Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/8a3336-a99f-4f59-934e-064a35f8ca8c/1/hN79TI-6C6EPuv1bkHATsWQ6Og4.roa
File: hN79TI-6C6EPuv1bkHATsWQ6Og4.roa (raw, json)
Hash identifier: I+U6/+1INZ901PDExdCsEsOIbx39mXlrS5P/7IHVEVs=
Subject key identifier: 84:DE:FD:4C:8F:BA:0B:A1:0F:BA:FD:5B:90:70:13:B1:64:3A:3A:0E
Certificate issuer: /CN=8a48c661977836e909313717f95f66752ccdea3d
Certificate serial: 0113F55F
Authority key identifier: 8A:48:C6:61:97:78:36:E9:09:31:37:17:F9:5F:66:75:2C:CD:EA:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ikjGYZd4NukJMTcX-V9mdSzN6j0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/8a3336-a99f-4f59-934e-064a35f8ca8c/1/hN79TI-6C6EPuv1bkHATsWQ6Og4.roa
Signing time: Sat 01 Jan 2022 10:55:49 +0000
ROA not before: Sat 01 Jan 2022 10:55:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 18779
IP address blocks: 2a11:8680::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18085215 (0x113f55f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a48c661977836e909313717f95f66752ccdea3d
Validity
Not Before: Jan 1 10:55:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=84defd4c8fba0ba10fbafd5b907013b1643a3a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:f2:2f:9b:af:25:ca:2c:5d:79:72:24:21:60:
52:b1:bb:d5:20:c7:b0:1c:55:58:f8:e4:74:e4:41:
64:10:a2:87:c5:db:07:74:ce:6c:10:88:e7:33:b7:
c3:a5:7a:62:04:55:7b:b1:a4:fa:9c:45:9b:33:db:
47:cd:5c:47:49:58:64:37:28:6a:67:eb:ac:9e:16:
b9:92:53:2d:c1:f2:e6:bc:c5:cd:0d:cf:e8:8d:f8:
b4:fa:99:25:38:09:14:5d:70:b8:0d:fc:15:55:c1:
e4:7c:ef:32:67:20:1d:4f:55:46:71:e4:f1:b8:65:
54:2f:c9:27:7d:ff:36:e9:04:c8:bb:99:cc:1a:33:
7e:9a:00:06:41:8c:38:58:92:92:7f:bc:c7:27:c9:
f0:fb:ec:4a:f0:f1:08:67:81:f9:60:b0:27:be:dc:
8e:fe:44:ce:86:41:6b:17:a4:f3:64:c5:5d:42:a0:
4a:10:46:13:70:78:b5:13:73:82:32:44:46:06:9f:
b0:3b:3f:e6:fa:72:5b:09:55:ce:25:96:95:5f:bd:
dc:dc:f0:7f:bc:65:aa:f5:55:aa:5e:2c:09:d1:5c:
99:46:b7:9f:de:c9:57:bb:59:e1:7e:62:c9:4a:cd:
08:d3:63:62:75:92:03:dc:8f:2b:4a:9a:c8:e3:23:
24:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:DE:FD:4C:8F:BA:0B:A1:0F:BA:FD:5B:90:70:13:B1:64:3A:3A:0E
X509v3 Authority Key Identifier:
keyid:8A:48:C6:61:97:78:36:E9:09:31:37:17:F9:5F:66:75:2C:CD:EA:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ikjGYZd4NukJMTcX-V9mdSzN6j0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/8a3336-a99f-4f59-934e-064a35f8ca8c/1/hN79TI-6C6EPuv1bkHATsWQ6Og4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/8a3336-a99f-4f59-934e-064a35f8ca8c/1/ikjGYZd4NukJMTcX-V9mdSzN6j0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:8680::/29
