Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/b30fdb-32e3-4eb2-841f-8b20aa3baae9/1/KPtOJGE4hBrmiKi6iQz_vlmyF08.roa
File: KPtOJGE4hBrmiKi6iQz_vlmyF08.roa (raw, json)
Hash identifier: XdtpXpGNqGvmNa+mt996Is8xYAb6J/4KYp8mAbIyw5w=
Subject key identifier: 28:FB:4E:24:61:38:84:1A:E6:88:A8:BA:89:0C:FF:BE:59:B2:17:4F
Certificate issuer: /CN=0d03df51f0818531d8ade8208eb8225354116e80
Certificate serial: 037E21DA
Authority key identifier: 0D:03:DF:51:F0:81:85:31:D8:AD:E8:20:8E:B8:22:53:54:11:6E:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DQPfUfCBhTHYreggjrgiU1QRboA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/b30fdb-32e3-4eb2-841f-8b20aa3baae9/1/KPtOJGE4hBrmiKi6iQz_vlmyF08.roa
Signing time: Sat 01 Jan 2022 05:00:46 +0000
ROA not before: Sat 01 Jan 2022 05:00:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39110
IP address blocks: 2a10:9980:254::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58597850 (0x37e21da)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d03df51f0818531d8ade8208eb8225354116e80
Validity
Not Before: Jan 1 05:00:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=28fb4e246138841ae688a8ba890cffbe59b2174f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:bf:bd:c5:c4:4e:36:6c:d8:8f:de:79:5d:af:
17:45:be:18:fa:4c:16:db:19:8c:04:eb:62:a0:9c:
5d:d5:c7:9f:ad:56:84:11:a5:21:95:a6:c5:c0:67:
32:29:ae:04:e7:28:69:c5:db:96:d2:45:10:f7:9f:
15:d8:a5:87:e0:af:5a:a6:8f:bb:24:ac:9a:6a:8a:
f8:12:c0:44:af:00:15:56:73:82:a5:d4:ad:f5:13:
ed:e5:2d:de:94:58:1a:d9:b7:29:19:de:eb:c9:b1:
19:17:72:68:96:af:64:b1:22:07:de:e3:fe:3c:d8:
91:64:c6:78:f7:2f:ff:32:4c:c5:5b:98:a9:38:e8:
e6:96:fd:98:56:d5:a6:0d:d9:77:fc:aa:47:44:10:
f2:f0:16:dc:55:d3:c5:56:51:c7:88:21:85:09:b4:
8e:d3:50:c3:88:2b:cd:6d:b4:2d:14:d5:9b:20:f0:
7a:0f:5d:a2:17:2f:4a:79:a9:bb:a9:7d:aa:2c:db:
ff:44:76:95:fb:31:eb:fd:69:7c:c1:c6:a3:22:43:
df:96:3a:38:91:52:3f:a8:20:8f:b0:de:1a:9b:c0:
94:e8:4e:b3:33:a3:ff:b0:9a:fc:39:1c:c9:4d:83:
4a:99:b2:30:36:dd:67:55:d6:31:0f:3f:df:7b:2f:
5e:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:FB:4E:24:61:38:84:1A:E6:88:A8:BA:89:0C:FF:BE:59:B2:17:4F
X509v3 Authority Key Identifier:
keyid:0D:03:DF:51:F0:81:85:31:D8:AD:E8:20:8E:B8:22:53:54:11:6E:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DQPfUfCBhTHYreggjrgiU1QRboA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/b30fdb-32e3-4eb2-841f-8b20aa3baae9/1/KPtOJGE4hBrmiKi6iQz_vlmyF08.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/b30fdb-32e3-4eb2-841f-8b20aa3baae9/1/DQPfUfCBhTHYreggjrgiU1QRboA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:9980:254::/48
