Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2d84f5-1e6f-4d52-85fa-34f761035360/1/woOWSJSfC1d3AaOyO4FRx0muJzg.roa
File: woOWSJSfC1d3AaOyO4FRx0muJzg.roa (raw, json)
Hash identifier: 9ER+GVPFc6GH85jIS0R3OnPOojotXb80VSexwAqUjUM=
Subject key identifier: C2:83:96:48:94:9F:0B:57:77:01:A3:B2:3B:81:51:C7:49:AE:27:38
Certificate issuer: /CN=5389ab9b7fd5fdfd04f51af8873cdf9b24d08380
Certificate serial: 0185715E7043C407BFE506A6401E0FE55D6D
Authority key identifier: 53:89:AB:9B:7F:D5:FD:FD:04:F5:1A:F8:87:3C:DF:9B:24:D0:83:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U4mrm3_V_f0E9Rr4hzzfmyTQg4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2d84f5-1e6f-4d52-85fa-34f761035360/1/woOWSJSfC1d3AaOyO4FRx0muJzg.roa
Signing time: Mon 02 Jan 2023 07:24:52 +0000
ROA not before: Mon 02 Jan 2023 07:24:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9179
IP address blocks: 2a01:2c0:23db::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:5e:70:43:c4:07:bf:e5:06:a6:40:1e:0f:e5:5d:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5389ab9b7fd5fdfd04f51af8873cdf9b24d08380
Validity
Not Before: Jan 2 07:24:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c2839648949f0b577701a3b23b8151c749ae2738
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:e4:8b:f5:1a:0d:7a:fc:e8:49:64:cd:82:ed:
bb:38:67:79:52:e1:bd:71:9d:cc:09:e3:85:cc:21:
f9:87:9a:cd:32:de:e6:fd:4e:67:31:13:34:95:bf:
a0:57:ec:00:4b:25:3d:e2:51:24:e2:00:8b:af:86:
b5:18:3c:ad:8b:25:87:46:98:18:80:a6:49:f1:78:
79:3c:9a:1f:84:22:b3:e6:df:dd:53:71:93:88:be:
26:ef:d5:b6:cf:77:8c:5c:77:9c:1c:ba:15:fa:b4:
2a:11:43:1b:b0:79:fd:46:5e:2a:9a:3e:66:6d:8d:
55:15:a4:78:ba:b2:07:33:f1:44:ea:25:67:5a:fe:
4c:d0:d7:ac:1b:86:f5:3f:a7:2e:bc:77:6d:22:3d:
5f:45:44:10:2c:3d:f0:e4:fb:81:e1:70:06:92:5d:
4b:8f:a7:ae:2c:ef:1b:03:77:0e:46:35:7e:ce:9d:
a3:96:e1:1d:a0:b6:1e:8a:b3:a2:fa:27:0a:e6:3f:
98:d3:8b:44:60:3d:9e:e7:90:93:95:f5:91:f1:ef:
c6:40:4d:44:9d:c0:6f:61:77:7a:37:b9:2a:96:ec:
8d:09:08:68:45:61:f7:57:5c:1f:36:65:23:99:ee:
97:af:05:81:ea:9a:af:63:aa:fe:00:b7:96:a9:56:
51:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:83:96:48:94:9F:0B:57:77:01:A3:B2:3B:81:51:C7:49:AE:27:38
X509v3 Authority Key Identifier:
keyid:53:89:AB:9B:7F:D5:FD:FD:04:F5:1A:F8:87:3C:DF:9B:24:D0:83:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U4mrm3_V_f0E9Rr4hzzfmyTQg4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2d84f5-1e6f-4d52-85fa-34f761035360/1/woOWSJSfC1d3AaOyO4FRx0muJzg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2d84f5-1e6f-4d52-85fa-34f761035360/1/U4mrm3_V_f0E9Rr4hzzfmyTQg4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:2c0:23db::/48
