Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/xvttOwO33rh_KE_Vi2vfoZVeOjk.roa
File: xvttOwO33rh_KE_Vi2vfoZVeOjk.roa (raw, json)
Hash identifier: 2y4mS6R8Th5lfYriv5/rf9JvWBq9KcuDcqYbMvu6kaY=
Subject key identifier: C6:FB:6D:3B:03:B7:DE:B8:7F:28:4F:D5:8B:6B:DF:A1:95:5E:3A:39
Certificate issuer: /CN=b05d28d16626bc5dcabf2e915435782b96e14071
Certificate serial: 018571D7C1AF4AE1A415A316BBF8E4E6265C
Authority key identifier: B0:5D:28:D1:66:26:BC:5D:CA:BF:2E:91:54:35:78:2B:96:E1:40:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/xvttOwO33rh_KE_Vi2vfoZVeOjk.roa
Signing time: Mon 02 Jan 2023 09:37:23 +0000
ROA not before: Mon 02 Jan 2023 09:37:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58083
IP address blocks: 2a07:3500:10a0::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:d7:c1:af:4a:e1:a4:15:a3:16:bb:f8:e4:e6:26:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b05d28d16626bc5dcabf2e915435782b96e14071
Validity
Not Before: Jan 2 09:37:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c6fb6d3b03b7deb87f284fd58b6bdfa1955e3a39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:86:34:8f:e9:a9:01:e6:7f:0e:e4:90:df:9e:
ef:ae:7a:21:ef:f5:4e:b3:dc:08:78:5b:25:e7:39:
ee:39:1d:f4:b8:da:bb:4e:a5:89:8a:46:e0:15:7a:
15:ba:ce:d1:f0:d9:b4:44:8f:98:e0:0d:79:3f:e9:
2d:cc:3f:96:00:0c:a5:cf:6d:c5:2f:7e:f5:59:1c:
9a:e3:5e:13:e2:7a:d1:46:90:fc:19:01:7e:04:0c:
ed:b2:8b:f3:e1:a7:da:ac:c0:aa:f6:6d:4d:8a:08:
21:59:8e:26:44:57:70:a9:90:7f:76:1b:59:26:ec:
85:c1:f9:cf:d8:3b:55:c2:33:2f:01:90:53:9f:28:
7a:8a:c7:ba:e0:d5:0c:6a:b2:f4:d3:79:aa:e7:91:
2b:bc:74:ff:f7:03:38:1f:5e:4d:67:11:dd:90:67:
aa:f7:88:1e:0e:ef:73:24:73:99:7f:6f:14:86:b5:
9b:b5:61:9d:2b:3f:8f:92:d7:b1:11:6c:6e:05:4f:
e1:92:f5:21:b5:46:ae:11:d9:4e:a3:06:a7:19:0d:
21:a9:e6:d1:e7:0d:35:ee:37:16:6f:ae:75:ae:0d:
22:d3:da:11:cc:b2:73:85:75:0a:1c:5a:82:c5:06:
1e:24:24:35:c7:5e:4b:e9:72:7e:60:5d:f8:bc:a3:
e1:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:FB:6D:3B:03:B7:DE:B8:7F:28:4F:D5:8B:6B:DF:A1:95:5E:3A:39
X509v3 Authority Key Identifier:
keyid:B0:5D:28:D1:66:26:BC:5D:CA:BF:2E:91:54:35:78:2B:96:E1:40:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/xvttOwO33rh_KE_Vi2vfoZVeOjk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:3500:10a0::/48
Signature Algorithm: sha256WithRSAEncryption
08:0b:7c:17:7f:3a:8c:72:07:02:ed:61:90:5c:27:60:c1:3f:
24:1e:f9:56:23:31:b8:a6:d2:03:2c:5b:83:47:1c:19:88:19:
