Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/38bc90-1d53-4d47-bbdb-f4e7c9cc43ff/1/Opr1cdHV2yQUBqiY6CGUhJCZjMc.roa
File: Opr1cdHV2yQUBqiY6CGUhJCZjMc.roa (raw, json)
Hash identifier: qPPY7tk6YV8shdqM3jx/nROM6N19bY1Ayj2kbJDOu/E=
Subject key identifier: 3A:9A:F5:71:D1:D5:DB:24:14:06:A8:98:E8:21:94:84:90:99:8C:C7
Certificate issuer: /CN=829f1be57b7960688e1975c98dc8890b9f4a9852
Certificate serial: 0189FED59021EAFDBC38B3082F4CB331F92A
Authority key identifier: 82:9F:1B:E5:7B:79:60:68:8E:19:75:C9:8D:C8:89:0B:9F:4A:98:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gp8b5Xt5YGiOGXXJjciJC59KmFI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/38bc90-1d53-4d47-bbdb-f4e7c9cc43ff/1/Opr1cdHV2yQUBqiY6CGUhJCZjMc.roa
Signing time: Wed 16 Aug 2023 14:52:36 +0000
ROA not before: Wed 16 Aug 2023 14:52:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202044
IP address blocks: 2a0e:d300::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:fe:d5:90:21:ea:fd:bc:38:b3:08:2f:4c:b3:31:f9:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=829f1be57b7960688e1975c98dc8890b9f4a9852
Validity
Not Before: Aug 16 14:52:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3a9af571d1d5db241406a898e821948490998cc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:14:ed:61:bf:87:25:ca:30:5b:84:7f:be:81:
6b:80:98:d1:eb:db:81:26:f3:64:33:46:ed:fc:99:
05:ef:d6:64:c9:ac:04:3e:4f:12:49:bd:c6:c0:d3:
e6:7f:1d:69:8b:50:70:23:d4:d9:d7:4e:a0:c5:24:
f6:48:0d:37:b9:58:ff:c4:6f:3b:c0:13:13:db:5a:
6f:d2:68:fd:75:bf:f6:5e:91:34:e2:92:af:91:c7:
1a:21:02:90:3e:f3:11:d9:54:00:0f:84:c3:f2:7e:
a8:86:22:20:30:21:90:bf:23:a9:cf:06:b8:4c:34:
64:b2:4c:29:a1:95:02:ae:8b:39:d7:64:ab:4b:3b:
be:a0:b4:7b:54:ce:29:49:d0:82:46:e0:6a:17:b2:
93:59:13:44:c1:92:b0:46:4f:43:0d:ec:8a:d6:e2:
74:53:12:b9:cf:13:ae:2d:56:6e:94:23:8a:3f:1e:
1d:79:5c:df:dc:47:9d:57:11:03:2d:32:06:35:56:
05:84:cc:5d:b8:f9:d1:83:e9:55:d7:44:16:9a:98:
63:55:df:cf:95:86:4c:32:8b:0e:8b:0c:96:e4:74:
d8:51:c8:52:85:3b:65:d6:09:1e:52:43:c6:84:ca:
2f:e6:6a:95:d6:77:55:85:92:da:6e:9e:de:7b:00:
89:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:9A:F5:71:D1:D5:DB:24:14:06:A8:98:E8:21:94:84:90:99:8C:C7
X509v3 Authority Key Identifier:
keyid:82:9F:1B:E5:7B:79:60:68:8E:19:75:C9:8D:C8:89:0B:9F:4A:98:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gp8b5Xt5YGiOGXXJjciJC59KmFI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/38bc90-1d53-4d47-bbdb-f4e7c9cc43ff/1/Opr1cdHV2yQUBqiY6CGUhJCZjMc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/38bc90-1d53-4d47-bbdb-f4e7c9cc43ff/1/gp8b5Xt5YGiOGXXJjciJC59KmFI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:d300::/29