Signature Algorithm: sha256WithRSAEncryption
17:c3:6a:22:82:01:5d:80:45:63:f4:65:d5:4e:51:11:56:c0:
6a:42:f7:a5:a9:95:7a:3b:7b:58:84:1a:da:09:51:a6:25:d7:
6f:2b:4e:b6:ac:c7:7c:5f:63:50:7c:fd:77:83:e2:ac:a4:68:
cd:44:e8:1b:a8:b9:88:6e:6e:4f:bc:6a:de:a9:f4:45:ff:d5:
54:c2:c0:e7:39:d8:79:14:67:e5:2e:ed:2b:40:c9:51:fe:c0:
95:9c:ed:bd:f1:6a:e9:df:d9:54:ee:61:d7:6c:aa:61:21:93:
0b:96:fa:c9:48:1d:cd:c9:0a:8a:64:40:1f:c7:65:c7:7b:c4:
02:09:ac:db:29:bd:6c:6c:8f:a6:3d:3c:77:ff:4e:70:d1:5f:
8a:0b:d1:a6:3b:19:cf:cd:73:6c:a0:fe:35:d0:9e:a7:ce:52:
de:c3:72:02:28:9d:35:31:f2:7e:5c:b4:20:6e:95:4f:ce:ef:
41:c4:be:15:c7:6a:d5:1c:09:6f:d0:fa:8b:5a:5e:8e:20:a8:
2e:9d:1f:19:7c:f8:dc:52:54:86:16:e9:ab:2d:01:da:33:b1:
db:84:5b:87:7f:a0:04:17:da:1b:bc:dd:d1:9e:1a:aa:84:ad:
ab:0a:aa:2a:23:d9:ea:b0:73:b1:5a:ab:c0:21:7c:ae:5b:d8:
a4:84:47:87
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgIEARP1XzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
YTQ4YzY2MTk3NzgzNmU5MDkzMTM3MTdmOTVmNjY3NTJjY2RlYTNkMB4XDTIyMDEw
MTEwNTU0OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODRkZWZkNGM4ZmJh
MGJhMTBmYmFmZDViOTA3MDEzYjE2NDNhM2EwZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALfyL5uvJcosXXlyJCFgUrG71SDHsBxVWPjkdORBZBCih8Xb
B3TObBCI5zO3w6V6YgRVe7Gk+pxFmzPbR81cR0lYZDcoamfrrJ4WuZJTLcHy5rzF
zQ3P6I34tPqZJTgJFF1wuA38FVXB5HzvMmcgHU9VRnHk8bhlVC/JJ33/NukEyLuZ
zBozfpoABkGMOFiSkn+8xyfJ8PvsSvDxCGeB+WCwJ77cjv5EzoZBaxek82TFXUKg
ShBGE3B4tRNzgjJERgafsDs/5vpyWwlVziWWlV+93Nzwf7xlqvVVql4sCdFcmUa3
n97JV7tZ4X5iyUrNCNNjYnWSA9yPK0qayOMjJGMCAwEAAaOCAgowggIGMB0GA1Ud
DgQWBBSE3v1Mj7oLoQ+6/VuQcBOxZDo6DjAfBgNVHSMEGDAWgBSKSMZhl3g26Qkx
Nxf5X2Z1LM3qPTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2lrakdZWmQ0TnVrSk1UY1gtVjltZFN6TjZqMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDMvOGEzMzM2LWE5OWYtNGY1OS05MzRlLTA2NGEzNWY4Y2E4Yy8x
L2hONzlUSS02QzZFUHV2MWJrSEFUc1dRNk9nNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDMv
OGEzMzM2LWE5OWYtNGY1OS05MzRlLTA2NGEzNWY4Y2E4Yy8xL2lrakdZWmQ0TnVr
Sk1UY1gtVjltZFN6TjZqMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAg
BggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFAyoRhoAwDQYJKoZIhvcNAQELBQAD
ggEBABfDaiKCAV2ARWP0ZdVOURFWwGpC96WplXo7e1iEGtoJUaYl128rTrasx3xf
Y1B8/XeD4qykaM1E6BuouYhubk+8at6p9EX/1VTCwOc52HkUZ+Uu7StAyVH+wJWc
7b3xaunf2VTuYddsqmEhkwuW+slIHc3JCopkQB/HZcd7xAIJrNspvWxsj6Y9PHf/
TnDRX4oL0aY7Gc/Nc2yg/jXQnqfOUt7DcgIonTUx8n5ctCBulU/O70HEvhXHatUc
CW/Q+otaXo4gqC6dHxl8+NxSVIYW6astAdozsduEW4d/oAQX2hu83dGeGqqErasK
qioj2eqwc7Faq8AhfK5b2KSER4c=
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:22 2023 by rpki-client on console.sobornost.net