Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/f6dec7-573f-46de-ac11-787787a75091/1/HPZL8h8HZdWqtMqkOYzWs3Qn3uk.roa
File: HPZL8h8HZdWqtMqkOYzWs3Qn3uk.roa (raw, json)
Hash identifier: KRtBI6mGPly8HfipWXre4CbZgyWl/LdHFg40clJLlno=
Subject key identifier: 1C:F6:4B:F2:1F:07:65:D5:AA:B4:CA:A4:39:8C:D6:B3:74:27:DE:E9
Certificate issuer: /CN=9dfca798f9f658ccf11f8ce5155f441daefe31ac
Certificate serial: 0185735F1C617179F24CC6F16E7B95DBD51C
Authority key identifier: 9D:FC:A7:98:F9:F6:58:CC:F1:1F:8C:E5:15:5F:44:1D:AE:FE:31:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nfynmPn2WMzxH4zlFV9EHa7-Maw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/f6dec7-573f-46de-ac11-787787a75091/1/HPZL8h8HZdWqtMqkOYzWs3Qn3uk.roa
Signing time: Mon 02 Jan 2023 16:44:51 +0000
ROA not before: Mon 02 Jan 2023 16:44:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 22773
IP address blocks: 2a11:7c40::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:5f:1c:61:71:79:f2:4c:c6:f1:6e:7b:95:db:d5:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9dfca798f9f658ccf11f8ce5155f441daefe31ac
Validity
Not Before: Jan 2 16:44:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1cf64bf21f0765d5aab4caa4398cd6b37427dee9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:66:08:09:43:07:3f:0c:20:d3:57:ab:06:44:
9a:f0:64:c8:4d:02:a8:d4:4b:a7:64:e4:33:e8:67:
21:0b:b5:86:08:db:ff:f1:1f:18:41:a5:08:89:fa:
a8:af:99:59:b0:38:9f:64:d3:71:b4:ea:78:c9:15:
7e:6b:7d:7e:62:e2:91:97:d0:5a:b4:16:0f:9d:3f:
d5:60:6c:4a:b9:4b:17:25:ee:bb:bd:16:11:25:31:
72:1f:ac:02:7d:6c:a8:69:cd:ae:6b:b9:3a:c4:12:
3b:7f:5c:29:fe:d6:5b:e7:ee:e4:9e:62:3e:b0:c3:
46:e9:bd:65:44:b8:5c:9f:16:0b:01:52:68:58:7f:
c5:eb:40:e9:88:36:cd:f3:77:a3:2e:fc:a8:49:ff:
e0:85:14:5d:15:df:8e:8d:1f:f5:a5:9f:0a:59:09:
a0:fb:96:8a:f0:b8:97:c9:40:f0:c1:13:f8:5a:23:
b0:3e:82:52:e5:7c:7c:3a:e5:17:8a:bf:f6:96:3c:
d6:cf:b2:06:82:65:fc:29:be:00:c2:bc:e9:e6:da:
42:c8:ee:66:24:19:f2:08:43:8d:9b:c4:08:42:d9:
5d:fe:64:da:88:5e:df:a8:06:85:1e:69:57:db:56:
12:c1:43:e6:b9:e0:5e:77:9c:5d:6d:da:98:dd:1e:
28:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:F6:4B:F2:1F:07:65:D5:AA:B4:CA:A4:39:8C:D6:B3:74:27:DE:E9
X509v3 Authority Key Identifier:
keyid:9D:FC:A7:98:F9:F6:58:CC:F1:1F:8C:E5:15:5F:44:1D:AE:FE:31:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nfynmPn2WMzxH4zlFV9EHa7-Maw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/f6dec7-573f-46de-ac11-787787a75091/1/HPZL8h8HZdWqtMqkOYzWs3Qn3uk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/f6dec7-573f-46de-ac11-787787a75091/1/nfynmPn2WMzxH4zlFV9EHa7-Maw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:7c40::/29
