Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/72d226-c3b0-41f3-b4db-83fd7382ff13/1/antKLAtMZFwhXE5esfwDlKvF1_0.roa
File: antKLAtMZFwhXE5esfwDlKvF1_0.roa (raw, json)
Hash identifier: wSHBJCxX9EMMtWrXsDYiUDZBmRknJIW5tSbTEHhpMXU=
Subject key identifier: 6A:7B:4A:2C:0B:4C:64:5C:21:5C:4E:5E:B1:FC:03:94:AB:C5:D7:FD
Certificate issuer: /CN=50b90a5e158ba0908fdc83cc4243fe40c6dab423
Certificate serial: 09EDB0A4
Authority key identifier: 50:B9:0A:5E:15:8B:A0:90:8F:DC:83:CC:42:43:FE:40:C6:DA:B4:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ULkKXhWLoJCP3IPMQkP-QMbatCM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/72d226-c3b0-41f3-b4db-83fd7382ff13/1/antKLAtMZFwhXE5esfwDlKvF1_0.roa
Signing time: Sat 01 Jan 2022 09:59:09 +0000
ROA not before: Sat 01 Jan 2022 09:59:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208915
IP address blocks: 2a09:be40:ba00::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 166572196 (0x9edb0a4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50b90a5e158ba0908fdc83cc4243fe40c6dab423
Validity
Not Before: Jan 1 09:59:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6a7b4a2c0b4c645c215c4e5eb1fc0394abc5d7fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:4f:8b:34:7c:ea:43:27:2e:3b:2f:41:17:fb:
be:76:fa:c9:cd:60:a0:42:ad:59:91:c9:38:20:10:
93:ec:5c:fb:3f:25:2f:f6:ab:fb:40:57:22:e0:f0:
68:1e:70:96:08:8e:65:d0:d5:72:09:d5:40:e5:33:
3a:e3:4b:de:76:99:ca:bf:15:2d:02:46:f6:a9:0a:
e3:97:38:98:a8:8b:13:47:49:ed:33:45:ec:87:17:
14:2e:6b:62:50:1e:4e:fb:d0:9c:25:fe:59:b1:20:
24:0c:81:62:23:a6:c5:cc:db:05:d1:e7:38:3d:2f:
ab:75:92:55:99:3e:c5:a5:9b:a8:4a:dd:a7:e0:07:
a8:cc:78:fb:20:9b:d8:7c:41:2f:75:e6:af:a9:07:
66:c2:dc:8b:4f:9f:f6:7e:69:f4:a1:26:7e:28:fd:
76:d6:b8:1f:52:58:f0:b1:1a:28:c9:7d:4d:5d:52:
ee:b5:f6:8e:c6:0f:c7:df:68:75:a2:34:bc:8a:f2:
90:fd:13:4f:be:1b:33:cf:22:5d:c3:1d:57:59:de:
16:04:1e:a9:29:26:53:71:10:a5:0c:a8:90:15:c2:
db:ef:3c:11:83:6e:29:14:dd:02:dd:71:13:a6:b2:
28:f1:c2:c4:50:e1:c1:27:2e:11:69:0c:ba:44:84:
12:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:7B:4A:2C:0B:4C:64:5C:21:5C:4E:5E:B1:FC:03:94:AB:C5:D7:FD
X509v3 Authority Key Identifier:
keyid:50:B9:0A:5E:15:8B:A0:90:8F:DC:83:CC:42:43:FE:40:C6:DA:B4:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ULkKXhWLoJCP3IPMQkP-QMbatCM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/72d226-c3b0-41f3-b4db-83fd7382ff13/1/antKLAtMZFwhXE5esfwDlKvF1_0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/72d226-c3b0-41f3-b4db-83fd7382ff13/1/ULkKXhWLoJCP3IPMQkP-QMbatCM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:be40:ba00::/40
