Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/de2896-ef1b-4a3c-82c4-889ab1a0a47f/1/dCcrdP3Y6UEFpq_0_CNXGyZLB2g.roa
File: dCcrdP3Y6UEFpq_0_CNXGyZLB2g.roa (raw, json)
Hash identifier: TWZrJfen3EBp5pIu1Q6cbH6/XbYxCZkXCpm+7Rbr81c=
Subject key identifier: 74:27:2B:74:FD:D8:E9:41:05:A6:AF:F4:FC:23:57:1B:26:4B:07:68
Certificate issuer: /CN=17511fe8f054c639663529938aebeda4d3ef8068
Certificate serial: 018E0EC30C491E5AE3293EF4C16C11521188
Authority key identifier: 17:51:1F:E8:F0:54:C6:39:66:35:29:93:8A:EB:ED:A4:D3:EF:80:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F1Ef6PBUxjlmNSmTiuvtpNPvgGg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/de2896-ef1b-4a3c-82c4-889ab1a0a47f/1/dCcrdP3Y6UEFpq_0_CNXGyZLB2g.roa
Signing time: Tue 05 Mar 2024 13:17:27 +0000
ROA not before: Tue 05 Mar 2024 13:17:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210984
IP address blocks: 2a0d:b700::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:0e:c3:0c:49:1e:5a:e3:29:3e:f4:c1:6c:11:52:11:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17511fe8f054c639663529938aebeda4d3ef8068
Validity
Not Before: Mar 5 13:17:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=74272b74fdd8e94105a6aff4fc23571b264b0768
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:9b:ab:18:91:f3:a5:62:4e:26:dc:67:79:37:
e4:46:bd:cb:8d:4b:57:6a:bc:a3:2f:e2:d0:17:b5:
9f:31:bb:6b:c9:1d:c2:0f:1f:c9:46:99:a9:e6:76:
b1:15:e6:57:aa:c3:ae:b5:76:90:76:3d:e7:a4:70:
d5:01:19:5b:f7:44:b3:a3:92:85:35:14:f6:6f:5d:
9c:a0:75:d3:30:d4:04:ef:a4:5b:f3:5d:be:02:a2:
3f:b7:9e:cf:2f:25:41:92:3b:4e:48:b1:6c:49:7d:
fa:2d:dd:1e:18:4e:fe:20:f0:9b:31:f5:a0:6f:5d:
35:16:36:71:79:27:13:f8:f8:95:2c:e6:d6:ff:6f:
83:55:fb:17:d2:ee:09:f4:76:13:e6:b1:74:54:86:
e4:bd:dd:43:30:8a:18:09:83:ac:46:64:5f:50:ba:
69:73:70:df:82:3f:20:37:e3:8a:ad:88:62:58:13:
fe:d0:7d:a1:c0:ea:27:bb:be:66:b7:fb:38:6f:3a:
d3:b7:a0:9a:39:ad:ab:a8:96:61:e9:a0:6f:86:07:
20:d8:14:8d:5e:84:e1:45:5a:d2:e1:e8:8d:37:9e:
a4:f9:c7:64:6a:e7:b7:24:ce:c6:d0:f7:8c:33:07:
c7:a7:c1:5a:56:63:71:3e:10:6a:e9:fd:a7:9f:3b:
fd:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:27:2B:74:FD:D8:E9:41:05:A6:AF:F4:FC:23:57:1B:26:4B:07:68
X509v3 Authority Key Identifier:
keyid:17:51:1F:E8:F0:54:C6:39:66:35:29:93:8A:EB:ED:A4:D3:EF:80:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F1Ef6PBUxjlmNSmTiuvtpNPvgGg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/de2896-ef1b-4a3c-82c4-889ab1a0a47f/1/dCcrdP3Y6UEFpq_0_CNXGyZLB2g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/de2896-ef1b-4a3c-82c4-889ab1a0a47f/1/F1Ef6PBUxjlmNSmTiuvtpNPvgGg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:b700::/48