Signature Algorithm: sha256WithRSAEncryption
8d:3f:af:51:0b:2c:18:aa:64:2e:cf:22:70:1e:82:4d:1e:41:
86:97:d2:af:cc:de:81:94:56:b0:a6:e0:2f:8b:e1:4e:48:c4:
5a:23:6d:0a:2b:27:65:87:8c:fb:f1:a7:28:b6:a3:c0:ca:25:
5c:04:18:89:7f:7e:7c:76:b3:fd:be:11:dc:c7:b1:1e:18:92:
27:04:82:35:24:14:d1:26:23:57:9b:0b:52:78:7f:95:77:e3:
ad:3c:03:04:ec:4b:d2:44:68:5f:4d:c5:a7:8d:5c:e1:df:a4:
cf:9e:9b:bc:c1:57:45:44:a8:82:8f:93:e4:60:d4:fd:9d:68:
a1:a6:d5:66:61:96:20:a8:13:51:56:6b:ad:d8:a2:e9:41:41:
bc:5c:e6:f4:ed:b6:ca:d5:44:29:63:8f:83:8a:49:7b:64:02:
58:ca:fa:b9:f1:76:e9:e5:85:64:39:3a:cc:0f:18:4a:e1:33:
00:49:8e:1e:da:18:fe:91:0c:7f:c3:d3:9f:68:d8:2f:6d:f4:
52:5a:09:c4:ec:4b:28:78:2d:f8:a9:15:2a:dc:98:81:63:87:
91:c1:dd:40:b7:56:de:73:3f:82:63:ed:b4:f9:fc:2e:2f:d4:
eb:c5:b9:81:a7:88:7d:46:3b:2e:54:c2:91:38:ba:61:70:af:
e2:ac:b3:58
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYVzXxxhcXnyTMbxbnuV29UcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlkZmNhNzk4ZjlmNjU4Y2NmMTFmOGNlNTE1NWY0NDFkYWVm
ZTMxYWMwHhcNMjMwMTAyMTY0NDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxY2Y2NGJmMjFmMDc2NWQ1YWFiNGNhYTQzOThjZDZiMzc0MjdkZWU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhmYICUMHPwwg01erBkSa8GTITQKo
1EunZOQz6GchC7WGCNv/8R8YQaUIifqor5lZsDifZNNxtOp4yRV+a31+YuKRl9Ba
tBYPnT/VYGxKuUsXJe67vRYRJTFyH6wCfWyoac2ua7k6xBI7f1wp/tZb5+7knmI+
sMNG6b1lRLhcnxYLAVJoWH/F60DpiDbN83ejLvyoSf/ghRRdFd+OjR/1pZ8KWQmg
+5aK8LiXyUDwwRP4WiOwPoJS5Xx8OuUXir/2ljzWz7IGgmX8Kb4Awrzp5tpCyO5m
JBnyCEONm8QIQtld/mTaiF7fqAaFHmlX21YSwUPmueBed5xdbdqY3R4ofwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFBz2S/IfB2XVqrTKpDmM1rN0J97pMB8GA1UdIwQY
MBaAFJ38p5j59ljM8R+M5RVfRB2u/jGsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbmZ5bm1QbjJXTXp4SDR6bEZWOUVIYTctTWF3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS9mNmRlYzctNTczZi00NmRlLWFjMTEt
Nzg3Nzg3YTc1MDkxLzEvSFBaTDhoOEhaZFdxdE1xa09ZeldzM1FuM3VrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYS9mNmRlYzctNTczZi00NmRlLWFjMTEtNzg3Nzg3YTc1MDkx
LzEvbmZ5bm1QbjJXTXp4SDR6bEZWOUVIYTctTWF3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhF8QDAN
BgkqhkiG9w0BAQsFAAOCAQEAjT+vUQssGKpkLs8icB6CTR5BhpfSr8zegZRWsKbg
L4vhTkjEWiNtCisnZYeM+/GnKLajwMolXAQYiX9+fHaz/b4R3MexHhiSJwSCNSQU
0SYjV5sLUnh/lXfjrTwDBOxL0kRoX03Fp41c4d+kz56bvMFXRUSogo+T5GDU/Z1o
oabVZmGWIKgTUVZrrdii6UFBvFzm9O22ytVEKWOPg4pJe2QCWMr6ufF26eWFZDk6
zA8YSuEzAEmOHtoY/pEMf8PTn2jYL230UloJxOxLKHgt+KkVKtyYgWOHkcHdQLdW
3nM/gmPttPn8Li/U68W5gaeIfUY7LlTCkTi6YXCv4qyzWA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:58 2024 by rpki-client on console-fra.rpki-client.org