Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/U23BN09QvLmAJiY8_i2ahaPCuhM.roa
File: U23BN09QvLmAJiY8_i2ahaPCuhM.roa (raw, json)
Hash identifier: JwrRsBK3bEa+GfkUtBRYKqo7ybTlhLlvvxFXGNsuEQc=
Subject key identifier: 53:6D:C1:37:4F:50:BC:B9:80:26:26:3C:FE:2D:9A:85:A3:C2:BA:13
Certificate issuer: /CN=54914541fd1b95e7c0afc875fbef78794f55386b
Certificate serial: 01841861664FD2113E93E4DC63CD7CC995A8
Authority key identifier: 54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/U23BN09QvLmAJiY8_i2ahaPCuhM.roa
Signing time: Thu 27 Oct 2022 07:39:07 +0000
ROA not before: Thu 27 Oct 2022 07:39:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56328
IP address blocks: 2a06:a005:3b0::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:18:61:66:4f:d2:11:3e:93:e4:dc:63:cd:7c:c9:95:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54914541fd1b95e7c0afc875fbef78794f55386b
Validity
Not Before: Oct 27 07:39:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=536dc1374f50bcb98026263cfe2d9a85a3c2ba13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:2c:98:30:16:d9:03:9c:f7:27:35:90:93:9d:
f5:e9:bc:41:5f:b0:f5:3f:23:87:99:14:ea:e6:d3:
ae:2a:4f:3a:bb:fc:24:c1:25:54:bf:54:a4:36:7e:
7a:d8:81:02:f8:60:d0:2c:5c:b1:25:a1:03:cc:d0:
4a:52:84:05:b1:cf:fd:ad:49:96:14:74:03:04:88:
ce:2f:a5:5f:b7:ac:7c:67:a4:0c:df:c7:96:02:fd:
f2:7a:7c:74:7d:6d:d1:00:3f:32:44:26:bd:71:99:
81:f9:d1:24:fb:3b:d1:67:80:e2:2c:3d:a4:af:41:
f6:f8:7b:34:dd:3f:6f:5a:b8:12:e2:b8:a4:2b:90:
b7:c3:00:ef:f8:3b:d9:83:24:dc:4e:ff:4c:83:84:
35:98:fc:42:64:30:38:cb:17:95:fa:80:86:96:8e:
f6:24:44:56:73:c2:8c:3b:58:da:90:7e:a4:c1:99:
4f:65:fc:61:ce:0d:7d:ed:78:35:85:7a:ea:2b:c5:
1a:fa:3e:c6:34:2e:c7:30:6d:5c:0f:b1:87:58:cb:
22:d2:98:7b:ff:72:a5:41:34:58:75:41:f2:54:a3:
2d:f4:75:ea:d4:d8:02:10:d5:fc:4d:26:a3:e5:30:
ee:9b:9e:41:9a:d6:91:1f:e7:e1:bf:66:76:a5:ee:
f1:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:6D:C1:37:4F:50:BC:B9:80:26:26:3C:FE:2D:9A:85:A3:C2:BA:13
X509v3 Authority Key Identifier:
keyid:54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/U23BN09QvLmAJiY8_i2ahaPCuhM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/VJFFQf0blefAr8h1--94eU9VOGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:3b0::/44
Signature Algorithm: sha256WithRSAEncryption
45:3d:99:91:40:4b:9c:f8:f8:94:84:93:11:34:41:49:2b:f7:
19:ee:9f:f6:de:b3:1e:77:3f:56:e4:9b:c9:ba:29:d3:de:57:
