Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/253e39-8e52-498e-b27e-c8b89e0f300d/1/LyPNAv3cgvSOONW6tnNKDOo6Cn0.roa
File: LyPNAv3cgvSOONW6tnNKDOo6Cn0.roa (raw, json)
Hash identifier: ixyDGnOFkurM8EvJfmm1/rx22Dacv7krxwD7Pq9BXpM=
Subject key identifier: 2F:23:CD:02:FD:DC:82:F4:8E:38:D5:BA:B6:73:4A:0C:EA:3A:0A:7D
Certificate issuer: /CN=0db2de8e0dfcb2d0b25b7506243258b739044098
Certificate serial: 0187DF8846B5FF16F44AB86608B467912E9D
Authority key identifier: 0D:B2:DE:8E:0D:FC:B2:D0:B2:5B:75:06:24:32:58:B7:39:04:40:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DbLejg38stCyW3UGJDJYtzkEQJg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/253e39-8e52-498e-b27e-c8b89e0f300d/1/LyPNAv3cgvSOONW6tnNKDOo6Cn0.roa
Signing time: Wed 03 May 2023 02:54:22 +0000
ROA not before: Wed 03 May 2023 02:54:22 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199257
IP address blocks: 2001:67c:c3c::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:df:88:46:b5:ff:16:f4:4a:b8:66:08:b4:67:91:2e:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0db2de8e0dfcb2d0b25b7506243258b739044098
Validity
Not Before: May 3 02:54:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2f23cd02fddc82f48e38d5bab6734a0cea3a0a7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:53:ab:81:20:e6:49:f4:9e:e1:d9:41:15:42:
97:db:c9:e4:a7:64:35:03:e2:49:3a:f4:f8:13:a9:
78:17:87:3f:ca:f4:91:5a:aa:4c:ca:21:3a:58:83:
77:ae:d1:db:9a:87:8c:96:24:be:c1:a9:12:60:6e:
65:a0:2a:40:8f:eb:23:78:f2:f6:88:ef:e9:1c:d7:
ac:3a:e0:69:66:b2:3d:42:5a:a1:84:91:14:17:81:
ac:5b:ad:a6:30:2b:18:03:c0:9d:e9:2e:1b:6e:25:
da:2f:d1:af:2c:46:c5:55:d1:38:b8:21:a6:30:01:
ab:91:3b:a0:ed:25:7b:01:7f:ae:55:cc:94:15:45:
e5:c2:21:4e:59:39:27:0f:48:72:c8:97:7f:33:14:
ba:f0:aa:eb:76:19:35:53:58:9f:f3:bf:00:9e:52:
83:88:2f:e5:ad:29:50:f3:87:38:67:ef:69:31:62:
61:82:a6:15:15:80:cf:26:b6:1d:49:2d:b6:85:8f:
fd:c1:ca:78:fa:0c:ad:69:a9:f4:c3:03:db:fc:06:
e4:da:02:89:dc:3b:a4:22:4c:e1:ce:7a:be:bf:b8:
87:1a:af:33:52:bc:1d:0d:2f:61:a2:19:4d:8a:77:
ff:f8:29:8d:85:7e:c0:9a:68:13:4b:1b:f8:90:7e:
87:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:23:CD:02:FD:DC:82:F4:8E:38:D5:BA:B6:73:4A:0C:EA:3A:0A:7D
X509v3 Authority Key Identifier:
keyid:0D:B2:DE:8E:0D:FC:B2:D0:B2:5B:75:06:24:32:58:B7:39:04:40:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DbLejg38stCyW3UGJDJYtzkEQJg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/253e39-8e52-498e-b27e-c8b89e0f300d/1/LyPNAv3cgvSOONW6tnNKDOo6Cn0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/253e39-8e52-498e-b27e-c8b89e0f300d/1/DbLejg38stCyW3UGJDJYtzkEQJg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:c3c::/48
