Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/69fa0f-4414-4a69-acd1-6cf3c3c26006/1/gVepttmWAm4vSfdVDiybJ0V2m0U.roa
File: gVepttmWAm4vSfdVDiybJ0V2m0U.roa (raw, json)
Hash identifier: 9EkHTH6s4+YJMa8YKT//Gk2B3VtY0LfBVv5PP1s59G4=
Subject key identifier: 81:57:A9:B6:D9:96:02:6E:2F:49:F7:55:0E:2C:9B:27:45:76:9B:45
Certificate issuer: /CN=2f21cae86cbf1099accf91e022359d2486cba69d
Certificate serial: 013915D6
Authority key identifier: 2F:21:CA:E8:6C:BF:10:99:AC:CF:91:E0:22:35:9D:24:86:CB:A6:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LyHK6Gy_EJmsz5HgIjWdJIbLpp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/69fa0f-4414-4a69-acd1-6cf3c3c26006/1/gVepttmWAm4vSfdVDiybJ0V2m0U.roa
Signing time: Sat 01 Jan 2022 01:00:52 +0000
ROA not before: Sat 01 Jan 2022 01:00:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204790
IP address blocks: 2a11:5e80::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20518358 (0x13915d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f21cae86cbf1099accf91e022359d2486cba69d
Validity
Not Before: Jan 1 01:00:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8157a9b6d996026e2f49f7550e2c9b2745769b45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:c0:e9:dd:13:3c:4b:a5:42:85:6a:a9:16:31:
18:80:07:a8:fa:75:88:bb:e7:5a:c9:37:8b:3e:fe:
46:f5:30:7e:be:1f:1b:a8:1b:f1:6a:88:24:bc:e4:
3f:01:df:38:c9:ee:c6:d3:0f:47:91:25:b3:4a:72:
6f:df:71:00:c6:2f:0a:e9:ee:4f:5d:e8:3f:95:f8:
39:81:d3:5b:12:c9:a7:34:aa:27:16:af:d9:bf:14:
11:17:fa:04:cb:a1:8a:eb:97:16:53:72:3e:06:d6:
ea:a5:99:0a:93:70:ec:6f:cb:f4:bb:5f:9a:a7:c6:
64:58:f8:82:54:46:e8:34:37:fd:91:48:18:91:45:
12:b6:fe:27:33:ca:bb:d6:de:69:ec:9f:bc:b6:8c:
e1:d0:52:94:2c:77:f3:91:25:01:ca:0f:47:e2:b5:
98:23:c9:96:82:02:70:d9:4a:53:40:4e:5f:93:e3:
d0:2d:a4:04:67:0c:7c:99:c4:6a:83:40:97:f6:fb:
b8:b5:e0:45:ca:81:e0:e6:0c:09:8f:37:83:59:16:
12:cd:c2:44:24:18:f4:f8:b9:2e:7c:ae:e6:ec:7b:
74:e5:a2:d4:bf:5e:13:c1:ca:8d:b6:2b:77:21:99:
88:03:ce:8b:61:0a:02:45:11:99:4c:75:2d:7d:eb:
de:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:57:A9:B6:D9:96:02:6E:2F:49:F7:55:0E:2C:9B:27:45:76:9B:45
X509v3 Authority Key Identifier:
keyid:2F:21:CA:E8:6C:BF:10:99:AC:CF:91:E0:22:35:9D:24:86:CB:A6:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LyHK6Gy_EJmsz5HgIjWdJIbLpp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/69fa0f-4414-4a69-acd1-6cf3c3c26006/1/gVepttmWAm4vSfdVDiybJ0V2m0U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/69fa0f-4414-4a69-acd1-6cf3c3c26006/1/LyHK6Gy_EJmsz5HgIjWdJIbLpp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:5e80::/29
