Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/BXIsNupOQ1hEiAaKOtdIwVQMhy0.roa
File: BXIsNupOQ1hEiAaKOtdIwVQMhy0.roa (raw, json)
Hash identifier: 6qqeD6HdrTPevTwaK5c7qUkOeiC/N/5c48ZiAzDm9Tk=
Subject key identifier: 05:72:2C:36:EA:4E:43:58:44:88:06:8A:3A:D7:48:C1:54:0C:87:2D
Certificate issuer: /CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Certificate serial: 0192E2D632C6AF5A94E127675AE18F684BAD
Authority key identifier: 75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/BXIsNupOQ1hEiAaKOtdIwVQMhy0.roa
Signing time: Thu 31 Oct 2024 13:49:01 +0000
ROA not before: Thu 31 Oct 2024 13:49:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34665
IP address blocks: 2a11:4b41::/32 maxlen: 32
2a12:a340::/32 maxlen: 32
2a12:c304::/30 maxlen: 30
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:e2:d6:32:c6:af:5a:94:e1:27:67:5a:e1:8f:68:4b:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Validity
Not Before: Oct 31 13:49:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=05722c36ea4e43584488068a3ad748c1540c872d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:bf:93:54:08:8a:0d:ef:2f:7c:3d:01:d2:8a:
fd:4a:b4:80:2b:4d:b6:de:ec:55:bb:97:72:78:7a:
a0:d5:e0:b7:05:e2:f0:19:47:ba:5c:5c:31:a7:e7:
b1:22:dd:3b:cf:9f:1f:6c:f0:df:c5:4a:bb:de:0d:
1f:6f:86:9b:bc:50:bf:74:72:ec:05:5f:04:a9:d6:
9b:40:eb:76:03:74:c2:02:0f:4c:40:9f:a9:1f:bf:
e5:95:25:6d:53:93:eb:d9:29:41:7a:e7:ae:50:c4:
c9:fb:95:70:ab:2e:ff:f8:45:b3:59:be:bf:54:c8:
61:e8:96:df:dc:8c:e2:42:6c:c2:b3:90:75:dc:a0:
8e:61:33:68:6c:fb:de:f3:41:75:e0:03:38:87:e9:
84:c6:b2:98:bc:cc:02:f6:87:21:17:29:79:ba:01:
c2:fe:90:1d:88:80:3e:e1:16:6c:72:44:c1:89:d9:
8a:30:a2:39:7d:f6:03:35:9b:a7:6f:60:2c:2a:8e:
a3:56:02:10:ec:ad:45:3d:03:88:36:26:d8:35:9c:
3e:63:d9:0f:c4:09:cc:4b:b5:0d:10:3d:35:43:f7:
90:d1:6a:52:a3:d5:65:97:56:15:14:a1:e7:e3:26:
a8:d7:8b:56:6b:cd:5d:ca:08:a6:48:ab:87:ab:cf:
74:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:72:2C:36:EA:4E:43:58:44:88:06:8A:3A:D7:48:C1:54:0C:87:2D
X509v3 Authority Key Identifier:
keyid:75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/BXIsNupOQ1hEiAaKOtdIwVQMhy0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:4b41::/32
2a12:a340::/32
2a12:c304::/30
Signature Algorithm: sha256WithRSAEncryption
ac:24:82:13:3b:7b:f3:72:c2:8b:f7:e4:5d:5e:ba:f9:ee:07:
bc:ef:a9:73:18:d9:99:1f:1f:65:c5:7f:c5:66:0d:1c:bb:ca:
c9:74:5d:b1:e4:b8:bb:4c:69:c4:76:7d:ea:04:42:6f:2b:9f:
