Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/d107de-e2e5-4727-98ad-3821810344e6/1/Tv8m3NbvN46eSPGdlvHKb5EYyUg.roa
File: Tv8m3NbvN46eSPGdlvHKb5EYyUg.roa (raw, json)
Hash identifier: teMx76RdXVOaw2w5fHFZK8/S6S0G9YUZ2uCiFBW4G+g=
Subject key identifier: 4E:FF:26:DC:D6:EF:37:8E:9E:48:F1:9D:96:F1:CA:6F:91:18:C9:48
Certificate issuer: /CN=5df53645843e6d2883dc8f9c4f415c1eadbbf60a
Certificate serial: 0185733142CFA1DA3863FAD323FF1F583043
Authority key identifier: 5D:F5:36:45:84:3E:6D:28:83:DC:8F:9C:4F:41:5C:1E:AD:BB:F6:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XfU2RYQ-bSiD3I-cT0FcHq279go.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/d107de-e2e5-4727-98ad-3821810344e6/1/Tv8m3NbvN46eSPGdlvHKb5EYyUg.roa
Signing time: Mon 02 Jan 2023 15:54:46 +0000
ROA not before: Mon 02 Jan 2023 15:54:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208806
IP address blocks: 2a10:4741:20::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:31:42:cf:a1:da:38:63:fa:d3:23:ff:1f:58:30:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5df53645843e6d2883dc8f9c4f415c1eadbbf60a
Validity
Not Before: Jan 2 15:54:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4eff26dcd6ef378e9e48f19d96f1ca6f9118c948
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:fc:71:71:33:79:36:55:60:fe:9a:f9:7c:3e:
e8:39:3e:3a:cf:b7:80:ca:ff:c8:a5:ec:42:ea:cb:
77:f0:b6:57:9c:b7:f5:a9:6a:f2:8b:e4:1e:8b:9f:
d3:b2:49:bc:6a:06:30:8d:61:c2:19:8c:ea:06:01:
84:34:56:b6:6c:2f:87:5e:ce:93:5a:d6:bd:81:e7:
44:fc:73:8a:39:ab:14:e7:4f:68:40:8f:8a:16:8f:
ca:dd:58:90:c0:08:12:e6:52:a3:5d:54:42:87:c1:
94:c7:6b:22:a3:fc:e7:ef:c0:44:04:e2:16:25:14:
51:ab:a9:df:73:91:91:db:4c:f9:ed:71:28:45:ed:
22:95:1b:6c:27:e1:c4:cc:4c:d5:06:b5:67:bc:73:
44:f9:b9:e6:e6:fa:4c:99:0b:af:08:44:59:ed:6e:
8e:c4:1b:22:73:18:e0:3c:7f:b1:94:84:78:1b:bb:
96:7b:d0:4f:6d:a1:b8:b1:e4:73:72:9d:c2:ac:af:
78:91:45:98:1f:40:6c:1c:37:fb:2d:27:72:b5:7f:
f9:95:93:fc:5e:44:fb:8d:2a:98:66:c1:4b:65:19:
8e:b0:c6:15:9b:aa:9b:4a:1c:4f:14:63:a3:30:4c:
bc:b8:c8:46:13:26:68:4a:44:b7:cd:c6:f3:a9:a0:
da:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:FF:26:DC:D6:EF:37:8E:9E:48:F1:9D:96:F1:CA:6F:91:18:C9:48
X509v3 Authority Key Identifier:
keyid:5D:F5:36:45:84:3E:6D:28:83:DC:8F:9C:4F:41:5C:1E:AD:BB:F6:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XfU2RYQ-bSiD3I-cT0FcHq279go.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/d107de-e2e5-4727-98ad-3821810344e6/1/Tv8m3NbvN46eSPGdlvHKb5EYyUg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/d107de-e2e5-4727-98ad-3821810344e6/1/XfU2RYQ-bSiD3I-cT0FcHq279go.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:4741:20::/48
