Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/28c2b7-667e-4def-b415-7b4adeb7a4b5/1/_Yv7o-Q7OcKgmEuDk9LBkKDVWtI.roa
File: _Yv7o-Q7OcKgmEuDk9LBkKDVWtI.roa (raw, json)
Hash identifier: tPcRMxP497hipBH3AmpwmlmYw1cQ85jaaZ6eVVkiqBk=
Subject key identifier: FD:8B:FB:A3:E4:3B:39:C2:A0:98:4B:83:93:D2:C1:90:A0:D5:5A:D2
Certificate issuer: /CN=bd3bcb8628bdbeadb194a235ac4b8c8b711e37d1
Certificate serial: 01856C53B8CF8F68B788690F61B99C996062
Authority key identifier: BD:3B:CB:86:28:BD:BE:AD:B1:94:A2:35:AC:4B:8C:8B:71:1E:37:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vTvLhii9vq2xlKI1rEuMi3EeN9E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/28c2b7-667e-4def-b415-7b4adeb7a4b5/1/_Yv7o-Q7OcKgmEuDk9LBkKDVWtI.roa
Signing time: Sun 01 Jan 2023 07:55:04 +0000
ROA not before: Sun 01 Jan 2023 07:55:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62309
IP address blocks: 2001:67c:af0::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:53:b8:cf:8f:68:b7:88:69:0f:61:b9:9c:99:60:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd3bcb8628bdbeadb194a235ac4b8c8b711e37d1
Validity
Not Before: Jan 1 07:55:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fd8bfba3e43b39c2a0984b8393d2c190a0d55ad2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:bb:e7:dc:17:7f:5d:73:1b:86:a7:14:dc:34:
1b:72:69:81:b8:24:c9:7c:61:5d:87:6a:c9:a3:6e:
59:ee:34:ab:e5:40:c2:ae:5c:90:df:16:9b:97:be:
5f:95:09:0f:5e:f3:9a:94:ff:74:3a:66:56:30:e6:
dc:a5:02:6d:a2:c2:60:03:85:c1:11:89:57:ab:a0:
30:dc:15:10:ce:0b:1d:04:f9:83:78:7c:22:ec:a9:
53:af:cb:73:10:51:4e:9d:14:0e:40:ad:d3:3d:4f:
c5:5d:f2:69:ce:9b:d1:ab:88:10:13:49:38:61:12:
3b:61:86:39:ca:28:ad:db:6f:67:95:3d:5e:64:7b:
15:e1:97:e2:a6:bd:87:92:2b:fd:fa:b6:05:71:99:
0b:62:39:e2:a2:0c:ea:a1:41:e7:9d:09:14:76:fe:
bf:53:66:ea:90:00:23:ee:30:8f:d5:12:6a:8f:c2:
dd:58:fe:8c:f0:15:07:95:cd:c3:df:92:79:54:56:
32:89:c0:14:1f:d8:d1:39:35:d6:20:b8:4a:44:2c:
7a:b3:8b:c6:b6:f4:41:d6:fc:d2:a2:50:af:53:f9:
16:87:f8:b3:fc:d7:6f:6f:ab:91:c7:1e:13:66:22:
25:ed:f5:b1:1f:2f:05:a6:5a:50:02:32:40:fc:c4:
d4:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:8B:FB:A3:E4:3B:39:C2:A0:98:4B:83:93:D2:C1:90:A0:D5:5A:D2
X509v3 Authority Key Identifier:
keyid:BD:3B:CB:86:28:BD:BE:AD:B1:94:A2:35:AC:4B:8C:8B:71:1E:37:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vTvLhii9vq2xlKI1rEuMi3EeN9E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/28c2b7-667e-4def-b415-7b4adeb7a4b5/1/_Yv7o-Q7OcKgmEuDk9LBkKDVWtI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/28c2b7-667e-4def-b415-7b4adeb7a4b5/1/vTvLhii9vq2xlKI1rEuMi3EeN9E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:af0::/48
