Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ea6f71-49bc-43fa-a288-179ce9408242/1/rhuS56q70tgmbRjI0DrVWflZ_Zw.roa
File: rhuS56q70tgmbRjI0DrVWflZ_Zw.roa (raw, json)
Hash identifier: jPXhTVKQu3evUgOeG3gtJ3Rkd+ABQl385QFY0VXE60g=
Subject key identifier: AE:1B:92:E7:AA:BB:D2:D8:26:6D:18:C8:D0:3A:D5:59:F9:59:FD:9C
Certificate issuer: /CN=bfbf623f4c3ea3d1b969b405945177eebaaf9ecd
Certificate serial: 018486AD20963414C03464370EDB0C7A8BF8
Authority key identifier: BF:BF:62:3F:4C:3E:A3:D1:B9:69:B4:05:94:51:77:EE:BA:AF:9E:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v79iP0w-o9G5abQFlFF37rqvns0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ea6f71-49bc-43fa-a288-179ce9408242/1/rhuS56q70tgmbRjI0DrVWflZ_Zw.roa
Signing time: Thu 17 Nov 2022 17:40:03 +0000
ROA not before: Thu 17 Nov 2022 17:40:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 2a11:3680::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:86:ad:20:96:34:14:c0:34:64:37:0e:db:0c:7a:8b:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfbf623f4c3ea3d1b969b405945177eebaaf9ecd
Validity
Not Before: Nov 17 17:40:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ae1b92e7aabbd2d8266d18c8d03ad559f959fd9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:7f:83:bb:cb:44:ce:51:2c:91:e8:df:9c:75:
7e:b1:55:8f:6d:dd:0b:7f:71:75:3a:27:ad:5a:fe:
de:2f:6d:71:68:ae:ec:8d:97:d8:4d:6e:68:42:02:
3f:af:7b:21:20:b2:d6:e9:b6:6a:89:c2:6a:ca:bd:
ba:c7:3a:68:f6:28:a8:da:82:e4:8d:8d:10:9d:41:
8e:c4:76:96:94:f2:57:d5:06:64:56:f3:d9:8c:de:
6c:ae:9a:d3:8c:d5:df:7c:06:38:2e:c4:44:6f:5a:
e3:53:1b:fa:60:46:41:a8:0b:d8:88:ea:5e:fe:24:
c9:c8:ee:d9:6d:b9:5d:b1:a3:45:c4:ea:04:6c:5a:
16:54:37:80:83:5b:c0:55:86:58:60:b2:15:eb:91:
be:57:e3:bb:b7:f4:3d:e1:c1:92:60:35:06:85:70:
29:02:8a:a5:23:4b:22:47:f1:93:b4:26:65:94:5a:
64:be:ba:88:d6:ce:a8:fb:1f:2b:b0:af:4b:f6:95:
80:04:87:c6:05:c4:1c:14:02:75:99:c7:83:a7:7e:
24:bb:fa:89:f9:11:8c:52:d5:d5:4f:97:ec:38:c9:
b3:6c:db:ba:59:8c:04:d0:20:36:93:77:d8:09:6e:
06:5e:65:bb:93:d3:d1:95:a4:5a:74:2b:d8:66:12:
cd:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:1B:92:E7:AA:BB:D2:D8:26:6D:18:C8:D0:3A:D5:59:F9:59:FD:9C
X509v3 Authority Key Identifier:
keyid:BF:BF:62:3F:4C:3E:A3:D1:B9:69:B4:05:94:51:77:EE:BA:AF:9E:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v79iP0w-o9G5abQFlFF37rqvns0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ea6f71-49bc-43fa-a288-179ce9408242/1/rhuS56q70tgmbRjI0DrVWflZ_Zw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ea6f71-49bc-43fa-a288-179ce9408242/1/v79iP0w-o9G5abQFlFF37rqvns0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:3680::/29
Signature Algorithm: sha256WithRSAEncryption
05:35:7d:4b:31:c1:f1:e0:bf:65:c8:e5:3d:a7:17:8c:99:5c:
6d:6e:e8:08:71:05:e5:9e:ad:d8:e6:87:f5:99:ba:c4:90:b8:
79:b7:7a:1c:dd:be:6f:ba:96:c5:1c:6d:70:6b:01:3d:69:67:
5a:40:d2:b6:c1:5f:32:c7:7f:e2:ea:db:16:f3:ce:64:83:78:
5c:d6:51:8f:dd:ac:d2:e1:79:d3:08:ee:24:e8:7d:76:0f:d1:
8b:40:fd:d0:00:5f:9d:72:b1:69:f1:6e:f2:24:36:28:15:db:
d5:62:ef:c5:1e:3d:4c:f2:3d:46:c2:c2:8b:1f:15:40:d4:25:
30:d9:4f:3f:10:39:0d:90:b1:5d:2c:ae:53:53:8b:9c:b9:1b:
5b:d2:1a:a9:49:80:43:33:20:0e:33:b3:0f:dd:f4:c2:f5:42:
47:bc:c5:a4:58:20:93:bd:51:16:d4:c0:ec:bc:b5:19:83:25:
3f:f8:1a:99:05:26:6c:fc:8f:4b:69:0b:e5:fa:fb:70:c5:96:
00:33:2b:2f:29:97:02:9c:ad:db:b6:be:ba:f7:ab:96:5f:66:
50:5f:a3:f6:1b:a2:07:c5:a1:68:02:4a:74:2b:d7:6e:78:83:
da:74:2c:89:22:31:f0:8a:be:ab:e5:88:e0:f8:a3:a8:a6:fe:
16:ce:a6:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:01 2024 by rpki-client on console-ams.rpki-client.org