Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/2ed4d1-0705-43e5-a60a-be100907f106/1/hdBY8LLPCMcLlFz90vBHJHoCocA.roa
File: hdBY8LLPCMcLlFz90vBHJHoCocA.roa (raw, json)
Hash identifier: /kJAJQyb22o7qtK075tksjCjYi0TJ1uZDffkd0+X3Vk=
Subject key identifier: 85:D0:58:F0:B2:CF:08:C7:0B:94:5C:FD:D2:F0:47:24:7A:02:A1:C0
Certificate issuer: /CN=1eb3528d61f2cf02baab2b40d0cc33255b4006f4
Certificate serial: 01856B8A034A9975BCF226F07C7554C25005
Authority key identifier: 1E:B3:52:8D:61:F2:CF:02:BA:AB:2B:40:D0:CC:33:25:5B:40:06:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HrNSjWHyzwK6qytA0MwzJVtABvQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/2ed4d1-0705-43e5-a60a-be100907f106/1/hdBY8LLPCMcLlFz90vBHJHoCocA.roa
Signing time: Sun 01 Jan 2023 04:14:44 +0000
ROA not before: Sun 01 Jan 2023 04:14:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206613
IP address blocks: 2001:678:320::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:8a:03:4a:99:75:bc:f2:26:f0:7c:75:54:c2:50:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1eb3528d61f2cf02baab2b40d0cc33255b4006f4
Validity
Not Before: Jan 1 04:14:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=85d058f0b2cf08c70b945cfdd2f047247a02a1c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:89:81:3c:d9:d0:26:bf:2b:fc:05:c8:75:b4:
c8:9b:b7:0f:97:df:3e:57:62:4a:ba:f2:63:17:a2:
f0:76:a7:bd:45:0d:13:35:8c:b1:49:84:13:fb:57:
f3:cd:9a:f9:0d:74:09:0d:d4:a5:db:85:1c:3d:99:
3d:d5:85:f1:d8:2f:4c:83:70:5f:b1:08:d3:39:c1:
72:5b:56:12:71:fb:97:62:13:af:e2:92:f4:d3:aa:
a0:8f:89:e5:3e:98:9b:77:8d:10:1c:51:f1:25:dc:
d4:95:fa:68:46:2a:46:73:a0:ea:96:f4:e0:74:77:
78:42:33:a6:c4:77:f7:fb:18:da:ea:49:e5:0a:ae:
44:01:68:e8:84:a0:54:26:53:4a:93:c9:96:3d:71:
a6:e2:e7:4b:6d:dd:ac:cd:b0:c7:05:ca:65:9d:69:
22:50:88:f3:43:bc:d7:28:75:27:8b:ed:19:fa:62:
f9:91:07:d5:cf:76:bd:43:6a:3d:21:d2:79:18:91:
5d:6f:c8:6b:d6:b7:e6:09:4b:91:ca:27:9c:ef:bd:
38:55:86:72:7a:c9:5c:a7:b5:8f:e6:d2:87:9a:26:
2d:77:40:a5:70:97:5b:14:61:f2:00:bc:86:6c:42:
56:c1:ca:93:1d:46:e6:2b:d5:a0:cb:ff:c9:58:53:
f8:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:D0:58:F0:B2:CF:08:C7:0B:94:5C:FD:D2:F0:47:24:7A:02:A1:C0
X509v3 Authority Key Identifier:
keyid:1E:B3:52:8D:61:F2:CF:02:BA:AB:2B:40:D0:CC:33:25:5B:40:06:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HrNSjWHyzwK6qytA0MwzJVtABvQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/2ed4d1-0705-43e5-a60a-be100907f106/1/hdBY8LLPCMcLlFz90vBHJHoCocA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/2ed4d1-0705-43e5-a60a-be100907f106/1/HrNSjWHyzwK6qytA0MwzJVtABvQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:320::/48
Signature Algorithm: sha256WithRSAEncryption
a2:c2:25:39:74:a0:32:4b:e5:cf:d6:ea:84:d9:9d:11:cb:a1:
96:04:07:e5:97:3d:fd:a7:00:b4:00:70:77:86:3f:6b:9c:7b:
28:e3:d0:84:17:19:c8:ac:c3:d4:47:ed:d2:14:e9:b4:25:be:
00:97:07:d8:81:f3:62:a4:59:09:0b:4a:45:2f:5d:79:74:c8:
42:9b:d0:da:e0:83:cd:89:1f:40:68:1b:34:b8:51:0f:b2:a5:
f8:3c:80:ae:7d:30:3a:54:dd:90:48:d0:85:b1:5d:9a:d3:68:
f8:ee:16:2e:58:61:dc:53:10:da:17:46:87:20:0f:cc:70:60:
ec:64:2f:b4:72:a4:28:e8:32:79:5a:de:9f:ed:ea:50:03:86:
43:77:70:00:3e:1d:3f:58:eb:0e:96:75:fc:a9:71:8c:d4:a6:
85:76:4c:0b:39:4d:29:0f:8a:49:99:6e:1b:bf:44:ea:c1:96:
b5:cf:33:ad:5e:42:4f:d3:42:60:c8:69:89:ac:19:8b:9e:91:
03:73:cb:24:72:b6:1c:78:a3:e8:4c:e3:45:8a:60:cb:b0:9e:
92:ca:5f:4d:79:dd:8e:db:7a:05:7c:d4:2e:fc:08:86:ae:70:
ce:35:59:68:08:c3:a1:7d:d4:aa:db:b1:44:08:ec:e8:de:9e:
63:d6:af:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 23 14:51:20 2023 by rpki-client on console-ams.rpki-client.org