Signature Algorithm: sha256WithRSAEncryption
0d:9f:ed:3e:9b:8c:18:30:e7:8a:56:e9:77:82:68:04:b4:13:
34:ae:97:ee:64:d3:8d:ac:e0:03:04:85:99:81:3d:ba:34:bc:
5e:31:93:b6:81:a4:7d:ef:b8:66:f1:76:b6:94:db:e1:0e:4c:
6e:08:15:b6:7e:36:52:ab:7a:1b:47:11:66:28:5e:5d:10:95:
e3:42:08:ca:5a:89:9f:53:db:9b:9c:e3:ee:4d:c3:e6:ff:4e:
29:6b:0e:f6:8a:1e:15:ef:73:2f:8a:01:5c:51:5c:72:a9:67:
ff:63:4f:b3:65:9f:93:4a:d4:6e:c7:9b:ae:6d:96:80:ad:05:
75:0f:c5:33:c6:27:13:cb:bd:b1:dc:d0:61:27:55:1f:dd:72:
24:3d:d7:a3:46:49:99:2d:ab:4e:11:55:28:4e:df:0f:1b:a0:
64:2c:e6:cd:a3:26:13:00:4f:e1:a4:56:6a:f2:8a:d8:f9:c8:
7f:59:fc:5a:38:63:a6:00:e6:fd:ed:23:39:dd:9e:82:5f:6f:
b4:9b:95:ac:17:4c:88:14:60:70:14:2a:68:cd:a9:9c:eb:77:
34:85:b0:e5:2e:a9:5e:35:d1:db:47:44:2e:2c:af:ee:f4:df:
1c:27:2b:44:21:b9:3e:8e:03:19:6d:f8:0c:dc:58:23:e4:4e:
65:b5:ad:f6
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYffiEa1/xb0SrhmCLRnkS6dMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBkYjJkZThlMGRmY2IyZDBiMjViNzUwNjI0MzI1OGI3Mzkw
NDQwOTgwHhcNMjMwNTAzMDI1NDIyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZjIzY2QwMmZkZGM4MmY0OGUzOGQ1YmFiNjczNGEwY2VhM2EwYTdkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk1OrgSDmSfSe4dlBFUKX28nkp2Q1
A+JJOvT4E6l4F4c/yvSRWqpMyiE6WIN3rtHbmoeMliS+wakSYG5loCpAj+sjePL2
iO/pHNesOuBpZrI9QlqhhJEUF4GsW62mMCsYA8Cd6S4bbiXaL9GvLEbFVdE4uCGm
MAGrkTug7SV7AX+uVcyUFUXlwiFOWTknD0hyyJd/MxS68Krrdhk1U1if878AnlKD
iC/lrSlQ84c4Z+9pMWJhgqYVFYDPJrYdSS22hY/9wcp4+gytaan0wwPb/Abk2gKJ
3DukIkzhznq+v7iHGq8zUrwdDS9hohlNinf/+CmNhX7AmmgTSxv4kH6HWwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFC8jzQL93IL0jjjVurZzSgzqOgp9MB8GA1UdIwQY
MBaAFA2y3o4N/LLQslt1BiQyWLc5BECYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRGJMZWpnMzhzdEN5VzNVR0pESll0emtFUUpnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYS8yNTNlMzktOGU1Mi00OThlLWIyN2Ut
YzhiODllMGYzMDBkLzEvTHlQTkF2M2NndlNPT05XNnRuTktET282Q24wLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYS8yNTNlMzktOGU1Mi00OThlLWIyN2UtYzhiODllMGYzMDBk
LzEvRGJMZWpnMzhzdEN5VzNVR0pESll0emtFUUpnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfAw8
MA0GCSqGSIb3DQEBCwUAA4IBAQANn+0+m4wYMOeKVul3gmgEtBM0rpfuZNONrOAD
BIWZgT26NLxeMZO2gaR977hm8Xa2lNvhDkxuCBW2fjZSq3obRxFmKF5dEJXjQgjK
WomfU9ubnOPuTcPm/04paw72ih4V73MvigFcUVxyqWf/Y0+zZZ+TStRux5uubZaA
rQV1D8UzxicTy72x3NBhJ1Uf3XIkPdejRkmZLatOEVUoTt8PG6BkLObNoyYTAE/h
pFZq8orY+ch/WfxaOGOmAOb97SM53Z6CX2+0m5WsF0yIFGBwFCpozamc63c0hbDl
LqleNdHbR0QuLK/u9N8cJytEIbk+jgMZbfgM3Fgj5E5lta32
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:18 2024 by rpki-client on console-fra.rpki-client.org