Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/72d226-c3b0-41f3-b4db-83fd7382ff13/1/hq6Hi1L2Y4iI6uEAwvsB7rWmIYQ.roa
File: hq6Hi1L2Y4iI6uEAwvsB7rWmIYQ.roa (raw, json)
Hash identifier: lwvBkwEMWZpk9xcE9KOrZIpiERTvteHQgj/yWLm8lIE=
Subject key identifier: 86:AE:87:8B:52:F6:63:88:88:EA:E1:00:C2:FB:01:EE:B5:A6:21:84
Certificate issuer: /CN=50b90a5e158ba0908fdc83cc4243fe40c6dab423
Certificate serial: 0A410C0F
Authority key identifier: 50:B9:0A:5E:15:8B:A0:90:8F:DC:83:CC:42:43:FE:40:C6:DA:B4:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ULkKXhWLoJCP3IPMQkP-QMbatCM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/72d226-c3b0-41f3-b4db-83fd7382ff13/1/hq6Hi1L2Y4iI6uEAwvsB7rWmIYQ.roa
Signing time: Wed 02 Feb 2022 15:10:32 +0000
ROA not before: Wed 02 Feb 2022 15:10:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209968
IP address blocks: 2a09:be47::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 172035087 (0xa410c0f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50b90a5e158ba0908fdc83cc4243fe40c6dab423
Validity
Not Before: Feb 2 15:10:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=86ae878b52f6638888eae100c2fb01eeb5a62184
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:d9:42:4c:88:72:a9:b5:f8:92:99:f2:97:1c:
61:f9:c6:36:83:2f:fd:81:29:a2:c6:d2:16:ba:fb:
c0:14:5a:e9:5e:08:f7:90:ee:b7:cc:6d:8d:be:41:
a8:12:4a:fa:cb:1f:e7:a4:ee:5f:95:08:8f:82:6f:
91:61:93:af:7f:1f:44:b5:49:dc:4e:96:3b:e3:ba:
a5:97:f5:35:a3:c5:00:be:bf:5e:14:f1:97:9f:9f:
1a:90:06:e0:ae:35:ae:97:17:9f:78:8c:34:7d:f9:
0e:97:88:08:d0:71:5b:ec:06:39:1b:ac:55:8a:3b:
b2:a9:e0:a6:7f:1a:d4:27:e4:b5:97:b1:c4:f7:6b:
56:aa:8e:e8:53:a3:de:f6:81:bf:06:7c:31:a0:95:
ee:53:1e:b2:c4:98:be:14:c4:60:2f:80:12:03:82:
bd:b5:48:1b:9b:6a:4b:d3:d0:ef:2b:2b:af:6e:39:
e2:35:82:5d:84:c9:20:55:0f:71:7b:b1:74:fd:c3:
a4:d7:28:86:a5:8e:22:1f:21:bf:34:f8:a9:f2:9c:
46:72:1e:4b:ae:31:99:a0:b5:06:b6:e6:dd:9a:0a:
a9:9a:6c:21:2e:2d:b4:1b:25:dd:f3:04:97:d6:cc:
e3:7e:35:b3:15:85:e1:1b:b0:a5:47:70:89:26:81:
5e:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:AE:87:8B:52:F6:63:88:88:EA:E1:00:C2:FB:01:EE:B5:A6:21:84
X509v3 Authority Key Identifier:
keyid:50:B9:0A:5E:15:8B:A0:90:8F:DC:83:CC:42:43:FE:40:C6:DA:B4:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ULkKXhWLoJCP3IPMQkP-QMbatCM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/72d226-c3b0-41f3-b4db-83fd7382ff13/1/hq6Hi1L2Y4iI6uEAwvsB7rWmIYQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/72d226-c3b0-41f3-b4db-83fd7382ff13/1/ULkKXhWLoJCP3IPMQkP-QMbatCM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:be47::/32
