Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/238408-55bb-45e2-bb7a-495428f9d101/1/EbVdsAjD8cjFdR0kJtpKjmrgsIw.roa
File: EbVdsAjD8cjFdR0kJtpKjmrgsIw.roa (raw, json)
Hash identifier: GNvKL/zEXTQBsMaZC1jws4OboEmbjkqSjWAXxvW4TLQ=
Subject key identifier: 11:B5:5D:B0:08:C3:F1:C8:C5:75:1D:24:26:DA:4A:8E:6A:E0:B0:8C
Certificate issuer: /CN=dc1753c511a81546326624d831e004d13f345787
Certificate serial: 01856D5D1D39D8409D85D4409BA38CB8D3F2
Authority key identifier: DC:17:53:C5:11:A8:15:46:32:66:24:D8:31:E0:04:D1:3F:34:57:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3BdTxRGoFUYyZiTYMeAE0T80V4c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/238408-55bb-45e2-bb7a-495428f9d101/1/EbVdsAjD8cjFdR0kJtpKjmrgsIw.roa
Signing time: Sun 01 Jan 2023 12:44:56 +0000
ROA not before: Sun 01 Jan 2023 12:44:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15600
IP address blocks: 2001:67c:98::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:5d:1d:39:d8:40:9d:85:d4:40:9b:a3:8c:b8:d3:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc1753c511a81546326624d831e004d13f345787
Validity
Not Before: Jan 1 12:44:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=11b55db008c3f1c8c5751d2426da4a8e6ae0b08c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:28:92:d4:71:97:f4:3b:55:c9:51:93:46:e3:
94:18:18:cf:69:a7:ef:7d:f3:35:45:54:39:98:05:
15:01:34:59:2c:93:d8:79:15:53:5f:5d:f2:b6:10:
1f:b0:14:f5:43:0a:d8:8c:b0:74:83:ef:91:9a:10:
6b:d7:0d:d1:1b:3c:34:1f:0a:ca:bb:bb:52:4c:ec:
da:9d:0e:41:e7:b2:6d:5e:58:80:73:b3:55:f8:e5:
bf:d4:35:56:19:f0:d5:be:72:43:20:e4:64:7d:04:
66:ff:fc:c5:ac:86:f5:4d:6d:8d:3e:73:b5:da:21:
2e:70:3f:1b:e9:3e:3f:49:ec:03:69:c3:40:97:69:
e7:82:2d:63:bb:f6:2a:4a:81:b9:f5:9a:3f:bb:b9:
d3:67:0d:7f:a0:3e:d2:31:fc:80:c4:8a:e4:c0:93:
ad:c8:c4:30:0b:6b:36:ce:b6:93:62:07:c5:84:a6:
23:1e:b5:ba:11:07:a0:7e:05:bb:3b:43:ad:a1:af:
a5:a3:64:0f:17:62:ad:d6:30:09:41:49:09:65:49:
9d:8d:98:84:44:c1:69:9a:2b:39:e9:92:36:9d:94:
52:95:f3:0f:a6:33:08:2b:9b:a3:67:cb:d3:d7:57:
85:cf:c6:ec:de:a2:84:a9:04:af:74:f3:11:bc:81:
44:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:B5:5D:B0:08:C3:F1:C8:C5:75:1D:24:26:DA:4A:8E:6A:E0:B0:8C
X509v3 Authority Key Identifier:
keyid:DC:17:53:C5:11:A8:15:46:32:66:24:D8:31:E0:04:D1:3F:34:57:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3BdTxRGoFUYyZiTYMeAE0T80V4c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/238408-55bb-45e2-bb7a-495428f9d101/1/EbVdsAjD8cjFdR0kJtpKjmrgsIw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/238408-55bb-45e2-bb7a-495428f9d101/1/3BdTxRGoFUYyZiTYMeAE0T80V4c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:98::/48