Signature Algorithm: sha256WithRSAEncryption
2b:a8:74:79:1c:de:ab:df:e6:71:38:e6:07:2d:d9:fe:87:16:
c1:86:47:69:e2:32:59:4b:db:f1:73:40:d2:ba:5c:aa:9c:76:
c9:83:3f:95:30:2f:08:31:c7:e7:f8:61:38:8e:df:9b:c1:27:
59:2a:23:a6:8c:fe:fe:36:b9:a0:e1:03:d1:92:f5:97:4f:c6:
d2:b6:c1:ce:66:1d:4d:d0:83:f4:82:1b:a0:1b:9f:57:28:3c:
2b:2f:40:5f:38:04:4e:32:a7:e2:79:b3:23:1f:1e:69:3e:a9:
56:8c:9a:24:54:55:00:33:63:af:cc:1d:f2:32:38:84:cc:d0:
22:16:d9:da:64:a4:0e:50:77:44:00:4d:af:3f:38:76:08:ed:
3c:29:25:76:89:9f:52:93:44:51:50:27:19:5a:ad:1b:ef:72:
81:e7:7a:71:f4:ca:91:13:29:da:b8:b4:63:4d:6f:4f:c8:f2:
04:cd:54:cf:f2:72:3d:de:64:78:26:ce:a3:9c:8f:26:ca:2f:
e2:23:24:1d:4d:aa:50:4f:36:d5:2e:fe:20:23:30:dd:ed:2f:
de:8d:59:26:a9:b9:8d:eb:9c:2e:31:ae:51:96:ce:e4:d2:4c:
9c:d8:d9:a8:22:29:ec:cb:b6:31:8f:a3:72:86:a6:04:ec:44:
2b:98:c9:03
-----BEGIN CERTIFICATE-----
MIIE8TCCA9mgAwIBAgIECe2wpDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
MGI5MGE1ZTE1OGJhMDkwOGZkYzgzY2M0MjQzZmU0MGM2ZGFiNDIzMB4XDTIyMDEw
MTA5NTkwOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNmE3YjRhMmMwYjRj
NjQ1YzIxNWM0ZTVlYjFmYzAzOTRhYmM1ZDdmZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJxPizR86kMnLjsvQRf7vnb6yc1goEKtWZHJOCAQk+xc+z8l
L/ar+0BXIuDwaB5wlgiOZdDVcgnVQOUzOuNL3naZyr8VLQJG9qkK45c4mKiLE0dJ
7TNF7IcXFC5rYlAeTvvQnCX+WbEgJAyBYiOmxczbBdHnOD0vq3WSVZk+xaWbqErd
p+AHqMx4+yCb2HxBL3Xmr6kHZsLci0+f9n5p9KEmfij9dta4H1JY8LEaKMl9TV1S
7rX2jsYPx99odaI0vIrykP0TT74bM88iXcMdV1neFgQeqSkmU3EQpQyokBXC2+88
EYNuKRTdAt1xE6ayKPHCxFDhwScuEWkMukSEEvUCAwEAAaOCAgswggIHMB0GA1Ud
DgQWBBRqe0osC0xkXCFcTl6x/AOUq8XX/TAfBgNVHSMEGDAWgBRQuQpeFYugkI/c
g8xCQ/5Axtq0IzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1VMa0tYaFdMb0pDUDNJUE1Ra1AtUU1iYXRDTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZGIvNzJkMjI2LWMzYjAtNDFmMy1iNGRiLTgzZmQ3MzgyZmYxMy8x
L2FudEtMQXRNWkZ3aFhFNWVzZndEbEt2RjFfMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZGIv
NzJkMjI2LWMzYjAtNDFmMy1iNGRiLTgzZmQ3MzgyZmYxMy8xL1VMa0tYaFdMb0pD
UDNJUE1Ra1AtUU1iYXRDTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh
BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoJvkC6MA0GCSqGSIb3DQEBCwUA
A4IBAQArqHR5HN6r3+ZxOOYHLdn+hxbBhkdp4jJZS9vxc0DSulyqnHbJgz+VMC8I
Mcfn+GE4jt+bwSdZKiOmjP7+Nrmg4QPRkvWXT8bStsHOZh1N0IP0ghugG59XKDwr
L0BfOAROMqfiebMjHx5pPqlWjJokVFUAM2OvzB3yMjiEzNAiFtnaZKQOUHdEAE2v
Pzh2CO08KSV2iZ9Sk0RRUCcZWq0b73KB53px9MqREynauLRjTW9PyPIEzVTP8nI9
3mR4Js6jnI8myi/iIyQdTapQTzbVLv4gIzDd7S/ejVkmqbmN65wuMa5Rls7k0kyc
2NmoIinsy7Yxj6NyhqYE7EQrmMkD
-----END CERTIFICATE-----
Generated at Sun Apr 20 13:09:00 2025 by rpki-client