Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/5b4e13-b3dd-4d8a-8e71-cae6c725d92f/1/TIDwWvhnRkKL5OP4_7n3F7OPL-k.roa
File: TIDwWvhnRkKL5OP4_7n3F7OPL-k.roa (raw, json)
Hash identifier: 1EpYeRvbi3rhVuhrdJL0h8GFA/RFOrgmba/0VYKNQa8=
Subject key identifier: 4C:80:F0:5A:F8:67:46:42:8B:E4:E3:F8:FF:B9:F7:17:B3:8F:2F:E9
Certificate issuer: /CN=bde6ac28f954e13dcb7db69bc222b785b4d75f2c
Certificate serial: 01856C53BE8D706D8FFADB6F3415C05A71DC
Authority key identifier: BD:E6:AC:28:F9:54:E1:3D:CB:7D:B6:9B:C2:22:B7:85:B4:D7:5F:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/veasKPlU4T3LfbabwiK3hbTXXyw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/5b4e13-b3dd-4d8a-8e71-cae6c725d92f/1/TIDwWvhnRkKL5OP4_7n3F7OPL-k.roa
Signing time: Sun 01 Jan 2023 07:55:05 +0000
ROA not before: Sun 01 Jan 2023 07:55:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 2001:67c:2ccc::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:53:be:8d:70:6d:8f:fa:db:6f:34:15:c0:5a:71:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bde6ac28f954e13dcb7db69bc222b785b4d75f2c
Validity
Not Before: Jan 1 07:55:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4c80f05af86746428be4e3f8ffb9f717b38f2fe9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:e7:fd:39:d9:b7:01:09:42:d1:e9:07:4e:98:
41:5f:41:04:db:9a:41:a9:90:af:ee:a2:b6:6c:37:
4a:3f:1f:fa:2a:74:2d:02:33:6f:d6:e3:5f:b4:f0:
f9:83:93:41:49:8b:f2:19:5d:6d:22:a0:58:36:1c:
e8:61:42:83:b6:a3:b5:47:ae:61:64:f8:4d:3b:1f:
1d:05:c2:4a:d0:63:df:0a:13:4f:67:91:1e:5c:0c:
a1:dc:a5:cf:5e:54:39:39:87:eb:98:05:4e:c6:87:
aa:83:de:b3:13:97:b0:a1:20:6f:ac:8e:70:53:5d:
55:b7:59:99:13:5c:e5:c3:20:5a:f9:a5:dd:92:13:
46:bd:30:23:b4:fc:c2:49:dd:40:c1:f9:19:f9:8b:
ab:18:0c:ed:e7:62:3f:65:83:a1:1f:30:14:74:11:
16:24:2c:12:0a:59:c4:18:c3:d7:b3:84:ea:72:b9:
5e:b1:37:c1:6a:af:c7:88:29:31:5a:0d:da:a7:29:
d0:0f:d5:cb:73:ea:54:5d:58:d3:e2:ca:2e:7d:30:
ea:cd:ff:25:50:3d:c1:0d:67:c1:f6:7e:9e:50:8c:
43:0c:b8:54:0e:e0:ec:fd:c2:29:7f:5f:99:b8:d4:
22:77:09:b9:c4:4a:1d:4f:8a:c6:ab:59:46:56:8b:
fa:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:80:F0:5A:F8:67:46:42:8B:E4:E3:F8:FF:B9:F7:17:B3:8F:2F:E9
X509v3 Authority Key Identifier:
keyid:BD:E6:AC:28:F9:54:E1:3D:CB:7D:B6:9B:C2:22:B7:85:B4:D7:5F:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/veasKPlU4T3LfbabwiK3hbTXXyw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/5b4e13-b3dd-4d8a-8e71-cae6c725d92f/1/TIDwWvhnRkKL5OP4_7n3F7OPL-k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/5b4e13-b3dd-4d8a-8e71-cae6c725d92f/1/veasKPlU4T3LfbabwiK3hbTXXyw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2ccc::/48
