Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/11b7b9-1fa6-4c51-a075-85572d652a7b/1/gQZPZ-kKcuh9YrjPrvmmZHlpafY.roa
File: gQZPZ-kKcuh9YrjPrvmmZHlpafY.roa (raw, json)
Hash identifier: RSg9jQZBgIBJGpoTkMZbUg9s3/Tku9v8fbPw1I5QgQc=
Subject key identifier: 81:06:4F:67:E9:0A:72:E8:7D:62:B8:CF:AE:F9:A6:64:79:69:69:F6
Certificate issuer: /CN=45afe0d73419f8aade65d2c7115c01420472ba5c
Certificate serial: 018CC79345423104DF2AF6EDEC3133D485C1
Authority key identifier: 45:AF:E0:D7:34:19:F8:AA:DE:65:D2:C7:11:5C:01:42:04:72:BA:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ra_g1zQZ-KreZdLHEVwBQgRyulw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/11b7b9-1fa6-4c51-a075-85572d652a7b/1/gQZPZ-kKcuh9YrjPrvmmZHlpafY.roa
Signing time: Tue 02 Jan 2024 00:29:26 +0000
ROA not before: Tue 02 Jan 2024 00:29:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 22773
IP address blocks: 2a12:be80::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:93:45:42:31:04:df:2a:f6:ed:ec:31:33:d4:85:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=45afe0d73419f8aade65d2c7115c01420472ba5c
Validity
Not Before: Jan 2 00:29:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=81064f67e90a72e87d62b8cfaef9a664796969f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:2d:25:71:47:55:0f:46:74:2f:d7:6a:eb:3e:
28:c6:ae:6d:a6:84:87:f7:d7:da:b1:1d:f1:1d:50:
15:64:38:d2:bc:52:6a:09:e2:68:2b:23:cd:53:c9:
cf:54:59:45:d0:6c:7f:1c:50:24:d3:c9:49:c6:4c:
7e:58:0e:54:44:2b:da:db:1e:14:8e:fb:8f:e8:1d:
8b:be:c2:ce:bb:03:c1:e4:99:a8:d5:af:a2:60:36:
01:29:6f:b1:cc:4a:b8:90:50:c6:f6:61:cb:09:49:
5f:99:47:c5:eb:dd:75:00:dd:42:eb:83:23:4c:c3:
fd:dc:50:7c:38:b8:91:15:4d:e1:10:91:8f:fd:f7:
96:fb:42:46:95:f8:2f:9a:0e:1f:d0:b5:eb:2f:ca:
01:66:22:db:87:f7:83:9c:c4:37:c1:00:2f:1c:fc:
91:4c:b2:6b:0f:17:94:8f:0a:e7:76:ec:d6:a7:7e:
ab:ba:9f:2b:3c:b7:51:f7:75:c6:dc:9d:f1:a7:84:
ea:b1:14:0b:b1:4e:d0:c6:ad:3d:72:f3:8c:d4:fd:
f3:ed:73:ab:3b:9b:5c:82:5a:b5:93:8c:cc:19:55:
85:65:7a:8e:99:d4:2b:03:bb:d9:46:2c:83:f7:cc:
53:fc:bc:7b:5a:4d:08:12:b1:3a:ac:87:80:d9:b0:
c0:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:06:4F:67:E9:0A:72:E8:7D:62:B8:CF:AE:F9:A6:64:79:69:69:F6
X509v3 Authority Key Identifier:
keyid:45:AF:E0:D7:34:19:F8:AA:DE:65:D2:C7:11:5C:01:42:04:72:BA:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ra_g1zQZ-KreZdLHEVwBQgRyulw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/11b7b9-1fa6-4c51-a075-85572d652a7b/1/gQZPZ-kKcuh9YrjPrvmmZHlpafY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/11b7b9-1fa6-4c51-a075-85572d652a7b/1/Ra_g1zQZ-KreZdLHEVwBQgRyulw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:be80::/29
