Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/aa4f40-d4a2-4a40-bac4-46610094ef9c/1/D_9xu_eteA6VQ0tDlpkhQ8PmhQQ.roa
File: D_9xu_eteA6VQ0tDlpkhQ8PmhQQ.roa (raw, json)
Hash identifier: fyGqWjGmbUmvEIhfUMh0usaJtGCkShS+ReVgobG0EQo=
Subject key identifier: 0F:FF:71:BB:F7:AD:78:0E:95:43:4B:43:96:99:21:43:C3:E6:85:04
Certificate issuer: /CN=8e5c18bfb9a5395dceab8cdd58bf1a6b993b1bd0
Certificate serial: 01856F5487F4C6403CCEBD60305556C8AD06
Authority key identifier: 8E:5C:18:BF:B9:A5:39:5D:CE:AB:8C:DD:58:BF:1A:6B:99:3B:1B:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jlwYv7mlOV3Oq4zdWL8aa5k7G9A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/aa4f40-d4a2-4a40-bac4-46610094ef9c/1/D_9xu_eteA6VQ0tDlpkhQ8PmhQQ.roa
Signing time: Sun 01 Jan 2023 21:54:48 +0000
ROA not before: Sun 01 Jan 2023 21:54:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43624
IP address blocks: 2a11:1940::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:54:87:f4:c6:40:3c:ce:bd:60:30:55:56:c8:ad:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e5c18bfb9a5395dceab8cdd58bf1a6b993b1bd0
Validity
Not Before: Jan 1 21:54:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0fff71bbf7ad780e95434b4396992143c3e68504
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:29:1f:4e:08:65:39:4e:96:26:31:ef:41:bd:
a7:e2:30:b4:d7:65:cb:6c:a6:5b:14:4d:69:12:96:
a1:e1:77:99:f2:39:4f:f8:80:f7:ed:9f:54:56:f5:
e2:d1:67:ea:2d:66:d1:be:6d:07:cd:2c:12:c5:4e:
23:67:44:86:78:fd:c0:f9:99:0b:45:f1:07:d1:f3:
10:d8:b1:50:59:b9:14:10:07:cf:fc:bb:e1:8b:63:
96:b5:20:b9:3d:46:48:29:3a:ea:d4:df:00:72:77:
b5:3f:71:49:d9:56:99:ea:b1:e5:96:f5:c1:80:70:
6a:e0:98:b4:d3:5e:12:b1:01:5f:05:b5:81:92:4f:
e2:9e:7f:cd:ae:01:8c:ce:41:ee:4e:83:fc:5b:65:
ee:53:45:d4:3d:40:65:12:93:94:f1:5d:c7:80:9f:
af:a4:7c:fd:8d:86:ab:9b:58:5f:18:3d:bb:82:b8:
3a:89:66:7d:90:1e:65:29:34:aa:41:87:df:e1:de:
0d:b0:8b:eb:e2:f3:66:f2:aa:d3:9a:d5:8e:4e:7c:
06:74:32:d2:a1:d5:1b:8c:20:2a:b6:9c:20:e9:4c:
36:99:b1:36:f2:54:7d:d9:ed:7b:6b:6e:d1:4c:16:
0d:2a:fc:e0:2e:d2:09:c8:4a:40:a0:02:68:14:97:
68:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:FF:71:BB:F7:AD:78:0E:95:43:4B:43:96:99:21:43:C3:E6:85:04
X509v3 Authority Key Identifier:
keyid:8E:5C:18:BF:B9:A5:39:5D:CE:AB:8C:DD:58:BF:1A:6B:99:3B:1B:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jlwYv7mlOV3Oq4zdWL8aa5k7G9A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/aa4f40-d4a2-4a40-bac4-46610094ef9c/1/D_9xu_eteA6VQ0tDlpkhQ8PmhQQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/aa4f40-d4a2-4a40-bac4-46610094ef9c/1/jlwYv7mlOV3Oq4zdWL8aa5k7G9A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:1940::/29
