Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/28e56f-cf1a-43e0-84c3-52da8be640f4/1/cPVWb4LL92siEsYV7jBjkL4W12k.roa
File: cPVWb4LL92siEsYV7jBjkL4W12k.roa (raw, json)
Hash identifier: jOlZgqw1XVz79k+E6wTV4pKAX5A0FGoF3/YgaZFT2sI=
Subject key identifier: 70:F5:56:6F:82:CB:F7:6B:22:12:C6:15:EE:30:63:90:BE:16:D7:69
Certificate issuer: /CN=fbb330fac14c6216a74f5d9317544b63f2c118dc
Certificate serial: 085385A8
Authority key identifier: FB:B3:30:FA:C1:4C:62:16:A7:4F:5D:93:17:54:4B:63:F2:C1:18:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-7Mw-sFMYhanT12TF1RLY_LBGNw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/28e56f-cf1a-43e0-84c3-52da8be640f4/1/cPVWb4LL92siEsYV7jBjkL4W12k.roa
Signing time: Sat 01 Jan 2022 12:02:09 +0000
ROA not before: Sat 01 Jan 2022 12:02:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20473
IP address blocks: 2a04:5b81:2030::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139691432 (0x85385a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fbb330fac14c6216a74f5d9317544b63f2c118dc
Validity
Not Before: Jan 1 12:02:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=70f5566f82cbf76b2212c615ee306390be16d769
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:f9:27:23:95:22:5e:60:ca:29:57:f9:0e:6c:
c1:2e:1c:bd:bb:b4:47:92:7b:a1:86:ef:22:a2:01:
4d:08:31:aa:11:cd:a3:72:1c:b1:19:d1:ab:8c:23:
1e:e0:fd:36:a5:40:59:93:d8:5e:ad:04:f2:e5:28:
bc:02:cc:c5:35:9d:c3:7d:b7:71:59:26:57:f5:b8:
c0:f9:65:f9:12:ea:1b:cd:fa:70:c9:ea:d7:55:c5:
ab:4a:84:34:b3:1a:51:3c:ef:3e:9b:4f:2a:1f:46:
68:32:53:eb:ae:84:c5:a3:31:ea:d4:cd:b2:7f:22:
00:1a:3f:ca:b0:97:6f:27:2d:1a:12:15:24:c7:6f:
b8:8a:64:74:a5:44:00:6e:e2:a3:c5:a6:62:88:de:
41:a4:b1:96:7e:60:cd:72:4b:6f:5b:db:fa:7a:89:
78:a1:4f:ba:df:ce:d8:d7:82:c5:f0:f5:ba:84:06:
b3:92:ac:72:5a:a6:88:ae:a3:f7:82:17:ab:46:7b:
6a:e4:0e:71:33:cb:fe:ac:1f:d1:b3:b0:43:f1:47:
b7:37:76:52:7c:6c:e8:3f:82:ce:74:5e:5f:85:c3:
0e:2e:29:ec:90:fd:47:9f:0d:5a:8e:e6:01:b7:31:
ec:e5:cb:2c:30:fd:6a:8d:4b:55:9d:87:2d:82:e0:
b0:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:F5:56:6F:82:CB:F7:6B:22:12:C6:15:EE:30:63:90:BE:16:D7:69
X509v3 Authority Key Identifier:
keyid:FB:B3:30:FA:C1:4C:62:16:A7:4F:5D:93:17:54:4B:63:F2:C1:18:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-7Mw-sFMYhanT12TF1RLY_LBGNw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/28e56f-cf1a-43e0-84c3-52da8be640f4/1/cPVWb4LL92siEsYV7jBjkL4W12k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/28e56f-cf1a-43e0-84c3-52da8be640f4/1/1-7Mw-sFMYhanT12TF1RLY_LBGNw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:5b81:2030::/48
Signature Algorithm: sha256WithRSAEncryption
2b:97:5b:45:d7:b3:d7:b4:77:2b:da:af:f2:59:eb:c7:f7:1f:
9b:56:97:7d:d3:1f:7e:eb:30:5a:f1:99:4d:9c:86:4a:04:30:
0c:c7:b5:3f:4c:b2:7b:a6:3a:de:ce:04:4b:94:8a:33:44:cc:
ff:fd:22:14:81:31:2a:a1:0b:27:1a:ff:31:50:c3:b3:4a:78:
c1:f8:77:5f:60:5c:f7:98:53:81:e6:ec:bf:4d:26:49:45:44:
74:e0:5e:b9:d8:50:8c:ef:3d:a2:e9:1c:5d:18:65:bc:fc:fd:
c0:cd:2a:2c:93:a5:49:4c:5d:79:2d:c6:1c:ff:f5:85:ce:7a:
ad:92:73:87:10:34:32:77:b6:d9:c0:e0:16:f9:84:cf:6d:61:
88:38:f0:3e:c7:07:f0:97:14:1d:36:02:57:38:44:e1:de:f6:
d9:5b:e7:f2:c4:15:b9:7a:f9:03:55:05:80:75:d5:4a:75:9a:
48:e7:a7:e2:53:71:e2:27:a8:31:94:99:65:9e:fb:67:3d:cb:
61:29:b0:11:66:5c:db:ae:3f:47:b9:18:62:5c:26:b9:cd:ed:
52:38:c1:fb:a6:a9:f5:30:31:aa:20:4e:47:1b:35:d3:35:de:
e3:3c:d4:49:b0:5b:9c:59:9c:8d:93:3d:f8:15:bf:35:e6:5c:
11:17:9d:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:30 2023 by rpki-client on console-fra.rpki-client.org