Signature Algorithm: sha256WithRSAEncryption
90:b1:d5:cb:9a:d5:53:56:0a:28:67:13:bb:17:aa:f1:85:0f:
05:54:bd:96:7f:7a:d1:8a:6f:d4:31:14:04:5b:14:21:8d:bc:
af:0a:12:86:c4:26:a0:19:1e:c9:b8:a1:be:db:7d:47:d7:5e:
85:32:f7:6a:72:86:d0:f1:db:98:80:57:12:7c:8a:42:5d:5b:
48:38:67:ee:66:d3:61:e9:83:e9:e8:75:3b:b7:b4:46:ef:a4:
40:f5:74:ac:c1:35:ff:cc:1c:77:b8:b3:0f:ff:cc:3f:d0:74:
b2:2f:45:2b:91:ef:fa:42:ef:d2:05:dc:14:90:29:43:20:92:
55:52:e5:ef:a2:58:cd:18:11:11:55:cb:27:c2:40:ad:22:2b:
29:87:89:08:18:de:6e:85:01:16:c0:7d:5c:41:8b:b2:75:b3:
44:2b:e6:f4:84:c8:d6:ef:f6:66:49:c3:45:41:8a:8f:63:16:
e6:28:96:e1:fa:af:a3:a4:ba:07:89:77:f5:e2:08:09:65:45:
24:ac:87:00:2c:39:bf:47:19:0e:54:7a:36:d6:70:86:2a:d5:
9d:9b:8a:e1:b7:18:06:cf:8e:84:37:98:31:49:23:df:26:69:
be:e5:23:94:26:3c:85:7c:52:73:15:b9:69:fb:dd:c5:78:08:
3f:b7:aa:b8
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYzHk0VCMQTfKvbt7DEz1IXBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ1YWZlMGQ3MzQxOWY4YWFkZTY1ZDJjNzExNWMwMTQyMDQ3
MmJhNWMwHhcNMjQwMTAyMDAyOTI2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MTA2NGY2N2U5MGE3MmU4N2Q2MmI4Y2ZhZWY5YTY2NDc5Njk2OWY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlS0lcUdVD0Z0L9dq6z4oxq5tpoSH
99fasR3xHVAVZDjSvFJqCeJoKyPNU8nPVFlF0Gx/HFAk08lJxkx+WA5URCva2x4U
jvuP6B2LvsLOuwPB5Jmo1a+iYDYBKW+xzEq4kFDG9mHLCUlfmUfF6911AN1C64Mj
TMP93FB8OLiRFU3hEJGP/feW+0JGlfgvmg4f0LXrL8oBZiLbh/eDnMQ3wQAvHPyR
TLJrDxeUjwrnduzWp36rup8rPLdR93XG3J3xp4TqsRQLsU7Qxq09cvOM1P3z7XOr
O5tcglq1k4zMGVWFZXqOmdQrA7vZRiyD98xT/Lx7Wk0IErE6rIeA2bDAZQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFIEGT2fpCnLofWK4z675pmR5aWn2MB8GA1UdIwQY
MBaAFEWv4Nc0Gfiq3mXSxxFcAUIEcrpcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUmFfZzF6UVotS3JlWmRMSEVWd0JRZ1J5dWx3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8xMWI3YjktMWZhNi00YzUxLWEwNzUt
ODU1NzJkNjUyYTdiLzEvZ1FaUFota0tjdWg5WXJqUHJ2bW1aSGxwYWZZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZC8xMWI3YjktMWZhNi00YzUxLWEwNzUtODU1NzJkNjUyYTdi
LzEvUmFfZzF6UVotS3JlWmRMSEVWd0JRZ1J5dWx3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhK+gDAN
BgkqhkiG9w0BAQsFAAOCAQEAkLHVy5rVU1YKKGcTuxeq8YUPBVS9ln960Ypv1DEU
BFsUIY28rwoShsQmoBkeybihvtt9R9dehTL3anKG0PHbmIBXEnyKQl1bSDhn7mbT
YemD6eh1O7e0Ru+kQPV0rME1/8wcd7izD//MP9B0si9FK5Hv+kLv0gXcFJApQyCS
VVLl76JYzRgREVXLJ8JArSIrKYeJCBjeboUBFsB9XEGLsnWzRCvm9ITI1u/2ZknD
RUGKj2MW5iiW4fqvo6S6B4l39eIICWVFJKyHACw5v0cZDlR6NtZwhirVnZuK4bcY
Bs+OhDeYMUkj3yZpvuUjlCY8hXxScxW5afvdxXgIP7equA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:42 2024 by rpki-client on console-fra.rpki-client.org