Signature Algorithm: sha256WithRSAEncryption
28:c7:20:9e:ab:d2:f9:ae:51:b1:4d:d9:44:d1:8b:54:2e:64:
ce:84:27:b3:83:f2:ef:d4:d6:5d:e3:ea:c1:ec:df:42:ab:8b:
cb:4b:f7:53:2c:b8:b2:da:9f:b1:01:07:c0:db:21:fa:f1:31:
8f:17:61:df:dc:2e:78:6e:3d:6e:13:98:9d:1d:7e:7d:0c:ce:
71:e2:d3:2e:84:e6:1c:a3:7b:0f:5b:26:b6:f0:7f:7f:61:55:
45:12:64:18:b1:99:12:5e:9f:b5:be:e2:65:30:c6:85:81:05:
bf:fc:82:f1:37:4e:44:0d:3f:e9:00:b3:c7:18:cc:d7:91:64:
b0:a9:3a:c8:c7:87:0f:4e:eb:45:19:80:5d:a2:03:6b:0a:7d:
5f:8c:59:c1:a3:45:5c:e2:95:b1:6d:e3:51:42:8b:b3:86:03:
86:12:be:c5:e6:cd:12:b9:0e:d6:64:d1:f0:54:4a:a9:b0:2b:
6d:c9:e2:c2:df:98:65:8f:09:87:63:da:99:3c:01:c7:f6:64:
ac:61:8b:d0:09:17:b5:7c:cd:48:84:a8:2d:41:d5:27:a1:a4:
dc:82:64:a4:c8:97:45:a3:32:65:8f:8d:14:53:35:52:15:27:
1a:79:b3:d8:9e:af:8a:9e:8d:f2:5e:fe:52:f8:49:49:74:aa:
db:82:a5:74
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVsU7jPj2i3iGkPYbmcmWBiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJkM2JjYjg2MjhiZGJlYWRiMTk0YTIzNWFjNGI4YzhiNzEx
ZTM3ZDEwHhcNMjMwMTAxMDc1NTA0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZDhiZmJhM2U0M2IzOWMyYTA5ODRiODM5M2QyYzE5MGEwZDU1YWQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk7vn3Bd/XXMbhqcU3DQbcmmBuCTJ
fGFdh2rJo25Z7jSr5UDCrlyQ3xabl75flQkPXvOalP90OmZWMObcpQJtosJgA4XB
EYlXq6Aw3BUQzgsdBPmDeHwi7KlTr8tzEFFOnRQOQK3TPU/FXfJpzpvRq4gQE0k4
YRI7YYY5yiit229nlT1eZHsV4Zfipr2Hkiv9+rYFcZkLYjniogzqoUHnnQkUdv6/
U2bqkAAj7jCP1RJqj8LdWP6M8BUHlc3D35J5VFYyicAUH9jROTXWILhKRCx6s4vG
tvRB1vzSolCvU/kWh/iz/Ndvb6uRxx4TZiIl7fWxHy8FplpQAjJA/MTUhwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFP2L+6PkOznCoJhLg5PSwZCg1VrSMB8GA1UdIwQY
MBaAFL07y4Yovb6tsZSiNaxLjItxHjfRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdlR2TGhpaTl2cTJ4bEtJMXJFdU1pM0VlTjlFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOC8yOGMyYjctNjY3ZS00ZGVmLWI0MTUt
N2I0YWRlYjdhNGI1LzEvX1l2N28tUTdPY0tnbUV1RGs5TEJrS0RWV3RJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lOC8yOGMyYjctNjY3ZS00ZGVmLWI0MTUtN2I0YWRlYjdhNGI1
LzEvdlR2TGhpaTl2cTJ4bEtJMXJFdU1pM0VlTjlFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfArw
MA0GCSqGSIb3DQEBCwUAA4IBAQAoxyCeq9L5rlGxTdlE0YtULmTOhCezg/Lv1NZd
4+rB7N9Cq4vLS/dTLLiy2p+xAQfA2yH68TGPF2Hf3C54bj1uE5idHX59DM5x4tMu
hOYco3sPWya28H9/YVVFEmQYsZkSXp+1vuJlMMaFgQW//ILxN05EDT/pALPHGMzX
kWSwqTrIx4cPTutFGYBdogNrCn1fjFnBo0Vc4pWxbeNRQouzhgOGEr7F5s0SuQ7W
ZNHwVEqpsCttyeLC35hljwmHY9qZPAHH9mSsYYvQCRe1fM1IhKgtQdUnoaTcgmSk
yJdFozJlj40UUzVSFScaebPYnq+Kno3yXv5S+ElJdKrbgqV0
-----END CERTIFICATE-----
Generated at Thu Feb 20 02:44:51 2025 by rpki-client