Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/35gJeI1xLD19qcFE5nae4n0UlVU.roa
File: 35gJeI1xLD19qcFE5nae4n0UlVU.roa (raw, json)
Hash identifier: Xk1EZMKhBglpXMwYg+cwKt8EJjZMVZ0qb44t+O+Z7NI=
Subject key identifier: DF:98:09:78:8D:71:2C:3D:7D:A9:C1:44:E6:76:9E:E2:7D:14:95:55
Certificate issuer: /CN=54914541fd1b95e7c0afc875fbef78794f55386b
Certificate serial: 1951CF9A
Authority key identifier: 54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/35gJeI1xLD19qcFE5nae4n0UlVU.roa
Signing time: Fri 06 May 2022 04:30:01 +0000
ROA not before: Fri 06 May 2022 04:30:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 148996
IP address blocks: 2a06:a005:70::/44 maxlen: 48
2a06:a005:60::/44 maxlen: 48
2a06:a005:2e0::/44 maxlen: 48
2a06:a001:a000::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 424791962 (0x1951cf9a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54914541fd1b95e7c0afc875fbef78794f55386b
Validity
Not Before: May 6 04:30:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=df9809788d712c3d7da9c144e6769ee27d149555
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:d7:23:47:4f:2d:cb:c8:c8:01:3a:ac:45:9e:
3d:36:be:d5:cd:da:97:41:4e:13:c6:d6:81:86:73:
2d:07:55:99:42:71:7f:cf:0f:a2:72:fc:5f:81:3d:
00:e6:c3:d7:1a:fd:89:bc:90:36:7b:99:e8:3e:f8:
b1:8d:d9:d6:49:bd:86:b3:2c:e9:4b:99:10:71:d4:
c2:6b:41:0d:28:58:1d:61:66:a7:75:62:23:33:4a:
e3:77:11:bb:46:d4:ad:db:72:26:dd:1f:07:21:ef:
fb:fc:1a:d0:e7:2b:67:23:a6:f0:be:77:57:f8:16:
ba:79:6f:7b:14:d1:87:b4:6d:9e:aa:89:ef:52:f0:
97:4d:5c:74:c6:ba:e9:eb:8e:b0:5a:ba:e5:eb:e9:
8f:90:67:0d:3f:45:76:61:d4:58:47:c8:dd:24:f0:
dc:dc:9c:d7:2b:b1:e4:8a:cc:97:aa:83:92:63:47:
dd:c5:a3:65:e4:8b:9d:60:58:61:55:19:13:2a:25:
a1:3a:14:b0:3e:81:a0:3a:35:25:50:57:15:ab:51:
f4:50:c9:3c:de:97:a3:34:3e:1f:c0:dd:b5:fe:00:
91:2d:91:0d:54:62:04:b7:e4:70:11:85:d0:94:24:
cd:a6:57:59:90:70:a2:5f:76:25:6c:71:5a:8a:bc:
9c:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:98:09:78:8D:71:2C:3D:7D:A9:C1:44:E6:76:9E:E2:7D:14:95:55
X509v3 Authority Key Identifier:
keyid:54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/35gJeI1xLD19qcFE5nae4n0UlVU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/VJFFQf0blefAr8h1--94eU9VOGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a001:a000::/44
2a06:a005:60::/43
2a06:a005:2e0::/44
Signature Algorithm: sha256WithRSAEncryption
21:39:e9:d5:03:67:33:93:ce:a7:4b:c1:c7:4c:91:3b:1d:e9:
ba:1d:20:4f:8c:de:85:06:8c:40:71:c7:d3:3a:bf:77:8e:85:
