Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/02d351-9aba-49af-ab74-a10f85046bf8/1/Dx-nEiZWa7VtVjTCwO24UG1vpOM.roa
File: Dx-nEiZWa7VtVjTCwO24UG1vpOM.roa (raw, json)
Hash identifier: N9/Wwf0HeAEAYarJ43DM3U7PvLHyrn3rc1Z8+S6sAy0=
Subject key identifier: 0F:1F:A7:12:26:56:6B:B5:6D:56:34:C2:C0:ED:B8:50:6D:6F:A4:E3
Certificate issuer: /CN=81601c22138b5719c4027eee75ef74679ce68ca9
Certificate serial: 01856F7954A1A94F45947CAD5D115CFE5A87
Authority key identifier: 81:60:1C:22:13:8B:57:19:C4:02:7E:EE:75:EF:74:67:9C:E6:8C:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gWAcIhOLVxnEAn7ude90Z5zmjKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/02d351-9aba-49af-ab74-a10f85046bf8/1/Dx-nEiZWa7VtVjTCwO24UG1vpOM.roa
Signing time: Sun 01 Jan 2023 22:35:00 +0000
ROA not before: Sun 01 Jan 2023 22:35:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 22773
IP address blocks: 2a11:72c0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:79:54:a1:a9:4f:45:94:7c:ad:5d:11:5c:fe:5a:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81601c22138b5719c4027eee75ef74679ce68ca9
Validity
Not Before: Jan 1 22:35:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0f1fa71226566bb56d5634c2c0edb8506d6fa4e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:11:b5:0b:fb:bd:19:44:04:e3:fe:60:5c:85:
35:24:8b:31:ed:b7:94:78:c3:f5:46:d2:53:38:07:
d2:77:0b:c4:9c:7a:02:ae:d4:f2:5e:d3:59:28:80:
3d:ba:9d:11:b1:f8:b1:2b:db:82:94:0f:ce:fb:68:
65:bc:1d:8a:a8:bf:72:f8:1e:9f:80:85:1d:6a:87:
39:95:82:ec:45:c2:d9:0e:1d:1f:84:b5:bc:a4:77:
2f:ec:38:f0:45:60:18:d1:13:3a:e2:97:45:a2:97:
73:82:f9:e9:27:d5:f6:44:6c:2d:17:8c:4c:bf:b5:
a0:8a:0e:5b:cb:33:9b:ef:2e:78:c1:a9:7d:23:76:
6c:40:81:c6:ed:b8:d0:be:6d:d5:a6:0a:b3:cc:e3:
5f:4e:f9:67:6e:26:a8:90:2b:b3:7e:f4:50:e9:b9:
58:9f:0a:d3:83:1d:44:93:79:f9:fe:9f:24:35:74:
a9:09:a2:96:a0:65:ff:fa:95:24:8b:a0:cb:93:ed:
44:8f:26:1a:8c:ae:3c:30:8a:88:75:47:7a:df:67:
0d:9a:97:f1:5b:da:4c:6c:5d:65:3a:4f:5c:cc:49:
f7:ef:16:c9:70:a9:17:fb:d7:54:f4:26:23:5a:e4:
ee:3a:6c:43:25:b7:6d:9b:8a:84:7f:c0:32:8c:9b:
84:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:1F:A7:12:26:56:6B:B5:6D:56:34:C2:C0:ED:B8:50:6D:6F:A4:E3
X509v3 Authority Key Identifier:
keyid:81:60:1C:22:13:8B:57:19:C4:02:7E:EE:75:EF:74:67:9C:E6:8C:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gWAcIhOLVxnEAn7ude90Z5zmjKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/02d351-9aba-49af-ab74-a10f85046bf8/1/Dx-nEiZWa7VtVjTCwO24UG1vpOM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/02d351-9aba-49af-ab74-a10f85046bf8/1/gWAcIhOLVxnEAn7ude90Z5zmjKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:72c0::/29
