd:c2:66:d1:97:77:8d:30:a1:b8:53:ad:70:63:
10:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:67:7C:73:EA:45:20:45:60:C8:29:F9:42:A9:C3:A1:53:30:0C:3A
X509v3 Authority Key Identifier:
keyid:0D:03:DF:51:F0:81:85:31:D8:AD:E8:20:8E:B8:22:53:54:11:6E:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DQPfUfCBhTHYreggjrgiU1QRboA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/b30fdb-32e3-4eb2-841f-8b20aa3baae9/1/Mmd8c-pFIEVgyCn5QqnDoVMwDDo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/b30fdb-32e3-4eb2-841f-8b20aa3baae9/1/DQPfUfCBhTHYreggjrgiU1QRboA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:254::/48
Signature Algorithm: sha256WithRSAEncryption
4d:49:74:54:79:3c:3d:a8:bd:4d:88:f0:bf:48:75:7b:31:8c:
0d:51:d5:1c:3e:60:9d:e8:1a:d7:43:82:67:3e:1d:fc:68:40:
d9:4e:3f:48:e4:6c:49:44:6f:c6:dd:7c:f6:5e:79:0d:9a:41:
10:bd:52:d9:c3:75:09:1d:33:e2:fa:0d:31:36:5d:81:61:ad:
ba:88:33:0c:ea:e9:34:58:e8:6a:c6:e8:64:db:38:a3:3b:ad:
bc:41:58:23:0c:ff:6b:51:28:e7:d5:db:3e:0d:4d:9f:0f:ef:
63:b3:98:bc:bd:66:c0:9e:49:8e:45:51:cb:f2:bd:ee:54:a0:
df:3d:58:b4:f5:5c:be:ae:c8:e9:c6:97:e5:c9:3d:24:c9:2b:
31:ca:1a:ab:45:49:33:41:68:9a:fd:8f:72:1c:3e:bf:c7:c6:
21:c7:d7:f4:2e:8e:3b:5d:b5:cb:54:11:16:75:31:5b:bd:66:
f4:f3:b5:5a:fd:b1:2c:73:a4:37:b8:07:60:47:99:1f:10:63:
24:c8:2d:76:60:62:ff:93:1f:0e:ec:72:2e:09:53:f1:da:5e:
d0:d2:1e:ec:93:05:09:02:22:80:50:c4:f6:98:49:7e:56:58:
3d:32:fe:32:23:95:dd:70:b2:0c:3a:a8:45:f4:53:93:3e:d0:
af:d5:8b:76
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYjjMkJQbmhDYUAG4qFJ1F/sMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBkMDNkZjUxZjA4MTg1MzFkOGFkZTgyMDhlYjgyMjUzNTQx
MTZlODAwHhcNMjMwNjIyMTMwMTQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMjY3N2M3M2VhNDUyMDQ1NjBjODI5Zjk0MmE5YzNhMTUzMzAwYzNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjU4sg1mSC8J5dw1g4fuBJ5WdPz5f
duyZlRixRFcBwIY11LwP4zrGlUCpwI2NEFRshQyNpwSCGo2vYY8aNkW8OlZJBrmz
IYPh0jdPBbFK56Ovv9qZiOr9W0V6HX096mD4r/+AlqzeW7OcqCovaAlihbZapwfl
tkLtYfILpXBsN8J+qmn8ep2Sy0K4KiG02In2nVEuZRRgYZdz2x4lk7IjeIsy5Sjp
NmvS7eBaIGEGF0JnLPe0VeX6q5NqydH2p21DOODJ2pzy/xN0S+5aglF5TwOuwwhZ
M+yxtdqO6YJTF/49HAsgtFC7oqTOznoXXCKYvcJm0Zd3jTChuFOtcGMQCwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFDJnfHPqRSBFYMgp+UKpw6FTMAw6MB8GA1UdIwQY
MBaAFA0D31HwgYUx2K3oII64IlNUEW6AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRFFQZlVmQ0JoVEhZcmVnZ2pyZ2lVMVFSYm9BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OC9iMzBmZGItMzJlMy00ZWIyLTg0MWYt
OGIyMGFhM2JhYWU5LzEvTW1kOGMtcEZJRVZneUNuNVFxbkRvVk13RERvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OC9iMzBmZGItMzJlMy00ZWIyLTg0MWYtOGIyMGFhM2JhYWU5
LzEvRFFQZlVmQ0JoVEhZcmVnZ2pyZ2lVMVFSYm9BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeAJU
MA0GCSqGSIb3DQEBCwUAA4IBAQBNSXRUeTw9qL1NiPC/SHV7MYwNUdUcPmCd6BrX
Q4JnPh38aEDZTj9I5GxJRG/G3Xz2XnkNmkEQvVLZw3UJHTPi+g0xNl2BYa26iDMM
6uk0WOhqxuhk2zijO628QVgjDP9rUSjn1ds+DU2fD+9js5i8vWbAnkmORVHL8r3u
VKDfPVi09Vy+rsjpxpflyT0kySsxyhqrRUkzQWia/Y9yHD6/x8Yhx9f0Lo47XbXL
VBEWdTFbvWb087Va/bEsc6Q3uAdgR5kfEGMkyC12YGL/kx8O7HIuCVPx2l7Q0h7s
kwUJAiKAUMT2mEl+Vlg9Mv4yI5XdcLIMOqhF9FOTPtCv1Yt2
-----END CERTIFICATE-----
Generated at Thu Nov 30 11:47:17 2023 by rpki-client on console-ams.rpki-client.org