Signature Algorithm: sha256WithRSAEncryption
b5:99:c3:a8:5a:f9:3f:8a:58:88:51:23:83:b2:72:5c:53:88:
ae:9f:1b:46:5d:2c:48:ab:27:8c:b3:7d:74:18:a8:a1:91:89:
85:45:80:5d:d3:b0:f5:d3:eb:ac:b6:18:b5:ed:ca:fc:ef:2f:
81:c6:a1:d4:36:b4:aa:b7:56:27:d0:8a:6c:3a:4e:2f:e2:ff:
4b:8c:ad:bd:3c:f7:fc:5f:eb:0f:ee:c3:a3:48:fe:51:01:8a:
75:d8:66:df:43:cd:5c:33:b2:04:a1:93:00:4a:53:c2:9e:ba:
a8:1e:fb:82:09:47:16:65:11:b0:17:a4:91:28:15:45:cd:b8:
24:0f:67:78:ed:81:1f:f7:7d:4c:d1:6d:75:0e:dd:2e:48:ee:
11:51:15:a4:90:c9:1f:60:cd:3e:f4:bf:34:98:47:06:65:43:
fa:f0:5f:b6:bf:42:03:37:8f:8c:92:cb:e3:f9:3e:41:ad:15:
33:47:25:b0:c9:60:3c:f6:4b:7e:3c:9f:27:fb:fa:0c:e4:fd:
05:34:85:bd:67:a8:28:3e:65:5f:64:19:6b:0a:2a:84:6c:12:
69:12:82:f3:0f:24:6a:47:af:86:4b:fa:fd:c3:33:ec:a6:cd:
d9:9c:4d:8b:be:25:5a:99:77:6a:1f:1f:47:51:7f:d7:28:49:
52:22:4f:f6
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVtXR052ECdhdRAm6OMuNPyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRjMTc1M2M1MTFhODE1NDYzMjY2MjRkODMxZTAwNGQxM2Yz
NDU3ODcwHhcNMjMwMTAxMTI0NDU2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMWI1NWRiMDA4YzNmMWM4YzU3NTFkMjQyNmRhNGE4ZTZhZTBiMDhjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoCiS1HGX9DtVyVGTRuOUGBjPaafv
ffM1RVQ5mAUVATRZLJPYeRVTX13ythAfsBT1QwrYjLB0g++RmhBr1w3RGzw0HwrK
u7tSTOzanQ5B57JtXliAc7NV+OW/1DVWGfDVvnJDIORkfQRm//zFrIb1TW2NPnO1
2iEucD8b6T4/SewDacNAl2nngi1ju/YqSoG59Zo/u7nTZw1/oD7SMfyAxIrkwJOt
yMQwC2s2zraTYgfFhKYjHrW6EQegfgW7O0Otoa+lo2QPF2Kt1jAJQUkJZUmdjZiE
RMFpmis56ZI2nZRSlfMPpjMIK5ujZ8vT11eFz8bs3qKEqQSvdPMRvIFEXwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFBG1XbAIw/HIxXUdJCbaSo5q4LCMMB8GA1UdIwQY
MBaAFNwXU8URqBVGMmYk2DHgBNE/NFeHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM0JkVHhSR29GVVl5WmlUWU1lQUUwVDgwVjRjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi8yMzg0MDgtNTViYi00NWUyLWJiN2Et
NDk1NDI4ZjlkMTAxLzEvRWJWZHNBakQ4Y2pGZFIwa0p0cEtqbXJnc0l3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMi8yMzg0MDgtNTViYi00NWUyLWJiN2EtNDk1NDI4ZjlkMTAx
LzEvM0JkVHhSR29GVVl5WmlUWU1lQUUwVDgwVjRjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfACY
MA0GCSqGSIb3DQEBCwUAA4IBAQC1mcOoWvk/iliIUSODsnJcU4iunxtGXSxIqyeM
s310GKihkYmFRYBd07D10+usthi17cr87y+BxqHUNrSqt1Yn0IpsOk4v4v9LjK29
PPf8X+sP7sOjSP5RAYp12GbfQ81cM7IEoZMASlPCnrqoHvuCCUcWZRGwF6SRKBVF
zbgkD2d47YEf931M0W11Dt0uSO4RURWkkMkfYM0+9L80mEcGZUP68F+2v0IDN4+M
ksvj+T5BrRUzRyWwyWA89kt+PJ8n+/oM5P0FNIW9Z6goPmVfZBlrCiqEbBJpEoLz
DyRqR6+GS/r9wzPsps3ZnE2LviVamXdqHx9HUX/XKElSIk/2
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:12:18 2025 by rpki-client