Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/72d226-c3b0-41f3-b4db-83fd7382ff13/1/ksgLBS4fvMPFRFsm97HZp7A7Pwo.roa
File: ksgLBS4fvMPFRFsm97HZp7A7Pwo.roa (raw, json)
Hash identifier: r0uYUdGIg3vdR6zwJKM/l6tLMvJ7T/68UsuR+eu1btk=
Subject key identifier: 92:C8:0B:05:2E:1F:BC:C3:C5:44:5B:26:F7:B1:D9:A7:B0:3B:3F:0A
Certificate issuer: /CN=50b90a5e158ba0908fdc83cc4243fe40c6dab423
Certificate serial: 0B40A5A1
Authority key identifier: 50:B9:0A:5E:15:8B:A0:90:8F:DC:83:CC:42:43:FE:40:C6:DA:B4:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ULkKXhWLoJCP3IPMQkP-QMbatCM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/72d226-c3b0-41f3-b4db-83fd7382ff13/1/ksgLBS4fvMPFRFsm97HZp7A7Pwo.roa
Signing time: Tue 17 May 2022 06:16:29 +0000
ROA not before: Tue 17 May 2022 06:16:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208029
IP address blocks: 2a09:be40:1700::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 188786081 (0xb40a5a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50b90a5e158ba0908fdc83cc4243fe40c6dab423
Validity
Not Before: May 17 06:16:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=92c80b052e1fbcc3c5445b26f7b1d9a7b03b3f0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:5e:b5:34:77:57:25:fd:ff:d3:d0:11:c0:10:
93:49:5f:8c:e7:66:99:24:11:cf:2e:9f:8f:a0:59:
e8:ce:b5:86:d0:86:23:32:94:6f:60:9e:e2:01:ac:
86:96:8e:53:82:10:b4:7b:2c:7c:bd:2d:7e:72:21:
43:d3:ee:d9:c9:ea:f4:63:a1:b2:fb:42:01:a6:2f:
d8:a3:1b:5d:d3:95:71:fb:4f:c9:c8:e7:c3:d5:e9:
86:22:f1:1b:56:e7:34:55:d8:2a:c0:c9:bc:a0:fe:
0b:4a:6b:27:c4:d2:b5:42:33:a7:91:f0:00:4a:c4:
0f:59:ba:15:83:37:85:dd:ac:ce:4b:6b:60:97:62:
d2:99:da:10:b8:66:ef:e7:43:a4:3a:fb:06:fb:76:
05:b1:79:97:24:d2:6f:cb:ae:66:63:cf:b6:d1:d2:
43:70:60:83:51:de:bb:7c:4b:f0:89:92:80:08:83:
02:99:f6:d1:a1:59:50:ec:0a:93:7f:6d:34:e5:e7:
24:ff:39:15:f2:07:32:24:a0:7d:ab:20:ce:81:cd:
3e:52:43:1f:37:1f:ef:17:41:b1:56:ea:18:43:a7:
66:bb:da:1a:ca:6d:19:52:ab:03:68:6e:d0:34:7c:
bc:b6:ec:7a:ff:45:8b:ca:11:0e:de:94:95:50:4c:
ac:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:C8:0B:05:2E:1F:BC:C3:C5:44:5B:26:F7:B1:D9:A7:B0:3B:3F:0A
X509v3 Authority Key Identifier:
keyid:50:B9:0A:5E:15:8B:A0:90:8F:DC:83:CC:42:43:FE:40:C6:DA:B4:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ULkKXhWLoJCP3IPMQkP-QMbatCM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/72d226-c3b0-41f3-b4db-83fd7382ff13/1/ksgLBS4fvMPFRFsm97HZp7A7Pwo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/72d226-c3b0-41f3-b4db-83fd7382ff13/1/ULkKXhWLoJCP3IPMQkP-QMbatCM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:be40:1700::/40