Signature Algorithm: sha256WithRSAEncryption
93:54:e4:cf:97:90:31:0f:ba:4e:6d:74:64:1b:03:f6:b0:3c:
78:d1:d1:36:d9:8e:d6:43:d2:fb:f3:ea:22:01:96:83:b6:3d:
5a:1e:d5:16:28:a7:59:03:a7:78:91:f2:54:c1:81:d4:82:07:
91:be:83:98:e5:65:b3:2d:2a:de:06:db:42:29:d5:56:29:15:
13:bc:dc:e6:a2:c8:c1:17:dc:71:5e:88:05:ac:a3:27:d1:0e:
09:82:84:a6:4c:47:a5:06:89:6a:31:79:e8:a8:d5:27:b0:bd:
c9:3e:11:f4:23:88:03:3b:92:cb:df:c9:9e:2a:ee:ed:c6:7c:
d1:c2:76:8b:f8:de:38:3c:9e:5d:2c:6c:f6:97:cd:8f:46:c8:
fc:4a:a9:07:b2:90:de:df:c6:e7:39:53:7d:0d:d0:e0:7d:ca:
6e:e3:49:af:f4:4b:59:ce:8a:64:87:c8:7a:a2:e3:cb:f7:6e:
46:ba:01:0a:fb:4e:a4:20:68:47:0b:61:26:36:5b:6d:ec:dd:
d7:f6:22:c0:30:cb:cf:96:86:be:94:e0:ff:63:c0:53:c6:10:
d4:2d:77:3a:97:d4:5c:aa:f3:aa:91:75:41:1a:9c:8e:90:3d:
18:6a:e4:f9:53:ae:6b:99:02:1a:73:f5:91:2c:6e:8c:51:6f:
91:f2:7b:8c
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEA34h2jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
ZDAzZGY1MWYwODE4NTMxZDhhZGU4MjA4ZWI4MjI1MzU0MTE2ZTgwMB4XDTIyMDEw
MTA1MDA0NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjhmYjRlMjQ2MTM4
ODQxYWU2ODhhOGJhODkwY2ZmYmU1OWIyMTc0ZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOS/vcXETjZs2I/eeV2vF0W+GPpMFtsZjATrYqCcXdXHn61W
hBGlIZWmxcBnMimuBOcoacXbltJFEPefFdilh+CvWqaPuySsmmqK+BLARK8AFVZz
gqXUrfUT7eUt3pRYGtm3KRne68mxGRdyaJavZLEiB97j/jzYkWTGePcv/zJMxVuY
qTjo5pb9mFbVpg3Zd/yqR0QQ8vAW3FXTxVZRx4ghhQm0jtNQw4grzW20LRTVmyDw
eg9dohcvSnmpu6l9qizb/0R2lfsx6/1pfMHGoyJD35Y6OJFSP6ggj7DeGpvAlOhO
szOj/7Ca/DkcyU2DSpmyMDbdZ1XWMQ8/33svXqsCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBQo+04kYTiEGuaIqLqJDP++WbIXTzAfBgNVHSMEGDAWgBQNA99R8IGFMdit
6CCOuCJTVBFugDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0RRUGZVZkNCaFRIWXJlZ2dqcmdpVTFRUmJvQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODgvYjMwZmRiLTMyZTMtNGViMi04NDFmLThiMjBhYTNiYWFlOS8x
L0tQdE9KR0U0aEJybWlLaTZpUXpfdmxteUYwOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODgv
YjMwZmRiLTMyZTMtNGViMi04NDFmLThiMjBhYTNiYWFlOS8xL0RRUGZVZkNCaFRI
WXJlZ2dqcmdpVTFRUmJvQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoQmYACVDANBgkqhkiG9w0BAQsF
AAOCAQEAk1Tkz5eQMQ+6Tm10ZBsD9rA8eNHRNtmO1kPS+/PqIgGWg7Y9Wh7VFiin
WQOneJHyVMGB1IIHkb6DmOVlsy0q3gbbQinVVikVE7zc5qLIwRfccV6IBayjJ9EO
CYKEpkxHpQaJajF56KjVJ7C9yT4R9COIAzuSy9/Jniru7cZ80cJ2i/jeODyeXSxs
9pfNj0bI/EqpB7KQ3t/G5zlTfQ3Q4H3KbuNJr/RLWc6KZIfIeqLjy/duRroBCvtO
pCBoRwthJjZbbezd1/YiwDDLz5aGvpTg/2PAU8YQ1C13OpfUXKrzqpF1QRqcjpA9
GGrk+VOua5kCGnP1kSxujFFvkfJ7jA==
-----END CERTIFICATE-----
Generated at Wed Apr 30 05:28:30 2025 by rpki-client