24:26:ef:5a:0e:be:75:9c:c4:52:dd:ca:4a:a5:0e:b1:41:ce:
ef:08:22:3c:a9:b7:5d:7b:e0:a4:9b:25:81:d9:bf:8f:14:15:
62:51:a1:1f:7e:2f:cd:57:06:a6:88:6a:cd:9e:3f:f7:b7:91:
34:eb:48:31:1c:5b:20:9e:35:59:60:f0:7a:f4:4b:e0:b9:1e:
49:3a:0f:7a:84:3b:89:6e:49:1c:7a:d4:d0:83:7a:e3:35:b4:
4e:15:f8:07:3a:f0:2e:66:84:8a:dd:bf:f3:03:16:fa:c8:36:
9e:71:25:bc:5c:99:79:92:f0:c0:ec:84:17:c7:b4:93:9b:ee:
1a:19:e1:5c:8a:d8:9a:88:ee:b3:d5:5d:e4:4f:d7:2c:05:03:
af:4c:c2:e2:d9:ad:d3:32:a4:55:39:65:61:1a:44:f0:38:7c:
69:72:65:d9:95:05:43:49:df:e1:ac:70:f4:cd:90:7c:96:75:
b3:1f:a1:0a:6e:5d:ad:34:03:2c:26:5e:d9:73:96:88:85:a2:
a6:23:4f:ba
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAZLi1jLGr1qU4SdnWuGPaEutMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc1MDg0NzVmZjBkOGVjOTYwMzM2MDE2ZTBlMDQyMjFhOThl
NWVjZjIwHhcNMjQxMDMxMTM0OTAxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNTcyMmMzNmVhNGU0MzU4NDQ4ODA2OGEzYWQ3NDhjMTU0MGM4NzJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6r+TVAiKDe8vfD0B0or9SrSAK022
3uxVu5dyeHqg1eC3BeLwGUe6XFwxp+exIt07z58fbPDfxUq73g0fb4abvFC/dHLs
BV8EqdabQOt2A3TCAg9MQJ+pH7/llSVtU5Pr2SlBeueuUMTJ+5Vwqy7/+EWzWb6/
VMhh6Jbf3IziQmzCs5B13KCOYTNobPve80F14AM4h+mExrKYvMwC9ochFyl5ugHC
/pAdiIA+4RZsckTBidmKMKI5ffYDNZunb2AsKo6jVgIQ7K1FPQOINibYNZw+Y9kP
xAnMS7UNED01Q/eQ0WpSo9Vll1YVFKHn4yao14tWa81dygimSKuHq890rwIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFAVyLDbqTkNYRIgGijrXSMFUDIctMB8GA1UdIwQY
MBaAFHUIR1/w2OyWAzYBbg4EIhqY5ezyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZFFoSFhfRFk3SllETmdGdURnUWlHcGpsN1BJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS8xZmE2YTMtOGRjNS00YzM1LWE0OWIt
MTcxYzM2N2JlNzgyLzEvQlhJc051cE9RMWhFaUFhS090ZEl3VlFNaHkwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZS8xZmE2YTMtOGRjNS00YzM1LWE0OWItMTcxYzM2N2JlNzgy
LzEvZFFoSFhfRFk3SllETmdGdURnUWlHcGpsN1BJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAbBAIAAjAVAwUAKhFLQQMF
ACoSo0ADBQIqEsMEMA0GCSqGSIb3DQEBCwUAA4IBAQCsJIITO3vzcsKL9+RdXrr5
7ge876lzGNmZHx9lxX/FZg0cu8rJdF2x5Li7TGnEdn3qBEJvK58kJu9aDr51nMRS
3cpKpQ6xQc7vCCI8qbdde+CkmyWB2b+PFBViUaEffi/NVwamiGrNnj/3t5E060gx
HFsgnjVZYPB69EvguR5JOg96hDuJbkkcetTQg3rjNbROFfgHOvAuZoSK3b/zAxb6
yDaecSW8XJl5kvDA7IQXx7STm+4aGeFcitiaiO6z1V3kT9csBQOvTMLi2a3TMqRV
OWVhGkTwOHxpcmXZlQVDSd/hrHD0zZB8lnWzH6EKbl2tNAMsJl7Zc5aIhaKmI0+6
-----END CERTIFICATE-----
Generated at Sat Apr 5 21:22:29 2025 by rpki-client