Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/72d226-c3b0-41f3-b4db-83fd7382ff13/1/SBHzrdui31lO-QNCcdTXAKGB2Kc.roa
File: SBHzrdui31lO-QNCcdTXAKGB2Kc.roa (raw, json)
Hash identifier: aHEdjrA/9buKBeWF1p2/O+N+DHAm4++ou4aIKgk7zSc=
Subject key identifier: 48:11:F3:AD:DB:A2:DF:59:4E:F9:03:42:71:D4:D7:00:A1:81:D8:A7
Certificate issuer: /CN=50b90a5e158ba0908fdc83cc4243fe40c6dab423
Certificate serial: 09E50CAD
Authority key identifier: 50:B9:0A:5E:15:8B:A0:90:8F:DC:83:CC:42:43:FE:40:C6:DA:B4:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ULkKXhWLoJCP3IPMQkP-QMbatCM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/72d226-c3b0-41f3-b4db-83fd7382ff13/1/SBHzrdui31lO-QNCcdTXAKGB2Kc.roa
Signing time: Sat 01 Jan 2022 09:59:02 +0000
ROA not before: Sat 01 Jan 2022 09:59:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34641
IP address blocks: 2a09:be40:b200::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 166005933 (0x9e50cad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50b90a5e158ba0908fdc83cc4243fe40c6dab423
Validity
Not Before: Jan 1 09:59:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4811f3addba2df594ef9034271d4d700a181d8a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:1d:2e:ac:4a:0d:df:d8:21:3e:b2:57:80:c6:
ea:0d:a8:55:1a:3c:b6:35:0a:c1:1e:c0:0c:5a:59:
de:2c:9e:91:15:b0:60:47:4a:a0:a8:2b:ed:58:36:
a6:46:d8:fd:6f:df:cc:fd:d2:9d:34:88:03:a9:23:
7c:de:34:0d:ff:82:b7:f9:ff:f7:3d:38:b2:6b:77:
de:9e:05:66:43:86:1b:fa:03:e8:a1:1c:27:1e:fe:
c4:30:0d:64:66:be:a3:19:97:56:c2:1f:da:b0:cd:
cf:8e:8f:50:d9:e9:ff:7f:b0:fd:62:ea:bd:60:39:
bd:2a:34:16:6a:be:0a:bf:da:61:17:32:73:44:50:
98:79:c6:f0:b5:11:c1:4c:b5:af:d5:a8:e0:a8:96:
f1:2d:ee:81:ac:18:25:8e:cd:68:4b:b6:6b:29:65:
d4:28:93:c6:40:82:c8:cd:b9:80:94:f4:d1:2d:ac:
f7:0e:95:d0:d4:47:8f:b9:2c:69:e3:c5:36:ad:25:
45:db:fa:7f:a3:2a:a2:e6:b0:82:9b:90:b0:b8:82:
c9:36:6f:78:e4:bd:40:8b:62:84:b7:95:8d:8f:1e:
11:9f:64:df:dd:35:52:40:03:7d:3d:da:63:76:4c:
3a:db:01:4a:26:18:88:48:1e:78:be:43:3d:06:b3:
79:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:11:F3:AD:DB:A2:DF:59:4E:F9:03:42:71:D4:D7:00:A1:81:D8:A7
X509v3 Authority Key Identifier:
keyid:50:B9:0A:5E:15:8B:A0:90:8F:DC:83:CC:42:43:FE:40:C6:DA:B4:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ULkKXhWLoJCP3IPMQkP-QMbatCM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/72d226-c3b0-41f3-b4db-83fd7382ff13/1/SBHzrdui31lO-QNCcdTXAKGB2Kc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/72d226-c3b0-41f3-b4db-83fd7382ff13/1/ULkKXhWLoJCP3IPMQkP-QMbatCM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:be40:b200::/40