28:e0:d6:c9:da:cf:21:6c:e2:c7:39:a1:66:2a:ee:4c:cc:3b:
20:f6:4d:f3:45:10:47:32:9f:cb:a9:f5:d9:3b:40:0b:41:dc:
15:bc:f8:f8:31:57:6e:f2:ad:49:fd:a7:c7:d0:b8:0f:03:cf:
21:c7:13:6c:d2:89:be:21:35:a4:87:52:c4:80:10:0f:4c:3d:
cc:3b:3d:be:8a:74:6b:00:65:83:82:ff:5b:ff:4b:bb:4b:dd:
9c:72:7e:1b:76:f8:ac:c8:6e:3e:74:f4:37:58:4d:4f:ca:20:
bd:89:fe:49:5e:75:a1:32:25:50:55:c0:b4:a2:fc:59:d0:bd:
af:cf:4f:c8:c2:aa:f2:78:26:e0:5c:d6:61:c0:c0:a5:e4:83:
dd:0a:eb:2f:0f:0e:df:54:e6:ce:74:d1:f7:bd:1e:da:9f:c1:
a1:70:4c:60:09:95:c6:9c:71:5a:70:4a:f0:9c:88:a2:b6:8f:
7a:42:48:a0:7d:40:ed:0b:86:bd:e7:d0:1b:d1:f0:31:6a:70:
18:fd:fd:53:5c:7b:ec:50:ef:88:3f:b4:bc:4f:16:9a:75:35:
34:a3:7b:0c
-----BEGIN CERTIFICATE-----
MIIFBDCCA+ygAwIBAgIEGVHPmjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
NDkxNDU0MWZkMWI5NWU3YzBhZmM4NzVmYmVmNzg3OTRmNTUzODZiMB4XDTIyMDUw
NjA0MzAwMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZGY5ODA5Nzg4ZDcx
MmMzZDdkYTljMTQ0ZTY3NjllZTI3ZDE0OTU1NTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANPXI0dPLcvIyAE6rEWePTa+1c3al0FOE8bWgYZzLQdVmUJx
f88PonL8X4E9AObD1xr9ibyQNnuZ6D74sY3Z1km9hrMs6UuZEHHUwmtBDShYHWFm
p3ViIzNK43cRu0bUrdtyJt0fByHv+/wa0OcrZyOm8L53V/gWunlvexTRh7RtnqqJ
71Lwl01cdMa66euOsFq65evpj5BnDT9FdmHUWEfI3STw3Nyc1yux5IrMl6qDkmNH
3cWjZeSLnWBYYVUZEyoloToUsD6BoDo1JVBXFatR9FDJPN6XozQ+H8Ddtf4AkS2R
DVRiBLfkcBGF0JQkzaZXWZBwol92JWxxWoq8nMcCAwEAAaOCAh4wggIaMB0GA1Ud
DgQWBBTfmAl4jXEsPX2pwUTmdp7ifRSVVTAfBgNVHSMEGDAWgBRUkUVB/RuV58Cv
yHX773h5T1U4azAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1ZKRkZRZjBibGVmQXI4aDEtLTk0ZVU5Vk9Hcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGEvNDY0NjMxLWNhOGUtNGM2YS1iMDkxLWQ5ZjZkOTY0MjUzNy8x
LzM1Z0plSTF4TEQxOXFjRkU1bmFlNG4wVWxWVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGEv
NDY0NjMxLWNhOGUtNGM2YS1iMDkxLWQ5ZjZkOTY0MjUzNy8xL1ZKRkZRZjBibGVm
QXI4aDEtLTk0ZVU5Vk9Hcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0
BggrBgEFBQcBBwEB/wQlMCMwIQQCAAIwGwMHBCoGoAGgAAMHBSoGoAUAYAMHBCoG
oAUC4DANBgkqhkiG9w0BAQsFAAOCAQEAITnp1QNnM5POp0vBx0yROx3puh0gT4ze
hQaMQHHH0zq/d46FKODWydrPIWzixzmhZiruTMw7IPZN80UQRzKfy6n12TtAC0Hc
Fbz4+DFXbvKtSf2nx9C4DwPPIccTbNKJviE1pIdSxIAQD0w9zDs9vop0awBlg4L/
W/9Lu0vdnHJ+G3b4rMhuPnT0N1hNT8ogvYn+SV51oTIlUFXAtKL8WdC9r89PyMKq
8ngm4FzWYcDApeSD3QrrLw8O31TmznTR970e2p/BoXBMYAmVxpxxWnBK8JyIoraP
ekJIoH1A7QuGvefQG9HwMWpwGP39U1x77FDviD+0vE8WmnU1NKN7DA==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:02 2023 by rpki-client on console.sobornost.net