Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/efc26d-a835-469c-8a14-bc43b309e2c6/1/HnOQVTp8XO9LQpWwy1SgzzFu5gM.roa
File: HnOQVTp8XO9LQpWwy1SgzzFu5gM.roa (raw, json)
Hash identifier: 4PCbNP+oJYxsJOmZ1KEbY2fQGNzc2ZH2QSA5JFgOUEs=
Subject key identifier: 1E:73:90:55:3A:7C:5C:EF:4B:42:95:B0:CB:54:A0:CF:31:6E:E6:03
Certificate issuer: /CN=22a96d3f69323d08b4ccb995294ad50b421e6b0d
Certificate serial: 018CC42460263EDD6A44101C144D0E605D3A
Authority key identifier: 22:A9:6D:3F:69:32:3D:08:B4:CC:B9:95:29:4A:D5:0B:42:1E:6B:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IqltP2kyPQi0zLmVKUrVC0Ieaw0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/efc26d-a835-469c-8a14-bc43b309e2c6/1/HnOQVTp8XO9LQpWwy1SgzzFu5gM.roa
Signing time: Mon 01 Jan 2024 08:29:27 +0000
ROA not before: Mon 01 Jan 2024 08:29:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 945
IP address blocks: 2a06:a346::/31 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:24:60:26:3e:dd:6a:44:10:1c:14:4d:0e:60:5d:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22a96d3f69323d08b4ccb995294ad50b421e6b0d
Validity
Not Before: Jan 1 08:29:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1e7390553a7c5cef4b4295b0cb54a0cf316ee603
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:25:6d:c3:74:55:23:8c:21:4e:1c:63:1e:f3:
15:12:ce:9c:2b:cd:98:22:30:94:86:b0:5d:17:4a:
b7:08:67:31:cb:54:ee:10:b9:d3:32:bc:63:df:e3:
85:bd:78:5f:f5:0f:99:47:44:96:4a:d8:e2:3b:63:
80:df:2c:3f:fa:50:99:78:d5:91:8b:89:4b:81:e0:
7e:60:ec:4c:f2:c5:79:3b:6b:9d:9b:7b:90:48:25:
4f:07:14:6a:01:ba:03:a8:a7:f2:ec:97:ce:b8:6c:
c0:61:c9:59:e7:d3:ec:ef:bb:fd:6e:78:bb:06:0d:
bd:90:8a:50:93:02:dc:23:48:b8:8f:a5:cd:53:df:
f4:5b:88:cb:2c:29:f0:34:45:9d:fd:34:d1:0d:66:
1e:6a:54:ae:4a:6c:61:57:3b:dc:95:11:9f:4a:c9:
3b:a7:4a:42:ac:c4:23:d2:ad:9c:cf:47:05:e5:05:
ed:e7:57:64:ee:d7:03:ab:20:e0:be:a9:a1:e4:ba:
e2:f3:64:f1:6c:3d:81:be:ec:af:d5:7a:d4:83:66:
d1:f3:2d:7a:11:52:f8:0d:77:18:be:d4:11:2c:3e:
07:e7:2b:67:a8:24:16:06:1e:56:66:78:7a:40:15:
ea:9e:2f:1e:4d:63:86:7c:ac:41:39:7d:2b:c6:b3:
0e:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:73:90:55:3A:7C:5C:EF:4B:42:95:B0:CB:54:A0:CF:31:6E:E6:03
X509v3 Authority Key Identifier:
keyid:22:A9:6D:3F:69:32:3D:08:B4:CC:B9:95:29:4A:D5:0B:42:1E:6B:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IqltP2kyPQi0zLmVKUrVC0Ieaw0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/efc26d-a835-469c-8a14-bc43b309e2c6/1/HnOQVTp8XO9LQpWwy1SgzzFu5gM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/efc26d-a835-469c-8a14-bc43b309e2c6/1/IqltP2kyPQi0zLmVKUrVC0Ieaw0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a346::/31