Signature Algorithm: sha256WithRSAEncryption
39:ae:92:27:90:4a:f7:ec:78:ae:06:50:34:cf:b0:16:30:8e:
97:fc:b6:d0:01:35:04:8e:f1:ac:68:11:31:96:2a:66:88:dc:
1e:c1:8d:72:23:7f:62:bf:2c:c8:1b:cf:f3:72:f8:19:1c:29:
03:45:c0:84:de:2e:bc:5b:f0:3b:26:40:e9:e5:60:3f:e2:09:
a2:8e:1a:7c:be:f5:09:80:f9:bd:a9:d0:89:99:b9:da:db:16:
eb:11:73:48:0e:9d:e3:2e:16:e5:9a:32:34:75:29:10:84:d5:
4e:f4:96:37:35:29:b0:59:2b:55:ef:7b:99:f9:9f:9a:9f:89:
11:9a:4e:28:e8:98:c1:bc:6d:03:23:a7:0e:d5:92:b2:ab:43:
24:c6:4b:a8:e3:22:1e:4f:65:ee:96:2c:51:40:04:5c:1b:89:
97:22:24:02:d9:33:f2:64:03:ca:b2:0b:d4:82:54:e0:25:ce:
dd:58:7c:b9:b8:c9:14:68:0a:8d:fe:8c:5b:b5:b4:1f:0a:f8:
8b:e3:83:b7:3f:30:95:53:26:fb:f3:11:e3:d6:83:ac:58:db:
7b:72:2a:96:38:d4:45:05:12:f5:26:3d:42:70:61:f5:89:c0:
ff:e7:c6:44:c9:34:6b:92:b8:22:8a:a4:21:d8:22:a2:d7:c3:
f5:88:06:73
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYVvVIf0xkA8zr1gMFVWyK0GMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhlNWMxOGJmYjlhNTM5NWRjZWFiOGNkZDU4YmYxYTZiOTkz
YjFiZDAwHhcNMjMwMTAxMjE1NDQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZmZmNzFiYmY3YWQ3ODBlOTU0MzRiNDM5Njk5MjE0M2MzZTY4NTA0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlCkfTghlOU6WJjHvQb2n4jC012XL
bKZbFE1pEpah4XeZ8jlP+ID37Z9UVvXi0WfqLWbRvm0HzSwSxU4jZ0SGeP3A+ZkL
RfEH0fMQ2LFQWbkUEAfP/Lvhi2OWtSC5PUZIKTrq1N8Acne1P3FJ2VaZ6rHllvXB
gHBq4Ji0014SsQFfBbWBkk/inn/NrgGMzkHuToP8W2XuU0XUPUBlEpOU8V3HgJ+v
pHz9jYarm1hfGD27grg6iWZ9kB5lKTSqQYff4d4NsIvr4vNm8qrTmtWOTnwGdDLS
odUbjCAqtpwg6Uw2mbE28lR92e17a27RTBYNKvzgLtIJyEpAoAJoFJdorQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFA//cbv3rXgOlUNLQ5aZIUPD5oUEMB8GA1UdIwQY
MBaAFI5cGL+5pTldzquM3Vi/GmuZOxvQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvamx3WXY3bWxPVjNPcTR6ZFdMOGFhNWs3RzlBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi9hYTRmNDAtZDRhMi00YTQwLWJhYzQt
NDY2MTAwOTRlZjljLzEvRF85eHVfZXRlQTZWUTB0RGxwa2hROFBtaFFRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMi9hYTRmNDAtZDRhMi00YTQwLWJhYzQtNDY2MTAwOTRlZjlj
LzEvamx3WXY3bWxPVjNPcTR6ZFdMOGFhNWs3RzlBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhEZQDAN
BgkqhkiG9w0BAQsFAAOCAQEAOa6SJ5BK9+x4rgZQNM+wFjCOl/y20AE1BI7xrGgR
MZYqZojcHsGNciN/Yr8syBvP83L4GRwpA0XAhN4uvFvwOyZA6eVgP+IJoo4afL71
CYD5vanQiZm52tsW6xFzSA6d4y4W5ZoyNHUpEITVTvSWNzUpsFkrVe97mfmfmp+J
EZpOKOiYwbxtAyOnDtWSsqtDJMZLqOMiHk9l7pYsUUAEXBuJlyIkAtkz8mQDyrIL
1IJU4CXO3Vh8ubjJFGgKjf6MW7W0Hwr4i+ODtz8wlVMm+/MR49aDrFjbe3IqljjU
RQUS9SY9QnBh9YnA/+fGRMk0a5K4IoqkIdgiotfD9YgGcw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:20 2024 by rpki-client on console-ams.rpki-client.org