Signature Algorithm: sha256WithRSAEncryption
07:36:a3:b2:55:d6:ce:f4:21:41:1d:d2:83:a7:ac:c6:d6:0a:
5d:70:6e:4d:60:43:67:88:47:00:56:8c:67:af:03:91:4d:07:
35:8f:10:18:cc:08:9b:01:cb:2c:b2:f9:40:ee:38:1e:68:01:
1f:3f:98:02:2a:fc:f7:9a:d5:19:5f:aa:2b:58:e5:d7:8c:64:
94:34:af:8a:ef:73:29:c7:cc:be:44:ff:93:f8:e1:77:5d:cf:
82:09:fd:27:37:c8:00:68:e6:50:19:63:6b:3b:49:16:5f:54:
e1:4e:52:05:16:f9:c6:7f:ae:8e:6a:f0:76:82:6a:c6:be:ff:
92:48:a8:44:0e:50:b4:52:12:41:cf:94:4c:a1:18:16:2b:56:
67:ee:70:fe:94:b8:49:5f:03:b8:c5:be:c6:f6:dd:af:cc:76:
f5:4d:46:4a:19:15:3a:fe:0b:d8:f4:4c:eb:df:78:b5:57:2e:
75:03:b2:77:3d:70:03:da:35:37:d5:58:e1:5c:3a:04:05:e8:
88:96:c5:49:06:6c:55:f2:f5:34:ad:ec:f1:81:5c:41:f8:60:
35:c1:a5:a3:7c:4d:2a:bf:d4:ce:55:c7:e3:1e:98:96:24:ff:
d5:8e:8b:70:8c:c1:7d:e3:eb:4f:9b:20:c3:2f:50:fa:1c:69:
98:dd:65:d0
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgIEATkV1jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
ZjIxY2FlODZjYmYxMDk5YWNjZjkxZTAyMjM1OWQyNDg2Y2JhNjlkMB4XDTIyMDEw
MTAxMDA1MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODE1N2E5YjZkOTk2
MDI2ZTJmNDlmNzU1MGUyYzliMjc0NTc2OWI0NTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL3A6d0TPEulQoVqqRYxGIAHqPp1iLvnWsk3iz7+RvUwfr4f
G6gb8WqIJLzkPwHfOMnuxtMPR5Els0pyb99xAMYvCunuT13oP5X4OYHTWxLJpzSq
Jxav2b8UERf6BMuhiuuXFlNyPgbW6qWZCpNw7G/L9LtfmqfGZFj4glRG6DQ3/ZFI
GJFFErb+JzPKu9beaeyfvLaM4dBSlCx385ElAcoPR+K1mCPJloICcNlKU0BOX5Pj
0C2kBGcMfJnEaoNAl/b7uLXgRcqB4OYMCY83g1kWEs3CRCQY9Pi5Lnyu5ux7dOWi
1L9eE8HKjbYrdyGZiAPOi2EKAkURmUx1LX3r3osCAwEAAaOCAgowggIGMB0GA1Ud
DgQWBBSBV6m22ZYCbi9J91UOLJsnRXabRTAfBgNVHSMEGDAWgBQvIcrobL8QmazP
keAiNZ0khsumnTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0x5SEs2R3lfRUptc3o1SGdJaldkSkliTHBwMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTQvNjlmYTBmLTQ0MTQtNGE2OS1hY2QxLTZjZjNjM2MyNjAwNi8x
L2dWZXB0dG1XQW00dlNmZFZEaXliSjBWMm0wVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTQv
NjlmYTBmLTQ0MTQtNGE2OS1hY2QxLTZjZjNjM2MyNjAwNi8xL0x5SEs2R3lfRUpt
c3o1SGdJaldkSkliTHBwMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAg
BggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFAyoRXoAwDQYJKoZIhvcNAQELBQAD
ggEBAAc2o7JV1s70IUEd0oOnrMbWCl1wbk1gQ2eIRwBWjGevA5FNBzWPEBjMCJsB
yyyy+UDuOB5oAR8/mAIq/Pea1RlfqitY5deMZJQ0r4rvcynHzL5E/5P44Xddz4IJ
/Sc3yABo5lAZY2s7SRZfVOFOUgUW+cZ/ro5q8HaCasa+/5JIqEQOULRSEkHPlEyh
GBYrVmfucP6UuElfA7jFvsb23a/MdvVNRkoZFTr+C9j0TOvfeLVXLnUDsnc9cAPa
NTfVWOFcOgQF6IiWxUkGbFXy9TSt7PGBXEH4YDXBpaN8TSq/1M5Vx+MemJYk/9WO
i3CMwX3j60+bIMMvUPocaZjdZdA=
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:21 2023 by rpki-client on console.sobornost.net