Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/9264a0-ed7b-4712-a910-c7f698dedd68/1/NlEef4Gj0jRvnAU6NDhqXCJsW3k.roa
File: NlEef4Gj0jRvnAU6NDhqXCJsW3k.roa (raw, json)
Hash identifier: 91Q7lZ83cWnV6YGB3l16Cd6Y+8BUHkEcy/rFQnuVN+4=
Subject key identifier: 36:51:1E:7F:81:A3:D2:34:6F:9C:05:3A:34:38:6A:5C:22:6C:5B:79
Certificate issuer: /CN=4c297f5828aa4e1c8e041e9dbea7abd39b5584d7
Certificate serial: 0185DFF5F8BE7E7D53934F4D6F8433DC4DB4
Authority key identifier: 4C:29:7F:58:28:AA:4E:1C:8E:04:1E:9D:BE:A7:AB:D3:9B:55:84:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TCl_WCiqThyOBB6dvqer05tVhNc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/9264a0-ed7b-4712-a910-c7f698dedd68/1/NlEef4Gj0jRvnAU6NDhqXCJsW3k.roa
Signing time: Mon 23 Jan 2023 18:48:37 +0000
ROA not before: Mon 23 Jan 2023 18:48:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56884
IP address blocks: 2a13:c400::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:df:f5:f8:be:7e:7d:53:93:4f:4d:6f:84:33:dc:4d:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c297f5828aa4e1c8e041e9dbea7abd39b5584d7
Validity
Not Before: Jan 23 18:48:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=36511e7f81a3d2346f9c053a34386a5c226c5b79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:9b:30:bc:5a:79:4c:ac:e0:6a:4f:82:6c:1a:
36:4f:78:d1:68:ae:0e:cd:b1:eb:19:08:01:80:13:
43:cc:5c:ab:db:09:4f:61:6b:bf:57:5f:ef:75:eb:
70:d5:b3:db:b6:a5:50:e8:c6:a1:0e:a4:94:f7:a7:
f2:8f:9f:da:0c:7c:6d:1b:fe:e0:5c:0a:83:23:72:
92:b0:e6:93:f1:80:9f:b6:99:ce:4c:a5:4c:93:ec:
4b:c1:5d:d6:d9:ff:67:ff:d1:f2:e6:b1:9a:bc:b9:
62:75:1e:24:5e:ae:d8:ca:03:0e:49:cb:2d:11:28:
66:71:ac:b8:18:63:48:25:84:87:c3:2e:80:cd:f1:
41:0e:8d:18:49:3e:b4:be:91:77:61:f5:a8:50:af:
6a:c6:b2:12:6e:2d:d5:91:1b:ab:9f:7a:15:8f:a6:
e9:94:c0:4e:b9:30:72:eb:a0:32:16:59:94:2d:0f:
b3:de:f1:6e:e8:3d:5d:83:17:66:2b:18:84:c3:a1:
bc:fc:e1:7b:15:53:7e:c7:e9:12:45:70:28:7f:2d:
a3:61:82:2a:47:c2:f9:a9:25:55:fb:74:2f:55:7d:
f0:33:5f:08:ae:aa:d5:79:5b:59:2b:01:15:9a:ac:
ab:10:8f:2a:0e:62:ee:2a:c1:b3:46:79:5e:e0:a4:
98:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:51:1E:7F:81:A3:D2:34:6F:9C:05:3A:34:38:6A:5C:22:6C:5B:79
X509v3 Authority Key Identifier:
keyid:4C:29:7F:58:28:AA:4E:1C:8E:04:1E:9D:BE:A7:AB:D3:9B:55:84:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TCl_WCiqThyOBB6dvqer05tVhNc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/9264a0-ed7b-4712-a910-c7f698dedd68/1/NlEef4Gj0jRvnAU6NDhqXCJsW3k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/9264a0-ed7b-4712-a910-c7f698dedd68/1/TCl_WCiqThyOBB6dvqer05tVhNc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:c400::/29
