Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/307681-55ae-453a-83fd-1349c4922dd9/1/5rGZ65ckWZ8riacS0klutQw5-K0.roa
File: 5rGZ65ckWZ8riacS0klutQw5-K0.roa (raw, json)
Hash identifier: MOo58OcNpvV+Un8Xcrzt9f7Qox40C93lheWTSjNGboE=
Subject key identifier: E6:B1:99:EB:97:24:59:9F:2B:89:A7:12:D2:49:6E:B5:0C:39:F8:AD
Certificate issuer: /CN=b0311619a6764dbf55b5c27f11506a3be2dfcbbd
Certificate serial: 083E19B9
Authority key identifier: B0:31:16:19:A6:76:4D:BF:55:B5:C2:7F:11:50:6A:3B:E2:DF:CB:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sDEWGaZ2Tb9VtcJ_EVBqO-Lfy70.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/307681-55ae-453a-83fd-1349c4922dd9/1/5rGZ65ckWZ8riacS0klutQw5-K0.roa
Signing time: Sat 01 Jan 2022 11:57:39 +0000
ROA not before: Sat 01 Jan 2022 11:57:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34672
IP address blocks: 2a0d:7100:a::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138287545 (0x83e19b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0311619a6764dbf55b5c27f11506a3be2dfcbbd
Validity
Not Before: Jan 1 11:57:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e6b199eb9724599f2b89a712d2496eb50c39f8ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:e5:6e:c1:d6:b7:d4:c8:c9:8e:40:c4:85:87:
c0:37:50:a1:a8:13:de:6d:5d:a9:39:34:37:c7:fd:
51:fb:57:60:88:dc:f7:ed:1f:4c:e1:86:2b:d8:87:
78:60:95:c4:56:b4:24:d4:00:82:c7:9d:89:69:53:
58:4c:43:90:7c:74:97:52:40:be:fa:2b:0b:9d:da:
5a:39:dc:d1:35:ac:29:01:e4:f1:4b:fc:a8:39:dd:
ea:3c:34:20:95:47:35:d8:02:d3:a9:3b:29:d2:fd:
e3:cf:ac:48:5c:61:81:0f:9f:b2:72:4a:a8:7c:40:
94:9a:a7:d1:e4:b1:22:0c:4d:d0:96:94:3d:b1:ba:
25:36:cc:f7:a7:19:5d:ed:57:90:63:2f:01:10:5c:
b4:e5:a8:58:bb:4b:23:8b:24:68:1e:25:d1:69:fa:
c4:45:47:8f:f2:59:2c:70:d7:48:d8:e8:52:5d:b8:
ec:12:4a:15:15:9e:3b:57:54:46:c4:50:f0:34:92:
38:3d:ab:70:17:ad:71:9b:14:65:12:01:9a:64:76:
76:e0:01:c2:8c:14:94:22:dd:d5:65:71:12:79:c2:
85:f8:93:10:91:b2:a6:01:e8:1d:40:f7:58:e2:5a:
1f:dd:4b:3a:fa:de:c6:79:67:69:15:4d:a2:4b:5d:
27:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:B1:99:EB:97:24:59:9F:2B:89:A7:12:D2:49:6E:B5:0C:39:F8:AD
X509v3 Authority Key Identifier:
keyid:B0:31:16:19:A6:76:4D:BF:55:B5:C2:7F:11:50:6A:3B:E2:DF:CB:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sDEWGaZ2Tb9VtcJ_EVBqO-Lfy70.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/307681-55ae-453a-83fd-1349c4922dd9/1/5rGZ65ckWZ8riacS0klutQw5-K0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/307681-55ae-453a-83fd-1349c4922dd9/1/sDEWGaZ2Tb9VtcJ_EVBqO-Lfy70.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:7100:a::/48