Signature Algorithm: sha256WithRSAEncryption
30:d9:63:2d:22:7c:b5:c1:d2:ad:8f:59:16:ee:d3:8b:59:e7:
7e:6e:91:a5:1b:94:45:52:9b:68:f1:31:f4:32:3e:2a:66:72:
e8:c0:26:90:d8:73:96:db:43:d5:71:6a:0e:40:80:ac:a1:36:
c2:cf:6a:72:a3:f9:89:af:04:5c:32:1a:e6:28:33:88:90:18:
99:f1:9e:e0:83:ed:db:5e:c2:3a:00:33:7c:a7:a0:2e:db:05:
59:29:92:f9:e8:97:81:9f:4b:8d:1e:ad:28:93:40:cf:63:79:
a5:c7:ea:b9:52:5b:61:3a:ed:e7:08:aa:b0:d9:91:e8:b6:1c:
54:f4:58:14:2d:cb:06:cb:39:1f:62:f9:13:ac:76:bd:c4:c5:
58:2c:38:4a:be:c0:84:5a:10:bc:ee:41:9d:f6:8b:93:53:2c:
88:be:4c:01:29:d3:98:77:fe:1d:3a:a2:de:52:a7:d7:b3:d4:
2e:48:15:48:38:14:5f:d3:86:8a:76:b8:36:9f:1d:f0:b5:e4:
b0:4b:65:31:4b:7e:98:e2:42:02:73:7d:c6:b5:15:a4:48:c8:
bb:ed:55:23:05:d5:ec:87:23:c0:7f:cb:74:f6:53:73:9d:ee:
0c:2c:bd:eb:ca:ff:c8:94:d9:90:98:08:38:9d:05:a6:f5:9b:
ef:b4:b7:ba
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYVveVShqU9FlHytXRFc/lqHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgxNjAxYzIyMTM4YjU3MTljNDAyN2VlZTc1ZWY3NDY3OWNl
NjhjYTkwHhcNMjMwMTAxMjIzNTAwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZjFmYTcxMjI2NTY2YmI1NmQ1NjM0YzJjMGVkYjg1MDZkNmZhNGUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6xG1C/u9GUQE4/5gXIU1JIsx7beU
eMP1RtJTOAfSdwvEnHoCrtTyXtNZKIA9up0RsfixK9uClA/O+2hlvB2KqL9y+B6f
gIUdaoc5lYLsRcLZDh0fhLW8pHcv7DjwRWAY0RM64pdFopdzgvnpJ9X2RGwtF4xM
v7Wgig5byzOb7y54wal9I3ZsQIHG7bjQvm3VpgqzzONfTvlnbiaokCuzfvRQ6blY
nwrTgx1Ek3n5/p8kNXSpCaKWoGX/+pUki6DLk+1EjyYajK48MIqIdUd632cNmpfx
W9pMbF1lOk9czEn37xbJcKkX+9dU9CYjWuTuOmxDJbdtm4qEf8AyjJuEsQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFA8fpxImVmu1bVY0wsDtuFBtb6TjMB8GA1UdIwQY
MBaAFIFgHCITi1cZxAJ+7nXvdGec5oypMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ1dBY0loT0xWeG5FQW43dWRlOTBaNXptaktrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC8wMmQzNTEtOWFiYS00OWFmLWFiNzQt
YTEwZjg1MDQ2YmY4LzEvRHgtbkVpWldhN1Z0VmpUQ3dPMjRVRzF2cE9NLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMC8wMmQzNTEtOWFiYS00OWFmLWFiNzQtYTEwZjg1MDQ2YmY4
LzEvZ1dBY0loT0xWeG5FQW43dWRlOTBaNXptaktrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhFywDAN
BgkqhkiG9w0BAQsFAAOCAQEAMNljLSJ8tcHSrY9ZFu7Ti1nnfm6RpRuURVKbaPEx
9DI+KmZy6MAmkNhzlttD1XFqDkCArKE2ws9qcqP5ia8EXDIa5igziJAYmfGe4IPt
217COgAzfKegLtsFWSmS+eiXgZ9LjR6tKJNAz2N5pcfquVJbYTrt5wiqsNmR6LYc
VPRYFC3LBss5H2L5E6x2vcTFWCw4Sr7AhFoQvO5BnfaLk1MsiL5MASnTmHf+HTqi
3lKn17PULkgVSDgUX9OGina4Np8d8LXksEtlMUt+mOJCAnN9xrUVpEjIu+1VIwXV
7IcjwH/LdPZTc53uDCy968r/yJTZkJgIOJ0FpvWb77S3ug==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:41 2024 by rpki-client on console-ams.rpki-client.org