Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/d8112a-788f-4805-b1e7-b722684c6a22/1/lGeIiuZ1RP9-isoGRLVPspZ0WqA.roa
File: lGeIiuZ1RP9-isoGRLVPspZ0WqA.roa (raw, json)
Hash identifier: urK/+pZKEobm2swfglcudiBcdKIrNwOX8susQ/FUi08=
Subject key identifier: 94:67:88:8A:E6:75:44:FF:7E:8A:CA:06:44:B5:4F:B2:96:74:5A:A0
Certificate issuer: /CN=cbc07a8aae53c641e4c5b82449dd390b08c1cd9e
Certificate serial: 187E1591
Authority key identifier: CB:C0:7A:8A:AE:53:C6:41:E4:C5:B8:24:49:DD:39:0B:08:C1:CD:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y8B6iq5TxkHkxbgkSd05CwjBzZ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/d8112a-788f-4805-b1e7-b722684c6a22/1/lGeIiuZ1RP9-isoGRLVPspZ0WqA.roa
Signing time: Sat 01 Jan 2022 11:58:21 +0000
ROA not before: Sat 01 Jan 2022 11:58:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 174
IP address blocks: 2a01:81e0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 410916241 (0x187e1591)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbc07a8aae53c641e4c5b82449dd390b08c1cd9e
Validity
Not Before: Jan 1 11:58:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9467888ae67544ff7e8aca0644b54fb296745aa0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:ac:c3:09:34:4b:e8:f2:cc:8c:81:48:34:89:
17:8a:e8:9f:e0:23:9b:09:ff:b3:5a:9f:98:50:60:
25:d5:dd:30:46:4f:b1:f2:3a:bd:58:5b:5b:e4:3b:
e1:e1:a7:89:a4:43:9f:8c:91:d6:57:5c:64:a7:f8:
d8:60:3e:d8:ba:d7:02:b0:7f:fc:75:5d:9d:47:19:
53:f8:d2:b5:e8:17:d9:69:85:a1:04:b8:67:3f:d3:
f2:91:49:5f:b1:a7:66:09:a7:7a:1d:a5:a8:d0:64:
85:d2:eb:34:19:47:d3:79:cd:22:d2:2b:fb:b4:75:
d6:c4:04:e4:26:74:2e:bd:1e:56:fe:e1:4d:a0:5a:
67:b8:5d:37:2b:7f:57:e8:6b:f7:d5:7a:6b:3c:57:
10:25:4f:e7:4a:5e:a8:20:ae:47:f0:af:f5:e5:27:
9c:bb:35:d3:47:f3:7f:21:eb:e8:71:4f:fb:af:bf:
34:13:05:43:c7:67:c3:de:a1:83:d5:9e:ba:8d:00:
e0:0f:5c:37:e7:44:60:b2:06:e1:d0:2e:5a:64:5d:
3f:40:5d:28:49:45:74:39:2c:6b:a1:7b:ce:3d:ec:
3d:2e:01:41:ab:9a:dd:c1:1b:4c:84:7c:b0:f1:2f:
c4:e9:ec:71:a1:8a:4c:27:5b:bb:d4:06:03:e5:7a:
8b:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:67:88:8A:E6:75:44:FF:7E:8A:CA:06:44:B5:4F:B2:96:74:5A:A0
X509v3 Authority Key Identifier:
keyid:CB:C0:7A:8A:AE:53:C6:41:E4:C5:B8:24:49:DD:39:0B:08:C1:CD:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y8B6iq5TxkHkxbgkSd05CwjBzZ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/d8112a-788f-4805-b1e7-b722684c6a22/1/lGeIiuZ1RP9-isoGRLVPspZ0WqA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/d8112a-788f-4805-b1e7-b722684c6a22/1/y8B6iq5TxkHkxbgkSd05CwjBzZ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:81e0::/32