Signature Algorithm: sha256WithRSAEncryption
9b:e4:43:1d:d6:ba:81:fd:08:ce:13:63:b6:c9:36:e1:8a:50:
18:79:08:11:c3:da:d1:bd:c0:8d:d1:fa:6b:51:f5:06:9f:8e:
50:94:2b:a1:9f:c0:92:f5:45:7f:3f:a1:e0:18:81:30:d3:a5:
41:d9:71:22:2d:c8:fc:ec:c0:e8:79:d0:3c:26:e6:84:52:78:
fe:1a:31:62:cc:64:81:e9:3d:5b:3c:b7:fd:76:84:5c:5d:84:
8f:e3:d3:81:23:82:f4:5f:23:c7:2e:2f:43:70:e7:5e:0f:fd:
1b:04:cb:18:d3:cf:f6:fb:1f:df:c9:a5:06:42:da:de:1a:3c:
a3:6e:d9:8d:cf:59:db:0d:1f:60:ac:96:4e:05:07:55:ed:ca:
06:fe:41:21:1c:93:9e:e2:95:84:a1:00:70:ae:b2:13:0e:de:
5c:01:c3:e4:59:ba:f5:38:5b:69:53:04:3b:1f:25:36:4f:7d:
6d:8e:ba:15:8f:3b:b8:b4:23:3b:0d:3c:d2:b5:49:d7:f9:ea:
72:df:fe:a5:7e:1b:2d:93:93:1a:74:6e:59:7b:2f:59:24:d8:
16:f6:e8:1b:b1:e7:6e:a6:c6:ba:16:9a:23:69:39:62:75:17:
d3:08:d6:7e:de:45:d4:a7:24:1a:fe:6f:89:0c:9d:2f:9a:ee:
3e:51:81:89
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIECD4ZuTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
MDMxMTYxOWE2NzY0ZGJmNTViNWMyN2YxMTUwNmEzYmUyZGZjYmJkMB4XDTIyMDEw
MTExNTczOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTZiMTk5ZWI5NzI0
NTk5ZjJiODlhNzEyZDI0OTZlYjUwYzM5ZjhhZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL/lbsHWt9TIyY5AxIWHwDdQoagT3m1dqTk0N8f9UftXYIjc
9+0fTOGGK9iHeGCVxFa0JNQAgsediWlTWExDkHx0l1JAvvorC53aWjnc0TWsKQHk
8Uv8qDnd6jw0IJVHNdgC06k7KdL948+sSFxhgQ+fsnJKqHxAlJqn0eSxIgxN0JaU
PbG6JTbM96cZXe1XkGMvARBctOWoWLtLI4skaB4l0Wn6xEVHj/JZLHDXSNjoUl24
7BJKFRWeO1dURsRQ8DSSOD2rcBetcZsUZRIBmmR2duABwowUlCLd1WVxEnnChfiT
EJGypgHoHUD3WOJaH91LOvrexnlnaRVNoktdJzkCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBTmsZnrlyRZnyuJpxLSSW61DDn4rTAfBgNVHSMEGDAWgBSwMRYZpnZNv1W1
wn8RUGo74t/LvTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3NERVdHYVoyVGI5VnRjSl9FVkJxTy1MZnk3MC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYWQvMzA3NjgxLTU1YWUtNDUzYS04M2ZkLTEzNDljNDkyMmRkOS8x
LzVyR1o2NWNrV1o4cmlhY1Mwa2x1dFF3NS1LMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYWQv
MzA3NjgxLTU1YWUtNDUzYS04M2ZkLTEzNDljNDkyMmRkOS8xL3NERVdHYVoyVGI5
VnRjSl9FVkJxTy1MZnk3MC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoNcQAACjANBgkqhkiG9w0BAQsF
AAOCAQEAm+RDHda6gf0IzhNjtsk24YpQGHkIEcPa0b3AjdH6a1H1Bp+OUJQroZ/A
kvVFfz+h4BiBMNOlQdlxIi3I/OzA6HnQPCbmhFJ4/hoxYsxkgek9Wzy3/XaEXF2E
j+PTgSOC9F8jxy4vQ3DnXg/9GwTLGNPP9vsf38mlBkLa3ho8o27Zjc9Z2w0fYKyW
TgUHVe3KBv5BIRyTnuKVhKEAcK6yEw7eXAHD5Fm69ThbaVMEOx8lNk99bY66FY87
uLQjOw080rVJ1/nqct/+pX4bLZOTGnRuWXsvWSTYFvboG7HnbqbGuhaaI2k5YnUX
0wjWft5F1KckGv5viQydL5ruPlGBiQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:34 2024 by rpki-client on console-fra.rpki-client.org