Signature Algorithm: sha256WithRSAEncryption
3d:07:d5:39:ac:9d:f5:94:d6:89:e1:cc:5f:77:ac:a9:85:16:
ce:94:02:ab:38:7a:70:84:f7:2f:0e:4c:9d:fb:4b:b7:6c:09:
fa:b6:57:f3:b4:84:48:03:f2:02:fc:8f:69:65:92:fa:b7:82:
62:7a:7a:7e:40:a3:27:aa:82:7d:2e:9f:6c:d4:8a:33:42:bc:
5a:6e:39:80:33:0a:2d:e5:3c:ab:73:29:02:41:59:9b:8e:5d:
1e:80:d8:a1:b5:d3:7a:80:41:83:0d:c7:de:06:7a:f7:4e:6d:
48:1f:47:c2:ba:d4:ae:1f:d3:16:e9:e9:57:a2:c1:1f:2b:e3:
5a:b7:bc:90:c3:d9:08:4a:ad:d5:08:ab:f3:d9:f4:df:76:d9:
4d:5b:7c:5b:85:38:3c:9a:e9:98:08:47:7a:76:d1:f8:d6:f4:
bc:66:4a:e6:d8:31:62:d0:75:60:8c:9c:59:73:82:63:f3:d3:
b4:62:f9:e3:ed:d4:16:91:36:0f:0a:49:37:e5:6a:86:20:01:
dc:f2:75:a8:ea:ab:fa:e9:6f:02:56:2c:40:b1:f2:fc:86:0f:
d8:ce:32:05:80:a0:a7:96:49:9c:8f:70:b9:2e:54:4c:5a:4f:
fd:20:52:69:43:ab:1c:cb:c6:14:c2:c2:9e:f4:ff:09:7b:61:
6d:c2:c8:d2
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYzEJGAmPt1qRBAcFE0OYF06MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyYTk2ZDNmNjkzMjNkMDhiNGNjYjk5NTI5NGFkNTBiNDIx
ZTZiMGQwHhcNMjQwMTAxMDgyOTI3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZTczOTA1NTNhN2M1Y2VmNGI0Mjk1YjBjYjU0YTBjZjMxNmVlNjAzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtCVtw3RVI4whThxjHvMVEs6cK82Y
IjCUhrBdF0q3CGcxy1TuELnTMrxj3+OFvXhf9Q+ZR0SWStjiO2OA3yw/+lCZeNWR
i4lLgeB+YOxM8sV5O2udm3uQSCVPBxRqAboDqKfy7JfOuGzAYclZ59Ps77v9bni7
Bg29kIpQkwLcI0i4j6XNU9/0W4jLLCnwNEWd/TTRDWYealSuSmxhVzvclRGfSsk7
p0pCrMQj0q2cz0cF5QXt51dk7tcDqyDgvqmh5Lri82TxbD2Bvuyv1XrUg2bR8y16
EVL4DXcYvtQRLD4H5ytnqCQWBh5WZnh6QBXqni8eTWOGfKxBOX0rxrMOxQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFB5zkFU6fFzvS0KVsMtUoM8xbuYDMB8GA1UdIwQY
MBaAFCKpbT9pMj0ItMy5lSlK1QtCHmsNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXFsdFAya3lQUWkwekxtVktVclZDMEllYXcwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS9lZmMyNmQtYTgzNS00NjljLThhMTQt
YmM0M2IzMDllMmM2LzEvSG5PUVZUcDhYTzlMUXBXd3kxU2d6ekZ1NWdNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZS9lZmMyNmQtYTgzNS00NjljLThhMTQtYmM0M2IzMDllMmM2
LzEvSXFsdFAya3lQUWkwekxtVktVclZDMEllYXcwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUBKgajRjAN
BgkqhkiG9w0BAQsFAAOCAQEAPQfVOayd9ZTWieHMX3esqYUWzpQCqzh6cIT3Lw5M
nftLt2wJ+rZX87SESAPyAvyPaWWS+reCYnp6fkCjJ6qCfS6fbNSKM0K8Wm45gDMK
LeU8q3MpAkFZm45dHoDYobXTeoBBgw3H3gZ6905tSB9HwrrUrh/TFunpV6LBHyvj
Wre8kMPZCEqt1Qir89n033bZTVt8W4U4PJrpmAhHenbR+Nb0vGZK5tgxYtB1YIyc
WXOCY/PTtGL54+3UFpE2DwpJN+VqhiAB3PJ1qOqr+ulvAlYsQLHy/IYP2M4yBYCg
p5ZJnI9wuS5UTFpP/SBSaUOrHMvGFMLCnvT/CXthbcLI0g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:09 2024 by rpki-client on console-fra.rpki-client.org