Signature Algorithm: sha256WithRSAEncryption
93:ab:b4:61:f3:80:3a:22:b3:99:02:9a:13:e1:10:7f:d8:8a:
b7:c7:d0:e5:eb:02:4d:b3:f5:ec:05:d2:61:6b:2b:43:f2:54:
90:b0:e5:0a:20:5d:41:27:a2:19:a3:08:98:92:2c:18:7a:23:
07:bd:d6:02:9a:2a:18:23:a1:0b:56:0d:e2:95:46:ba:24:ec:
c9:17:90:ff:fd:7d:69:61:00:91:17:1c:e5:e9:4f:cd:30:1b:
2c:26:d4:2e:8c:d0:de:7d:c3:7d:19:2f:08:ae:61:46:77:3d:
82:11:00:2d:6d:b8:d4:3e:36:03:83:51:14:af:65:c5:47:bd:
46:ba:aa:bf:cd:89:f1:18:0e:ba:6c:fa:26:7c:bd:f0:e1:fa:
4f:93:ad:3c:6f:7a:ad:e0:70:8c:99:3d:db:11:1b:d6:50:7a:
ce:29:6e:67:69:77:c0:4c:d8:8c:b3:6e:9c:ce:3c:3e:fd:23:
54:aa:34:1c:bd:0f:a8:7a:20:0e:cf:e3:45:a2:88:66:2c:ba:
bc:d9:a3:51:55:96:0b:45:e6:f6:b5:25:ea:81:05:c6:67:71:
a7:42:e5:21:2d:19:0f:71:40:72:ba:7a:a2:64:65:96:14:09:
59:29:1b:03:e9:b3:df:3b:b3:bb:1f:f0:f7:6f:8b:22:91:83:
f3:79:45:52
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgIEGH4VkTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
YmMwN2E4YWFlNTNjNjQxZTRjNWI4MjQ0OWRkMzkwYjA4YzFjZDllMB4XDTIyMDEw
MTExNTgyMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTQ2Nzg4OGFlNjc1
NDRmZjdlOGFjYTA2NDRiNTRmYjI5Njc0NWFhMDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOaswwk0S+jyzIyBSDSJF4ron+Ajmwn/s1qfmFBgJdXdMEZP
sfI6vVhbW+Q74eGniaRDn4yR1ldcZKf42GA+2LrXArB//HVdnUcZU/jStegX2WmF
oQS4Zz/T8pFJX7GnZgmneh2lqNBkhdLrNBlH03nNItIr+7R11sQE5CZ0Lr0eVv7h
TaBaZ7hdNyt/V+hr99V6azxXECVP50peqCCuR/Cv9eUnnLs100fzfyHr6HFP+6+/
NBMFQ8dnw96hg9Weuo0A4A9cN+dEYLIG4dAuWmRdP0BdKElFdDksa6F7zj3sPS4B
Qaua3cEbTIR8sPEvxOnscaGKTCdbu9QGA+V6i5cCAwEAAaOCAgowggIGMB0GA1Ud
DgQWBBSUZ4iK5nVE/36KygZEtU+ylnRaoDAfBgNVHSMEGDAWgBTLwHqKrlPGQeTF
uCRJ3TkLCMHNnjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3k4QjZpcTVUeGtIa3hiZ2tTZDA1Q3dqQnpaNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjEvZDgxMTJhLTc4OGYtNDgwNS1iMWU3LWI3MjI2ODRjNmEyMi8x
L2xHZUlpdVoxUlA5LWlzb0dSTFZQc3BaMFdxQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjEv
ZDgxMTJhLTc4OGYtNDgwNS1iMWU3LWI3MjI2ODRjNmEyMi8xL3k4QjZpcTVUeGtI
a3hiZ2tTZDA1Q3dqQnpaNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAg
BggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACoBgeAwDQYJKoZIhvcNAQELBQAD
ggEBAJOrtGHzgDois5kCmhPhEH/YirfH0OXrAk2z9ewF0mFrK0PyVJCw5QogXUEn
ohmjCJiSLBh6Iwe91gKaKhgjoQtWDeKVRrok7MkXkP/9fWlhAJEXHOXpT80wGywm
1C6M0N59w30ZLwiuYUZ3PYIRAC1tuNQ+NgODURSvZcVHvUa6qr/NifEYDrps+iZ8
vfDh+k+TrTxveq3gcIyZPdsRG9ZQes4pbmdpd8BM2IyzbpzOPD79I1SqNBy9D6h6
IA7P40WiiGYsurzZo1FVlgtF5va1JeqBBcZncadC5SEtGQ9xQHK6eqJkZZYUCVkp
GwPps987s7sf8PdviyKRg/N5RVI=
-----END CERTIFICATE-----
Generated at Sun Apr 13 02:58:01 2025 by rpki-client