Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/e4ae61-f89a-4395-9bed-f4ddf189a476/1/HeWQ3Hw5JViq074L6DNWryIFPKc.roa
File: HeWQ3Hw5JViq074L6DNWryIFPKc.roa (raw, json)
Hash identifier: 1d66EPly+kScyWXkoQ3drmUp9YeCaQvIJRYR5M7n81k=
Subject key identifier: 1D:E5:90:DC:7C:39:25:58:AA:D3:BE:0B:E8:33:56:AF:22:05:3C:A7
Certificate issuer: /CN=7c4cd6df4eb5bf896981c31fdad69f7223cb40e7
Certificate serial: 03700EA5
Authority key identifier: 7C:4C:D6:DF:4E:B5:BF:89:69:81:C3:1F:DA:D6:9F:72:23:CB:40:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fEzW3061v4lpgcMf2tafciPLQOc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/e4ae61-f89a-4395-9bed-f4ddf189a476/1/HeWQ3Hw5JViq074L6DNWryIFPKc.roa
Signing time: Sat 05 Mar 2022 15:40:10 +0000
ROA not before: Sat 05 Mar 2022 15:40:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 139317
IP address blocks: 2001:67c:2964::/48 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57675429 (0x3700ea5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c4cd6df4eb5bf896981c31fdad69f7223cb40e7
Validity
Not Before: Mar 5 15:40:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1de590dc7c392558aad3be0be83356af22053ca7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:d8:34:68:d5:04:2c:f1:04:1d:70:c9:ff:e9:
3f:7c:4f:33:31:d8:3d:e4:0e:66:8b:c5:ad:61:fc:
b7:96:a4:f5:18:cc:31:3f:9e:d9:ee:5d:4e:5f:2a:
13:e1:c9:b3:f3:13:a4:fb:66:9c:3d:91:1e:f8:52:
b6:0d:81:24:1e:56:ba:46:aa:ce:07:48:9c:84:92:
15:12:7d:2d:2f:f6:d3:21:bb:33:fb:12:3a:18:97:
06:39:4a:a1:60:77:b6:27:68:c7:a2:85:4c:b1:c4:
72:bd:d2:ba:fd:75:50:1a:10:f1:ed:4b:75:07:71:
1c:3e:02:f3:f5:6f:2b:a6:9d:e2:84:fe:f2:c5:df:
cf:73:fa:ec:ca:49:52:19:e8:9f:25:eb:21:70:8b:
4e:fd:d7:41:c6:ea:19:6d:d1:bf:a4:c7:5e:51:b5:
42:90:db:da:98:66:4c:b9:31:61:95:ed:df:0f:fb:
1f:4c:7f:e4:5c:43:df:f2:42:8f:e1:78:b5:a1:b9:
64:65:db:7f:c7:ee:e4:1e:18:8d:b3:77:27:4b:ac:
0b:69:4a:a0:93:b0:1c:f0:3d:28:f1:b3:8d:3b:48:
92:91:9c:5f:e0:c3:70:d2:b0:a5:b2:a3:76:fd:2b:
41:03:88:0d:31:7b:97:ee:53:6a:44:57:ee:38:85:
6a:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:E5:90:DC:7C:39:25:58:AA:D3:BE:0B:E8:33:56:AF:22:05:3C:A7
X509v3 Authority Key Identifier:
keyid:7C:4C:D6:DF:4E:B5:BF:89:69:81:C3:1F:DA:D6:9F:72:23:CB:40:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fEzW3061v4lpgcMf2tafciPLQOc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/e4ae61-f89a-4395-9bed-f4ddf189a476/1/HeWQ3Hw5JViq074L6DNWryIFPKc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/e4ae61-f89a-4395-9bed-f4ddf189a476/1/fEzW3061v4lpgcMf2tafciPLQOc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2964::/48