Signature Algorithm: sha256WithRSAEncryption
35:9a:d7:ea:39:f1:28:fa:e1:73:5b:f0:a1:46:95:dd:70:eb:
91:8d:96:b7:8f:05:bb:67:96:ce:2e:4d:06:d2:f1:d1:e1:0a:
f9:7c:5c:b1:da:dc:c0:ae:9b:7c:8e:2d:86:d1:43:9d:d9:71:
0c:08:f3:32:22:b5:8f:d9:63:69:39:29:e7:15:66:0d:fe:20:
43:31:c8:97:1a:7d:52:04:27:5d:69:11:76:69:12:78:66:0c:
ca:60:de:b5:f0:25:0d:41:f0:4d:c3:90:1c:ac:9a:9f:0d:e6:
47:e3:07:82:b5:57:4c:ec:2b:1b:36:32:ff:9c:7d:82:84:19:
6c:bb:09:8d:14:ec:46:2e:02:81:86:74:da:d0:de:2c:fb:2f:
97:46:dd:17:14:88:88:10:03:5c:99:94:bb:83:7d:dc:86:61:
0f:e1:cb:15:d1:11:64:4b:51:64:e8:4d:46:81:57:0b:90:9a:
d7:9e:0d:d7:1e:01:05:69:11:6d:c6:46:3d:f4:d4:9d:00:bd:
57:0d:1c:ce:e3:99:7a:cd:c6:aa:08:89:f0:51:79:e4:19:d5:
b0:f2:e0:4f:84:00:b0:23:ff:54:58:6d:7b:d6:b4:56:6d:53:
8d:14:cf:87:95:a0:ce:ae:9f:b7:63:fa:83:d0:6d:4a:70:ea:
e5:dc:5f:be
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYXf9fi+fn1Tk09Nb4Qz3E20MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRjMjk3ZjU4MjhhYTRlMWM4ZTA0MWU5ZGJlYTdhYmQzOWI1
NTg0ZDcwHhcNMjMwMTIzMTg0ODM3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNjUxMWU3ZjgxYTNkMjM0NmY5YzA1M2EzNDM4NmE1YzIyNmM1Yjc5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkZswvFp5TKzgak+CbBo2T3jRaK4O
zbHrGQgBgBNDzFyr2wlPYWu/V1/vdetw1bPbtqVQ6MahDqSU96fyj5/aDHxtG/7g
XAqDI3KSsOaT8YCftpnOTKVMk+xLwV3W2f9n/9Hy5rGavLlidR4kXq7YygMOScst
EShmcay4GGNIJYSHwy6AzfFBDo0YST60vpF3YfWoUK9qxrISbi3VkRurn3oVj6bp
lMBOuTBy66AyFlmULQ+z3vFu6D1dgxdmKxiEw6G8/OF7FVN+x+kSRXAofy2jYYIq
R8L5qSVV+3QvVX3wM18IrqrVeVtZKwEVmqyrEI8qDmLuKsGzRnle4KSYNwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFDZRHn+Bo9I0b5wFOjQ4alwibFt5MB8GA1UdIwQY
MBaAFEwpf1goqk4cjgQenb6nq9ObVYTXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVENsX1dDaXFUaHlPQkI2ZHZxZXIwNXRWaE5jLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy85MjY0YTAtZWQ3Yi00NzEyLWE5MTAt
YzdmNjk4ZGVkZDY4LzEvTmxFZWY0R2owalJ2bkFVNk5EaHFYQ0pzVzNrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNy85MjY0YTAtZWQ3Yi00NzEyLWE5MTAtYzdmNjk4ZGVkZDY4
LzEvVENsX1dDaXFUaHlPQkI2ZHZxZXIwNXRWaE5jLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhPEADAN
BgkqhkiG9w0BAQsFAAOCAQEANZrX6jnxKPrhc1vwoUaV3XDrkY2Wt48Fu2eWzi5N
BtLx0eEK+XxcsdrcwK6bfI4thtFDndlxDAjzMiK1j9ljaTkp5xVmDf4gQzHIlxp9
UgQnXWkRdmkSeGYMymDetfAlDUHwTcOQHKyanw3mR+MHgrVXTOwrGzYy/5x9goQZ
bLsJjRTsRi4CgYZ02tDeLPsvl0bdFxSIiBADXJmUu4N93IZhD+HLFdERZEtRZOhN
RoFXC5Ca154N1x4BBWkRbcZGPfTUnQC9Vw0czuOZes3GqgiJ8FF55BnVsPLgT4QA
sCP/VFhte9a0Vm1TjRTPh5Wgzq6ft2P6g9BtSnDq5dxfvg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:02 2024 by rpki-client on console-ams.rpki-client.org