7d:fd:22:91:d8:cf:49:f1:ea:91:5e:b5:33:29:88:8c:85:71:
19:79:da:11:8e:b6:3c:80:16:99:87:52:ca:70:bd:c7:e4:29:
91:6e:b9:f5:9c:fe:5d:01:86:fc:8d:ae:67:b1:06:5c:1b:09:
52:0a:a2:33:c2:46:2d:1c:6c:5a:e1:ba:ff:6d:69:d0:1f:d7:
00:32:04:05:9a:1a:6f:cc:66:a2:c2:44:5b:17:40:46:10:7c:
72:c7:78:44:77:f7:d8:29:4c:59:35:ca:fb:d8:58:42:cf:ab:
72:b1:8c:6b:0c:5b:9d:ab:01:a8:a9:16:ea:04:4e:7e:b5:63:
63:f5:b3:a6:be:e6:66:f0:3a:35:d8:a3:94:f5:83:4b:8b:30:
e0:38:c9:21:41:17:35:da:84:a7:52:b3:0a:31:a5:2c:c4:5c:
9b:01:a4:97:28:46:1d:ee:6f:f4:95:9e:de:b5:41:35:92:8d:
52:bf:19:98:73:94:f9:95:2e:b1:0a:a4:fb:d6:61:f8:ef:d6:
69:5d:60:cb:2e:de:35:ff:f6:58:ad:3c:9f:c4:cc:d6:44:f9:
4d:c2:64:6b
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVx18GvSuGkFaMWu/jk5iZcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIwNWQyOGQxNjYyNmJjNWRjYWJmMmU5MTU0MzU3ODJiOTZl
MTQwNzEwHhcNMjMwMTAyMDkzNzIzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNmZiNmQzYjAzYjdkZWI4N2YyODRmZDU4YjZiZGZhMTk1NWUzYTM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAooY0j+mpAeZ/DuSQ357vrnoh7/VO
s9wIeFsl5znuOR30uNq7TqWJikbgFXoVus7R8Nm0RI+Y4A15P+ktzD+WAAylz23F
L371WRya414T4nrRRpD8GQF+BAztsovz4afarMCq9m1NigghWY4mRFdwqZB/dhtZ
JuyFwfnP2DtVwjMvAZBTnyh6ise64NUMarL003mq55ErvHT/9wM4H15NZxHdkGeq
94geDu9zJHOZf28UhrWbtWGdKz+PktexEWxuBU/hkvUhtUauEdlOowanGQ0hqebR
5w017jcWb651rg0i09oRzLJzhXUKHFqCxQYeJCQ1x15L6XJ+YF34vKPh5QIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFMb7bTsDt964fyhP1Ytr36GVXjo5MB8GA1UdIwQY
MBaAFLBdKNFmJrxdyr8ukVQ1eCuW4UBxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc0YwbzBXWW12RjNLdnk2UlZEVjRLNWJoUUhFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy9iYmE5NzMtN2M5Zi00YjExLWI2MTEt
YWQ1NzU1MjJiMzY1LzEveHZ0dE93TzMzcmhfS0VfVmkydmZvWlZlT2prLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMy9iYmE5NzMtN2M5Zi00YjExLWI2MTEtYWQ1NzU1MjJiMzY1
LzEvc0YwbzBXWW12RjNLdnk2UlZEVjRLNWJoUUhFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgc1ABCg
MA0GCSqGSIb3DQEBCwUAA4IBAQAIC3wXfzqMcgcC7WGQXCdgwT8kHvlWIzG4ptID
LFuDRxwZiBl9/SKR2M9J8eqRXrUzKYiMhXEZedoRjrY8gBaZh1LKcL3H5CmRbrn1
nP5dAYb8ja5nsQZcGwlSCqIzwkYtHGxa4br/bWnQH9cAMgQFmhpvzGaiwkRbF0BG
EHxyx3hEd/fYKUxZNcr72FhCz6tysYxrDFudqwGoqRbqBE5+tWNj9bOmvuZm8Do1
2KOU9YNLizDgOMkhQRc12oSnUrMKMaUsxFybAaSXKEYd7m/0lZ7etUE1ko1SvxmY
c5T5lS6xCqT71mH479ZpXWDLLt41//ZYrTyfxMzWRPlNwmRr
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:41:10 2025 by rpki-client