Signature Algorithm: sha256WithRSAEncryption
33:69:1c:f7:eb:be:d4:7c:a4:e9:ef:8a:ab:86:f9:8f:97:90:
f7:2a:92:b7:2b:d5:59:0b:bf:4b:cf:1e:cb:d7:4c:68:15:bf:
de:6e:03:eb:76:33:ff:1e:71:6f:1c:99:2d:e4:fe:ef:57:3d:
e5:12:9b:6d:e8:ab:6e:b4:0a:7e:ea:2b:bc:45:ad:d8:79:cd:
e3:6a:a8:a8:38:9d:da:a9:e3:8e:d4:3d:72:9f:e3:b3:a6:4f:
05:fd:9f:13:b8:54:b8:c1:7b:66:9a:e5:13:c7:35:b7:7a:8f:
f6:8d:ac:95:ad:4d:f2:30:5a:3c:4e:28:ce:da:4a:04:fc:a8:
1c:a1:db:aa:c5:23:86:1e:d7:3c:0e:e6:d6:ec:33:b4:1c:37:
d9:49:e2:8d:24:7d:28:f5:d0:bc:e3:0c:f6:7d:a9:fb:fd:01:
74:f9:e1:9c:e1:75:44:41:24:04:ad:fb:0a:f8:d7:b9:68:e9:
89:cf:07:a8:14:6c:28:8a:37:83:f8:d8:b1:b3:bc:94:0d:44:
99:37:56:f7:b1:aa:46:2f:88:c9:2f:10:c5:cc:d8:2c:e9:cf:
c1:4c:48:0c:c8:39:ee:a2:03:7c:b7:1b:cd:56:12:dc:53:7d:
7d:ed:3b:87:e0:0e:9e:1b:33:bd:a5:cb:00:fe:2c:c2:c9:e3:
cc:f9:7a:cc
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEA3AOpTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
YzRjZDZkZjRlYjViZjg5Njk4MWMzMWZkYWQ2OWY3MjIzY2I0MGU3MB4XDTIyMDMw
NTE1NDAxMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMWRlNTkwZGM3YzM5
MjU1OGFhZDNiZTBiZTgzMzU2YWYyMjA1M2NhNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKHYNGjVBCzxBB1wyf/pP3xPMzHYPeQOZovFrWH8t5ak9RjM
MT+e2e5dTl8qE+HJs/MTpPtmnD2RHvhStg2BJB5WukaqzgdInISSFRJ9LS/20yG7
M/sSOhiXBjlKoWB3tidox6KFTLHEcr3Suv11UBoQ8e1LdQdxHD4C8/VvK6ad4oT+
8sXfz3P67MpJUhnonyXrIXCLTv3XQcbqGW3Rv6THXlG1QpDb2phmTLkxYZXt3w/7
H0x/5FxD3/JCj+F4taG5ZGXbf8fu5B4YjbN3J0usC2lKoJOwHPA9KPGzjTtIkpGc
X+DDcNKwpbKjdv0rQQOIDTF7l+5TakRX7jiFakECAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBQd5ZDcfDklWKrTvgvoM1avIgU8pzAfBgNVHSMEGDAWgBR8TNbfTrW/iWmB
wx/a1p9yI8tA5zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2ZFelczMDYxdjRscGdjTWYydGFmY2lQTFFPYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjIvZTRhZTYxLWY4OWEtNDM5NS05YmVkLWY0ZGRmMTg5YTQ3Ni8x
L0hlV1EzSHc1SlZpcTA3NEw2RE5XcnlJRlBLYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjIv
ZTRhZTYxLWY4OWEtNDM5NS05YmVkLWY0ZGRmMTg5YTQ3Ni8xL2ZFelczMDYxdjRs
cGdjTWYydGFmY2lQTFFPYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABBnwpZDANBgkqhkiG9w0BAQsF
AAOCAQEAM2kc9+u+1Hyk6e+Kq4b5j5eQ9yqStyvVWQu/S88ey9dMaBW/3m4D63Yz
/x5xbxyZLeT+71c95RKbbeirbrQKfuorvEWt2HnN42qoqDid2qnjjtQ9cp/js6ZP
Bf2fE7hUuMF7ZprlE8c1t3qP9o2sla1N8jBaPE4oztpKBPyoHKHbqsUjhh7XPA7m
1uwztBw32UnijSR9KPXQvOMM9n2p+/0BdPnhnOF1REEkBK37CvjXuWjpic8HqBRs
KIo3g/jYsbO8lA1EmTdW97GqRi+IyS8QxczYLOnPwUxIDMg57qIDfLcbzVYS3FN9
fe07h+AOnhszvaXLAP4swsnjzPl6zA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:28 2024 by rpki-client on console-fra.rpki-client.org