Signature Algorithm: sha256WithRSAEncryption
0b:26:23:34:9b:cf:d5:f2:e1:4d:3b:e9:d4:fc:6e:68:a2:2d:
39:a5:2b:93:52:28:71:89:b5:9a:ce:e6:1b:20:fa:30:35:1d:
f4:07:bb:0d:7c:d9:36:59:89:63:a7:46:01:26:d7:45:46:b9:
7b:ed:49:00:62:35:1d:7c:c8:94:68:ad:03:70:35:4c:d6:ac:
5b:fe:d0:4a:6a:1f:31:6c:db:c9:76:64:28:45:b6:1f:d7:e5:
49:43:44:31:f1:16:ef:be:86:58:5c:23:53:2f:04:13:7a:9a:
72:bb:d3:08:c7:f7:bc:90:f3:5a:87:a5:a2:27:1f:a7:17:c2:
f7:3b:69:70:86:ae:bb:26:49:d7:67:75:a8:8b:64:0a:84:69:
36:92:d2:ef:91:2e:a0:63:24:a4:a5:8c:cc:25:0f:80:1f:2e:
d3:8c:b8:75:b3:a5:05:16:f1:e3:b2:b9:6a:6f:bd:f8:f5:3e:
c0:71:43:82:c6:0d:7c:a8:e9:ff:18:81:d0:b6:b6:14:e4:16:
8e:44:d4:ca:45:52:cf:e4:ce:cf:e4:b0:14:d1:e3:a8:2a:da:
0c:51:e1:01:9b:d0:8c:ee:89:e6:a1:5d:25:98:f0:69:e2:73:
27:d8:ab:46:1e:03:18:79:81:f5:b7:a0:90:1a:e0:e5:21:24:
3c:d7:b8:c3
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVsU76NcG2P+ttvNBXAWnHcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJkZTZhYzI4Zjk1NGUxM2RjYjdkYjY5YmMyMjJiNzg1YjRk
NzVmMmMwHhcNMjMwMTAxMDc1NTA1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0YzgwZjA1YWY4Njc0NjQyOGJlNGUzZjhmZmI5ZjcxN2IzOGYyZmU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkOf9Odm3AQlC0ekHTphBX0EE25pB
qZCv7qK2bDdKPx/6KnQtAjNv1uNftPD5g5NBSYvyGV1tIqBYNhzoYUKDtqO1R65h
ZPhNOx8dBcJK0GPfChNPZ5EeXAyh3KXPXlQ5OYfrmAVOxoeqg96zE5ewoSBvrI5w
U11Vt1mZE1zlwyBa+aXdkhNGvTAjtPzCSd1AwfkZ+YurGAzt52I/ZYOhHzAUdBEW
JCwSClnEGMPXs4TqcrlesTfBaq/HiCkxWg3apynQD9XLc+pUXVjT4soufTDqzf8l
UD3BDWfB9n6eUIxDDLhUDuDs/cIpf1+ZuNQidwm5xEodT4rGq1lGVov6ZQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFEyA8Fr4Z0ZCi+Tj+P+59xezjy/pMB8GA1UdIwQY
MBaAFL3mrCj5VOE9y322m8Iit4W0118sMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdmVhc0tQbFU0VDNMZmJhYndpSzNoYlRYWHl3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMy81YjRlMTMtYjNkZC00ZDhhLThlNzEt
Y2FlNmM3MjVkOTJmLzEvVElEd1d2aG5Sa0tMNU9QNF83bjNGN09QTC1rLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMy81YjRlMTMtYjNkZC00ZDhhLThlNzEtY2FlNmM3MjVkOTJm
LzEvdmVhc0tQbFU0VDNMZmJhYndpSzNoYlRYWHl3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfCzM
MA0GCSqGSIb3DQEBCwUAA4IBAQALJiM0m8/V8uFNO+nU/G5ooi05pSuTUihxibWa
zuYbIPowNR30B7sNfNk2WYljp0YBJtdFRrl77UkAYjUdfMiUaK0DcDVM1qxb/tBK
ah8xbNvJdmQoRbYf1+VJQ0Qx8RbvvoZYXCNTLwQTeppyu9MIx/e8kPNah6WiJx+n
F8L3O2lwhq67JknXZ3Woi2QKhGk2ktLvkS6gYySkpYzMJQ+AHy7TjLh1s6UFFvHj
srlqb7349T7AcUOCxg18qOn/GIHQtrYU5BaORNTKRVLP5M7P5LAU0eOoKtoMUeEB
m9CM7onmoV0lmPBp4nMn2KtGHgMYeYH1t6CQGuDlISQ817jD
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:25:52 2025 by rpki-client