Signature Algorithm: sha256WithRSAEncryption
47:f1:bc:29:0f:eb:50:fb:ab:aa:ae:13:ba:43:ef:b3:8b:a5:
31:21:bc:7c:c6:52:68:fb:e2:6c:ce:ab:13:c9:ed:59:63:b1:
59:a5:02:bb:f7:01:12:1e:c9:57:5e:9c:14:99:84:06:cc:2b:
2e:63:fe:bd:16:b2:e1:18:73:86:60:ad:e7:cc:a0:c2:19:3d:
58:86:90:c0:78:8e:90:a2:9c:8f:cc:a1:6d:c1:18:b4:67:ec:
6a:77:7c:fd:11:83:63:35:22:87:9f:70:24:5b:19:7a:81:10:
69:be:ff:0b:98:1c:db:4d:68:65:c0:e7:f7:71:3b:07:8c:fb:
a9:55:6e:70:dc:4f:44:ae:bc:d5:4f:95:89:8b:45:8e:11:db:
f4:fb:e6:ba:66:58:e4:ff:93:94:d9:46:a1:fa:80:a3:05:66:
76:95:d7:e7:cb:ee:1c:f0:bf:f1:0b:53:b9:77:c4:c6:09:7f:
fd:d1:ee:c0:f9:6f:90:ba:f4:bf:6e:39:35:a0:b1:a2:93:1f:
25:57:ef:a2:cb:58:95:81:52:b9:e4:bb:de:77:12:f6:21:1a:
3f:35:df:95:73:f9:6d:52:0a:53:48:b7:01:9f:55:f4:11:1e:
c0:b8:7d:58:7b:e2:0a:cf:a0:b0:cf:36:84:c5:e9:2c:99:49:
9a:04:8c:48
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVxXnBDxAe/5QamQB4P5V1tMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUzODlhYjliN2ZkNWZkZmQwNGY1MWFmODg3M2NkZjliMjRk
MDgzODAwHhcNMjMwMTAyMDcyNDUyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMjgzOTY0ODk0OWYwYjU3NzcwMWEzYjIzYjgxNTFjNzQ5YWUyNzM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2eSL9RoNevzoSWTNgu27OGd5UuG9
cZ3MCeOFzCH5h5rNMt7m/U5nMRM0lb+gV+wASyU94lEk4gCLr4a1GDytiyWHRpgY
gKZJ8Xh5PJofhCKz5t/dU3GTiL4m79W2z3eMXHecHLoV+rQqEUMbsHn9Rl4qmj5m
bY1VFaR4urIHM/FE6iVnWv5M0NesG4b1P6cuvHdtIj1fRUQQLD3w5PuB4XAGkl1L
j6euLO8bA3cORjV+zp2jluEdoLYeirOi+icK5j+Y04tEYD2e55CTlfWR8e/GQE1E
ncBvYXd6N7kqluyNCQhoRWH3V1wfNmUjme6XrwWB6pqvY6r+ALeWqVZRNQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFMKDlkiUnwtXdwGjsjuBUcdJric4MB8GA1UdIwQY
MBaAFFOJq5t/1f39BPUa+Ic835sk0IOAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVTRtcm0zX1ZfZjBFOVJyNGh6emZteVRRZzRBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS8yZDg0ZjUtMWU2Zi00ZDUyLTg1ZmEt
MzRmNzYxMDM1MzYwLzEvd29PV1NKU2ZDMWQzQWFPeU80RlJ4MG11SnpnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOS8yZDg0ZjUtMWU2Zi00ZDUyLTg1ZmEtMzRmNzYxMDM1MzYw
LzEvVTRtcm0zX1ZfZjBFOVJyNGh6emZteVRRZzRBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgECwCPb
MA0GCSqGSIb3DQEBCwUAA4IBAQBH8bwpD+tQ+6uqrhO6Q++zi6UxIbx8xlJo++Js
zqsTye1ZY7FZpQK79wESHslXXpwUmYQGzCsuY/69FrLhGHOGYK3nzKDCGT1YhpDA
eI6QopyPzKFtwRi0Z+xqd3z9EYNjNSKHn3AkWxl6gRBpvv8LmBzbTWhlwOf3cTsH
jPupVW5w3E9ErrzVT5WJi0WOEdv0++a6Zljk/5OU2Uah+oCjBWZ2ldfny+4c8L/x
C1O5d8TGCX/90e7A+W+QuvS/bjk1oLGikx8lV++iy1iVgVK55LvedxL2IRo/Nd+V
c/ltUgpTSLcBn1X0ER7AuH1Ye+IKz6CwzzaExeksmUmaBIxI
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:43 2023 by rpki-client on console.sobornost.net