Signature Algorithm: sha256WithRSAEncryption
3b:13:d2:f5:91:b9:3f:3a:e4:43:df:4a:d7:c2:7b:a3:fc:6d:
ae:b2:c6:e5:f7:2e:7d:f9:e8:e9:76:e2:cd:d5:d2:e4:b5:be:
ec:ff:a1:ee:73:33:66:d3:54:a1:d1:7c:2e:5e:ef:9b:69:3f:
22:7b:97:fd:12:a2:41:b4:e6:0a:86:2c:c7:dd:b4:16:20:66:
e9:66:a0:2c:a9:64:ab:08:17:2d:51:12:ba:49:d6:df:60:8d:
8e:d8:eb:62:ab:df:94:e9:8c:41:1a:99:6f:80:63:76:b0:7f:
f3:a6:35:6e:ce:94:7f:a2:0b:db:4c:09:7a:56:00:b8:dc:12:
97:aa:23:e4:d5:42:5c:fa:82:4a:35:48:57:1e:9c:16:6a:e9:
0b:1d:98:e4:8c:17:3a:22:3b:d7:54:19:28:da:af:a5:7a:68:
f2:5e:e2:7c:33:8a:5e:78:91:45:1a:6e:c3:cb:e9:55:2c:91:
e7:2a:68:d1:aa:05:e4:17:1f:51:58:5c:e7:a1:da:6e:b0:d7:
cb:8c:a5:3e:04:b4:76:83:df:31:5a:be:8f:2c:a3:2c:82:19:
d3:23:76:a8:f4:f3:86:81:3b:8c:26:b1:1e:d7:f8:7e:66:9f:
53:a3:ae:ae:9b:12:23:fd:1f:d9:91:92:74:14:09:29:0a:de:
15:06:de:fd
-----BEGIN CERTIFICATE-----
MIIE8TCCA9mgAwIBAgIECeUMrTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
MGI5MGE1ZTE1OGJhMDkwOGZkYzgzY2M0MjQzZmU0MGM2ZGFiNDIzMB4XDTIyMDEw
MTA5NTkwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDgxMWYzYWRkYmEy
ZGY1OTRlZjkwMzQyNzFkNGQ3MDBhMTgxZDhhNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMAdLqxKDd/YIT6yV4DG6g2oVRo8tjUKwR7ADFpZ3iyekRWw
YEdKoKgr7Vg2pkbY/W/fzP3SnTSIA6kjfN40Df+Ct/n/9z04smt33p4FZkOGG/oD
6KEcJx7+xDANZGa+oxmXVsIf2rDNz46PUNnp/3+w/WLqvWA5vSo0Fmq+Cr/aYRcy
c0RQmHnG8LURwUy1r9Wo4KiW8S3ugawYJY7NaEu2ayll1CiTxkCCyM25gJT00S2s
9w6V0NRHj7ksaePFNq0lRdv6f6MqouawgpuQsLiCyTZveOS9QItihLeVjY8eEZ9k
3901UkADfT3aY3ZMOtsBSiYYiEgeeL5DPQazeVECAwEAAaOCAgswggIHMB0GA1Ud
DgQWBBRIEfOt26LfWU75A0Jx1NcAoYHYpzAfBgNVHSMEGDAWgBRQuQpeFYugkI/c
g8xCQ/5Axtq0IzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1VMa0tYaFdMb0pDUDNJUE1Ra1AtUU1iYXRDTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZGIvNzJkMjI2LWMzYjAtNDFmMy1iNGRiLTgzZmQ3MzgyZmYxMy8x
L1NCSHpyZHVpMzFsTy1RTkNjZFRYQUtHQjJLYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZGIv
NzJkMjI2LWMzYjAtNDFmMy1iNGRiLTgzZmQ3MzgyZmYxMy8xL1VMa0tYaFdMb0pD
UDNJUE1Ra1AtUU1iYXRDTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh
BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoJvkCyMA0GCSqGSIb3DQEBCwUA
A4IBAQA7E9L1kbk/OuRD30rXwnuj/G2ussbl9y59+ejpduLN1dLktb7s/6HuczNm
01Sh0XwuXu+baT8ie5f9EqJBtOYKhizH3bQWIGbpZqAsqWSrCBctURK6SdbfYI2O
2Otiq9+U6YxBGplvgGN2sH/zpjVuzpR/ogvbTAl6VgC43BKXqiPk1UJc+oJKNUhX
HpwWaukLHZjkjBc6IjvXVBko2q+lemjyXuJ8M4peeJFFGm7Dy+lVLJHnKmjRqgXk
Fx9RWFznodpusNfLjKU+BLR2g98xWr6PLKMsghnTI3ao9POGgTuMJrEe1/h+Zp9T
o66umxIj/R/ZkZJ0FAkpCt4VBt79
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:53 2023 by rpki-client on console-fra.rpki-client.org