Signature Algorithm: sha256WithRSAEncryption
1d:f6:11:07:6d:51:c1:60:e7:fc:f0:1d:ef:d9:ae:8c:95:db:
09:3a:32:05:8f:46:52:d0:85:a9:25:99:81:59:cf:28:9e:9b:
9e:b0:18:c6:3e:57:ea:bf:9d:dc:81:9b:8f:f8:9b:87:a5:4e:
39:b5:54:9d:e8:a2:b2:61:d4:61:5c:6b:53:e2:2a:97:07:49:
b6:12:86:ae:8e:c0:cf:1d:be:5c:ac:82:cf:3a:b4:10:3e:b5:
e8:06:ea:5c:f6:e6:2f:b4:43:d7:26:d2:bd:ad:12:6c:a4:58:
98:66:be:56:88:78:d1:3c:56:82:d8:7b:79:68:0c:5e:af:ca:
e6:12:67:4a:fa:47:83:1a:d3:fa:4b:a9:c4:6c:01:3b:66:d0:
29:22:56:d2:15:71:35:56:6f:d8:c2:95:b2:1e:bd:c6:9d:63:
37:6b:ca:1c:d9:95:a0:87:db:c6:cf:3b:38:4d:4e:82:42:55:
8d:73:e4:bf:ca:14:c1:81:da:98:2e:6c:8d:d8:00:7d:74:7f:
29:a1:f9:83:e2:af:1c:12:aa:f3:89:4c:4a:a6:8d:62:51:05:
76:26:f8:46:16:d6:6b:50:a3:3f:c9:fd:54:fa:41:eb:1b:c6:
ca:23:de:92:b4:bf:38:3a:b6:2c:7f:e3:81:3e:c7:b2:b7:9a:
9c:45:16:cd
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVzMULPodo4Y/rTI/8fWDBDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVkZjUzNjQ1ODQzZTZkMjg4M2RjOGY5YzRmNDE1YzFlYWRi
YmY2MGEwHhcNMjMwMTAyMTU1NDQ2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZWZmMjZkY2Q2ZWYzNzhlOWU0OGYxOWQ5NmYxY2E2ZjkxMThjOTQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0vxxcTN5NlVg/pr5fD7oOT46z7eA
yv/IpexC6st38LZXnLf1qWryi+Qei5/Tskm8agYwjWHCGYzqBgGENFa2bC+HXs6T
Wta9gedE/HOKOasU509oQI+KFo/K3ViQwAgS5lKjXVRCh8GUx2sio/zn78BEBOIW
JRRRq6nfc5GR20z57XEoRe0ilRtsJ+HEzEzVBrVnvHNE+bnm5vpMmQuvCERZ7W6O
xBsicxjgPH+xlIR4G7uWe9BPbaG4seRzcp3CrK94kUWYH0BsHDf7LSdytX/5lZP8
XkT7jSqYZsFLZRmOsMYVm6qbShxPFGOjMEy8uMhGEyZoSkS3zcbzqaDa7wIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFE7/JtzW7zeOnkjxnZbxym+RGMlIMB8GA1UdIwQY
MBaAFF31NkWEPm0og9yPnE9BXB6tu/YKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWGZVMlJZUS1iU2lEM0ktY1QwRmNIcTI3OWdvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS9kMTA3ZGUtZTJlNS00NzI3LTk4YWQt
MzgyMTgxMDM0NGU2LzEvVHY4bTNOYnZONDZlU1BHZGx2SEtiNUVZeVVnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OS9kMTA3ZGUtZTJlNS00NzI3LTk4YWQtMzgyMTgxMDM0NGU2
LzEvWGZVMlJZUS1iU2lEM0ktY1QwRmNIcTI3OWdvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhBHQQAg
MA0GCSqGSIb3DQEBCwUAA4IBAQAd9hEHbVHBYOf88B3v2a6MldsJOjIFj0ZS0IWp
JZmBWc8onpuesBjGPlfqv53cgZuP+JuHpU45tVSd6KKyYdRhXGtT4iqXB0m2Eoau
jsDPHb5crILPOrQQPrXoBupc9uYvtEPXJtK9rRJspFiYZr5WiHjRPFaC2Ht5aAxe
r8rmEmdK+keDGtP6S6nEbAE7ZtApIlbSFXE1Vm/YwpWyHr3GnWM3a8oc2ZWgh9vG
zzs4TU6CQlWNc+S/yhTBgdqYLmyN2AB9dH8pofmD4q8cEqrziUxKpo1iUQV2JvhG
FtZrUKM/yf1U+kHrG8bKI96StL84OrYsf+OBPseyt5qcRRbN
-----END CERTIFICATE-----
Generated at Thu Aug 24 13:01:39 2023 by rpki-client on console-fra.rpki-client.org