Signature Algorithm: sha256WithRSAEncryption
af:1b:1d:86:ae:54:41:30:80:cf:c3:2c:fc:f8:34:58:db:ff:
93:dc:38:0f:67:a9:c4:a3:06:28:5f:18:e3:25:e0:b7:17:48:
84:e8:5d:a1:9e:c1:09:cf:37:0f:71:d3:9f:58:81:7d:33:d8:
b7:5c:0e:7e:15:5a:41:dd:14:d8:2f:4c:9c:62:a5:4c:d9:dd:
96:72:d4:c6:bc:b7:5f:32:42:25:ad:d8:e6:95:39:cb:da:c9:
70:9c:3e:02:b6:fd:2e:95:3d:5e:51:ed:c2:be:20:bf:60:03:
62:5c:91:b3:fd:3a:ef:35:52:d0:a3:08:7a:de:9c:ca:cf:9b:
35:85:b7:c1:ce:66:e5:20:2e:2a:67:e4:84:2e:6b:a4:85:99:
2d:ab:5d:14:fa:e6:20:a0:0a:80:3e:f6:a2:34:73:43:21:70:
46:0b:3d:67:4a:88:18:8f:89:3d:ea:a6:86:ef:37:cd:c1:37:
98:5f:a4:e0:7c:b1:8a:7f:99:c6:e2:66:e2:17:5c:c7:fa:d3:
16:cb:33:7c:cf:1a:a0:9d:85:f1:e2:92:30:ce:be:d9:a4:30:
36:6c:a1:52:4f:f7:25:37:2b:92:b0:09:7e:f0:95:81:72:08:
90:b5:ea:ee:1b:4c:6d:d0:30:f1:e6:00:f0:50:d4:bb:56:93:
3c:b0:b8:72
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY4OwwxJHlrjKT70wWwRUhGIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE3NTExZmU4ZjA1NGM2Mzk2NjM1Mjk5MzhhZWJlZGE0ZDNl
ZjgwNjgwHhcNMjQwMzA1MTMxNzI3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NDI3MmI3NGZkZDhlOTQxMDVhNmFmZjRmYzIzNTcxYjI2NGIwNzY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo5urGJHzpWJOJtxneTfkRr3LjUtX
aryjL+LQF7WfMbtryR3CDx/JRpmp5naxFeZXqsOutXaQdj3npHDVARlb90Szo5KF
NRT2b12coHXTMNQE76Rb812+AqI/t57PLyVBkjtOSLFsSX36Ld0eGE7+IPCbMfWg
b101FjZxeScT+PiVLObW/2+DVfsX0u4J9HYT5rF0VIbkvd1DMIoYCYOsRmRfULpp
c3Dfgj8gN+OKrYhiWBP+0H2hwOonu75mt/s4bzrTt6CaOa2rqJZh6aBvhgcg2BSN
XoThRVrS4eiNN56k+cdkaue3JM7G0PeMMwfHp8FaVmNxPhBq6f2nnzv9TQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFHQnK3T92OlBBaav9PwjVxsmSwdoMB8GA1UdIwQY
MBaAFBdRH+jwVMY5ZjUpk4rr7aTT74BoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRjFFZjZQQlV4amxtTlNtVGl1dnRwTlB2Z0dnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOC9kZTI4OTYtZWYxYi00YTNjLTgyYzQt
ODg5YWIxYTBhNDdmLzEvZENjcmRQM1k2VUVGcHFfMF9DTlhHeVpMQjJnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iOC9kZTI4OTYtZWYxYi00YTNjLTgyYzQtODg5YWIxYTBhNDdm
LzEvRjFFZjZQQlV4amxtTlNtVGl1dnRwTlB2Z0dnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg23AAAA
MA0GCSqGSIb3DQEBCwUAA4IBAQCvGx2GrlRBMIDPwyz8+DRY2/+T3DgPZ6nEowYo
XxjjJeC3F0iE6F2hnsEJzzcPcdOfWIF9M9i3XA5+FVpB3RTYL0ycYqVM2d2WctTG
vLdfMkIlrdjmlTnL2slwnD4Ctv0ulT1eUe3CviC/YANiXJGz/TrvNVLQowh63pzK
z5s1hbfBzmblIC4qZ+SELmukhZktq10U+uYgoAqAPvaiNHNDIXBGCz1nSogYj4k9
6qaG7zfNwTeYX6TgfLGKf5nG4mbiF1zH+tMWyzN8zxqgnYXx4pIwzr7ZpDA2bKFS
T/clNyuSsAl+8JWBcgiQteruG0xt0DDx5gDwUNS7VpM8sLhy
-----END CERTIFICATE-----
Generated at Wed Mar 6 16:58:51 2024 by rpki-client on console-fra.rpki-client.org