76:2f:dc:d9:0b:15:ca:c1:f4:2d:f7:e3:de:f5:b6:f4:72:95:
13:38:28:1b:d5:f5:2b:3a:2e:5b:2a:9d:58:73:2b:56:c8:d0:
9c:ef:11:5a:10:41:58:6f:e2:9a:3f:2d:7c:fd:51:c0:86:87:
6a:6f:fe:e1:26:98:68:5a:0d:00:d5:a1:7a:aa:8e:ed:44:c3:
8d:50:b7:20:8a:f7:fc:5e:83:9d:7e:ca:c1:c2:fd:ed:4b:db:
d9:78:04:ea:dd:ac:e4:c7:51:f0:77:df:50:ff:04:4b:d7:dd:
ff:b7:4b:4a:3e:74:4c:f1:c7:5c:8b:41:a0:d6:d7:7e:32:50:
f5:0d:03:06:09:c8:ca:0a:6a:81:e4:f7:f3:cf:7c:e1:32:45:
7b:fb:4a:b0:a7:26:2a:ef:86:fc:b6:cc:55:66:b8:e0:cd:22:
70:9a:3e:fe:5c:bd:9a:bc:50:5a:cc:2f:25:91:f4:0d:5f:9c:
5e:f6:30:5f:32:2e:ec:27:d4:17:20:3e:30:7b:c8:62:dc:8f:
51:3b:24:19:0f:c8:9a:1e:b7:01:85:93:78:a1:54:5f:40:44:
a6:44:ba:f9
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYQYYWZP0hE+k+TcY818yZWoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU0OTE0NTQxZmQxYjk1ZTdjMGFmYzg3NWZiZWY3ODc5NGY1
NTM4NmIwHhcNMjIxMDI3MDczOTA3WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MzZkYzEzNzRmNTBiY2I5ODAyNjI2M2NmZTJkOWE4NWEzYzJiYTEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlyyYMBbZA5z3JzWQk5316bxBX7D1
PyOHmRTq5tOuKk86u/wkwSVUv1SkNn562IEC+GDQLFyxJaEDzNBKUoQFsc/9rUmW
FHQDBIjOL6Vft6x8Z6QM38eWAv3yenx0fW3RAD8yRCa9cZmB+dEk+zvRZ4DiLD2k
r0H2+Hs03T9vWrgS4rikK5C3wwDv+DvZgyTcTv9Mg4Q1mPxCZDA4yxeV+oCGlo72
JERWc8KMO1jakH6kwZlPZfxhzg197Xg1hXrqK8Ua+j7GNC7HMG1cD7GHWMsi0ph7
/3KlQTRYdUHyVKMt9HXq1NgCENX8TSaj5TDum55BmtaRH+fhv2Z2pe7xXwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFFNtwTdPULy5gCYmPP4tmoWjwroTMB8GA1UdIwQY
MBaAFFSRRUH9G5XnwK/IdfvveHlPVThrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVkpGRlFmMGJsZWZBcjhoMS0tOTRlVTlWT0dzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS80NjQ2MzEtY2E4ZS00YzZhLWIwOTEt
ZDlmNmQ5NjQyNTM3LzEvVTIzQk4wOVF2TG1BSmlZOF9pMmFoYVBDdWhNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80YS80NjQ2MzEtY2E4ZS00YzZhLWIwOTEtZDlmNmQ5NjQyNTM3
LzEvVkpGRlFmMGJsZWZBcjhoMS0tOTRlVTlWT0dzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgagBQOw
MA0GCSqGSIb3DQEBCwUAA4IBAQBFPZmRQEuc+PiUhJMRNEFJK/cZ7p/23rMedz9W
5JvJuinT3ld2L9zZCxXKwfQt9+Pe9bb0cpUTOCgb1fUrOi5bKp1YcytWyNCc7xFa
EEFYb+KaPy18/VHAhodqb/7hJphoWg0A1aF6qo7tRMONULcgivf8XoOdfsrBwv3t
S9vZeATq3azkx1Hwd99Q/wRL193/t0tKPnRM8cdci0Gg1td+MlD1DQMGCcjKCmqB
5Pfzz3zhMkV7+0qwpyYq74b8tsxVZrjgzSJwmj7+XL2avFBazC8lkfQNX5xe9jBf
Mi7sJ9QXID4we8hi3I9ROyQZD8iaHrcBhZN4oVRfQESmRLr5
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:04 2023 by rpki-client on console.sobornost.net