Signature Algorithm: sha256WithRSAEncryption
6a:ac:52:a8:ee:fa:f4:4c:08:81:c0:2c:60:81:f5:9b:de:ba:
bd:8f:05:66:29:60:96:80:ed:09:88:61:88:56:5e:ad:53:0e:
00:91:e7:fd:f2:28:26:26:b5:be:14:0e:b3:33:10:dc:75:6f:
6c:b5:0c:55:bb:e7:41:8b:5e:66:a7:74:92:f9:53:2f:84:8e:
52:50:a2:f3:5b:49:9f:d5:9f:bb:ef:c2:1a:39:d0:f8:ba:ec:
e5:17:4e:7d:ca:31:4e:b8:74:7e:15:05:ed:7c:09:27:af:3e:
c1:c6:64:1b:26:fa:e3:b1:78:86:53:fc:2a:48:40:5d:cb:0e:
f1:8e:32:9c:ae:bf:d2:e3:da:e7:48:2b:1c:04:89:55:89:fa:
94:d9:f9:95:41:13:84:b9:97:99:72:46:bf:92:82:6a:97:6a:
ea:0f:5b:8c:5a:b3:ba:3e:3e:9f:74:08:e3:7d:70:5d:ad:05:
dd:a8:ec:cc:9e:d8:1f:41:df:c5:f1:14:14:2d:d8:28:e7:f1:
9a:ee:55:58:be:32:19:1f:42:a3:42:40:6e:36:24:03:62:51:
43:a3:55:87:96:eb:52:22:d3:76:e6:35:27:e0:93:de:08:2a:
24:da:c6:d4:20:2c:49:7d:a3:39:c4:60:6c:73:c1:06:a9:3b:
ce:46:e6:5c
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYn+1ZAh6v28OLMIL0yzMfkqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgyOWYxYmU1N2I3OTYwNjg4ZTE5NzVjOThkYzg4OTBiOWY0
YTk4NTIwHhcNMjMwODE2MTQ1MjM2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzYTlhZjU3MWQxZDVkYjI0MTQwNmE4OThlODIxOTQ4NDkwOTk4Y2M3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuBTtYb+HJcowW4R/voFrgJjR69uB
JvNkM0bt/JkF79ZkyawEPk8SSb3GwNPmfx1pi1BwI9TZ106gxST2SA03uVj/xG87
wBMT21pv0mj9db/2XpE04pKvkccaIQKQPvMR2VQAD4TD8n6ohiIgMCGQvyOpzwa4
TDRkskwpoZUCros512SrSzu+oLR7VM4pSdCCRuBqF7KTWRNEwZKwRk9DDeyK1uJ0
UxK5zxOuLVZulCOKPx4deVzf3EedVxEDLTIGNVYFhMxduPnRg+lV10QWmphjVd/P
lYZMMosOiwyW5HTYUchShTtl1gkeUkPGhMov5mqV1ndVhZLabp7eewCJRwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFDqa9XHR1dskFAaomOghlISQmYzHMB8GA1UdIwQY
MBaAFIKfG+V7eWBojhl1yY3IiQufSphSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ3A4YjVYdDVZR2lPR1hYSmpjaUpDNTlLbUZJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC8zOGJjOTAtMWQ1My00ZDQ3LWJiZGIt
ZjRlN2M5Y2M0M2ZmLzEvT3ByMWNkSFYyeVFVQnFpWTZDR1VoSkNaak1jLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNC8zOGJjOTAtMWQ1My00ZDQ3LWJiZGItZjRlN2M5Y2M0M2Zm
LzEvZ3A4YjVYdDVZR2lPR1hYSmpjaUpDNTlLbUZJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKg7TADAN
BgkqhkiG9w0BAQsFAAOCAQEAaqxSqO769EwIgcAsYIH1m966vY8FZilgloDtCYhh
iFZerVMOAJHn/fIoJia1vhQOszMQ3HVvbLUMVbvnQYteZqd0kvlTL4SOUlCi81tJ
n9Wfu+/CGjnQ+Lrs5RdOfcoxTrh0fhUF7XwJJ68+wcZkGyb647F4hlP8KkhAXcsO
8Y4ynK6/0uPa50grHASJVYn6lNn5lUEThLmXmXJGv5KCapdq6g9bjFqzuj4+n3QI
431wXa0F3ajszJ7YH0HfxfEUFC3YKOfxmu5VWL4yGR9Co0JAbjYkA2JRQ6NVh5br
UiLTduY1J+CT3ggqJNrG1CAsSX2jOcRgbHPBBqk7zkbmXA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:39 2024 by rpki-client on console-fra.rpki-client.org