Signature Algorithm: sha256WithRSAEncryption
6e:7d:e5:d2:83:d8:aa:cc:e9:e8:71:31:ee:7c:7f:ce:a2:4b:
56:7b:26:5c:93:4b:54:7f:90:77:fa:5b:7d:d4:07:4a:ea:92:
b1:66:1c:08:5a:64:c1:dd:57:a2:a6:83:e5:f0:d5:df:aa:87:
90:52:df:f2:4c:a9:43:65:e0:ba:aa:07:93:cd:1f:8e:97:14:
da:01:ca:9f:85:91:a6:01:5e:53:24:64:57:60:89:9c:86:92:
bc:0e:57:4e:41:85:f0:3f:c9:9b:b1:4d:6b:af:05:5b:01:e3:
ea:5f:3a:c4:82:aa:0e:10:d5:41:7a:d0:30:e2:76:8b:f8:14:
91:62:54:5a:b6:37:5c:27:8b:70:fa:31:ba:48:26:e7:20:41:
4b:3d:c4:68:59:17:ac:87:36:6e:ee:06:b6:02:82:92:c1:5a:
e2:19:5b:da:01:97:05:e7:82:83:ae:27:68:b2:03:6a:8d:07:
a0:f8:1f:0e:5c:fc:da:2e:3d:e1:fb:ad:b7:fe:79:32:1b:08:
1e:93:49:ca:4c:ef:80:74:82:c1:3d:17:73:5f:59:f7:99:02:
3f:f1:21:74:f8:d0:f1:52:1e:97:5c:ef:5a:09:d9:a4:f9:6d:
ab:91:a9:c6:3f:67:03:61:cf:e5:bd:f9:0c:83:4c:9f:33:a1:
a6:85:51:30
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgIECkEMDzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
MGI5MGE1ZTE1OGJhMDkwOGZkYzgzY2M0MjQzZmU0MGM2ZGFiNDIzMB4XDTIyMDIw
MjE1MTAzMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODZhZTg3OGI1MmY2
NjM4ODg4ZWFlMTAwYzJmYjAxZWViNWE2MjE4NDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAIzZQkyIcqm1+JKZ8pccYfnGNoMv/YEposbSFrr7wBRa6V4I
95Dut8xtjb5BqBJK+ssf56TuX5UIj4JvkWGTr38fRLVJ3E6WO+O6pZf1NaPFAL6/
XhTxl5+fGpAG4K41rpcXn3iMNH35DpeICNBxW+wGORusVYo7sqngpn8a1CfktZex
xPdrVqqO6FOj3vaBvwZ8MaCV7lMessSYvhTEYC+AEgOCvbVIG5tqS9PQ7ysrr245
4jWCXYTJIFUPcXuxdP3DpNcohqWOIh8hvzT4qfKcRnIeS64xmaC1Brbm3ZoKqZps
IS4ttBsl3fMEl9bM4341sxWF4RuwpUdwiSaBXn0CAwEAAaOCAgowggIGMB0GA1Ud
DgQWBBSGroeLUvZjiIjq4QDC+wHutaYhhDAfBgNVHSMEGDAWgBRQuQpeFYugkI/c
g8xCQ/5Axtq0IzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1VMa0tYaFdMb0pDUDNJUE1Ra1AtUU1iYXRDTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZGIvNzJkMjI2LWMzYjAtNDFmMy1iNGRiLTgzZmQ3MzgyZmYxMy8x
L2hxNkhpMUwyWTRpSTZ1RUF3dnNCN3JXbUlZUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZGIv
NzJkMjI2LWMzYjAtNDFmMy1iNGRiLTgzZmQ3MzgyZmYxMy8xL1VMa0tYaFdMb0pD
UDNJUE1Ra1AtUU1iYXRDTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAg
BggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACoJvkcwDQYJKoZIhvcNAQELBQAD
ggEBAG595dKD2KrM6ehxMe58f86iS1Z7JlyTS1R/kHf6W33UB0rqkrFmHAhaZMHd
V6Kmg+Xw1d+qh5BS3/JMqUNl4LqqB5PNH46XFNoByp+FkaYBXlMkZFdgiZyGkrwO
V05BhfA/yZuxTWuvBVsB4+pfOsSCqg4Q1UF60DDidov4FJFiVFq2N1wni3D6MbpI
JucgQUs9xGhZF6yHNm7uBrYCgpLBWuIZW9oBlwXngoOuJ2iyA2qNB6D4Hw5c/Nou
PeH7rbf+eTIbCB6TScpM74B0gsE9F3NfWfeZAj/xIXT40PFSHpdc71oJ2aT5bauR
qcY/ZwNhz+W9+QyDTJ8zoaaFUTA=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:53 2023 by rpki-client on console-fra.rpki-client.org