Signature Algorithm: sha256WithRSAEncryption
81:a6:55:ca:38:46:1c:8f:a1:6f:63:98:9c:5a:c8:ce:93:71:
74:83:60:41:2d:70:c0:83:d5:72:89:05:9c:f9:50:9a:cc:4a:
23:e3:2f:5e:34:a1:66:1e:42:d0:7f:e3:3b:cb:59:af:60:77:
bb:c1:f7:96:04:e0:f3:62:ac:23:5d:bb:0a:48:9b:93:5d:b4:
d3:8a:55:17:64:7a:34:41:8c:99:d0:34:12:0f:15:92:1e:e4:
0e:a3:a2:d3:4c:93:45:94:31:98:3c:d7:78:d5:ce:91:a2:a2:
f9:5e:7c:2f:45:35:8b:3b:9a:04:7d:b6:8a:15:e6:8f:66:63:
38:3c:24:b9:a2:54:2d:c1:b5:12:6a:5b:86:be:f7:3f:d4:c0:
fc:09:7d:c0:1a:75:be:27:e0:4a:53:02:55:6e:47:af:3f:d0:
47:31:1f:a8:d6:8a:ac:70:bd:99:6f:ac:01:f7:8d:2c:41:8f:
de:a6:f8:45:7f:6e:52:a7:db:1d:83:f0:43:74:05:e3:0a:dc:
75:9a:6f:88:7f:45:27:63:23:14:a1:2d:70:77:d5:83:dc:e4:
4d:89:4e:f5:96:f8:0e:76:cb:14:a2:94:5f:ba:06:6e:36:86:
14:a9:52:df:60:fa:52:5b:dc:b8:0f:e4:a1:9d:ae:68:a6:51:
e4:c8:2c:fc
-----BEGIN CERTIFICATE-----
MIIE8TCCA9mgAwIBAgIEC0CloTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
MGI5MGE1ZTE1OGJhMDkwOGZkYzgzY2M0MjQzZmU0MGM2ZGFiNDIzMB4XDTIyMDUx
NzA2MTYyOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTJjODBiMDUyZTFm
YmNjM2M1NDQ1YjI2ZjdiMWQ5YTdiMDNiM2YwYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANZetTR3VyX9/9PQEcAQk0lfjOdmmSQRzy6fj6BZ6M61htCG
IzKUb2Ce4gGshpaOU4IQtHssfL0tfnIhQ9Pu2cnq9GOhsvtCAaYv2KMbXdOVcftP
ycjnw9XphiLxG1bnNFXYKsDJvKD+C0prJ8TStUIzp5HwAErED1m6FYM3hd2szktr
YJdi0pnaELhm7+dDpDr7Bvt2BbF5lyTSb8uuZmPPttHSQ3Bgg1Heu3xL8ImSgAiD
Apn20aFZUOwKk39tNOXnJP85FfIHMiSgfasgzoHNPlJDHzcf7xdBsVbqGEOnZrva
GsptGVKrA2hu0DR8vLbsev9Fi8oRDt6UlVBMrLkCAwEAAaOCAgswggIHMB0GA1Ud
DgQWBBSSyAsFLh+8w8VEWyb3sdmnsDs/CjAfBgNVHSMEGDAWgBRQuQpeFYugkI/c
g8xCQ/5Axtq0IzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1VMa0tYaFdMb0pDUDNJUE1Ra1AtUU1iYXRDTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZGIvNzJkMjI2LWMzYjAtNDFmMy1iNGRiLTgzZmQ3MzgyZmYxMy8x
L2tzZ0xCUzRmdk1QRlJGc205N0hacDdBN1B3by5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZGIv
NzJkMjI2LWMzYjAtNDFmMy1iNGRiLTgzZmQ3MzgyZmYxMy8xL1VMa0tYaFdMb0pD
UDNJUE1Ra1AtUU1iYXRDTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh
BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoJvkAXMA0GCSqGSIb3DQEBCwUA
A4IBAQCBplXKOEYcj6FvY5icWsjOk3F0g2BBLXDAg9VyiQWc+VCazEoj4y9eNKFm
HkLQf+M7y1mvYHe7wfeWBODzYqwjXbsKSJuTXbTTilUXZHo0QYyZ0DQSDxWSHuQO
o6LTTJNFlDGYPNd41c6RoqL5XnwvRTWLO5oEfbaKFeaPZmM4PCS5olQtwbUSaluG
vvc/1MD8CX3AGnW+J+BKUwJVbkevP9BHMR+o1oqscL2Zb6wB940sQY/epvhFf25S
p9sdg/BDdAXjCtx1mm+If0UnYyMUoS1wd9WD3ORNiU71lvgOdssUopRfugZuNoYU
qVLfYPpSW9y4D+Shna5oplHkyCz8
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:44 2023 by rpki-client on console-ams.rpki-client.org