Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/6b226a-94b4-4111-8b57-c81ddcb454bc/1/5hUh2HggWnKh3qbDK50vyRdPAik.roa
File: 5hUh2HggWnKh3qbDK50vyRdPAik.roa (raw, json)
Hash identifier: dZHZOCb7gzn/PQnpO55CLHBRCsvl5vIHd/62MZudnPQ=
Subject key identifier: E6:15:21:D8:78:20:5A:72:A1:DE:A6:C3:2B:9D:2F:C9:17:4F:02:29
Certificate issuer: /CN=72e4f7b9229c5d6583880840b70c96a508fd07fe
Certificate serial: 0184D2C1B6CE1A9E794AE548E7CB387705BD
Authority key identifier: 72:E4:F7:B9:22:9C:5D:65:83:88:08:40:B7:0C:96:A5:08:FD:07:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cuT3uSKcXWWDiAhAtwyWpQj9B_4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/6b226a-94b4-4111-8b57-c81ddcb454bc/1/5hUh2HggWnKh3qbDK50vyRdPAik.roa
Signing time: Fri 02 Dec 2022 12:13:41 +0000
ROA not before: Fri 02 Dec 2022 12:13:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210072
IP address blocks: 2a10:4a80::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:d2:c1:b6:ce:1a:9e:79:4a:e5:48:e7:cb:38:77:05:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72e4f7b9229c5d6583880840b70c96a508fd07fe
Validity
Not Before: Dec 2 12:13:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e61521d878205a72a1dea6c32b9d2fc9174f0229
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:e5:14:0b:4b:97:cb:0f:0b:8b:31:64:35:8d:
80:f3:fb:dc:81:7a:3f:67:f3:18:4d:1a:1e:54:69:
7f:1a:22:c1:06:73:82:10:57:f7:47:9a:21:35:a5:
c5:2f:67:f3:44:88:82:43:c3:9c:65:09:ff:0e:73:
54:d8:1f:b8:80:5f:3a:1a:ef:74:48:d1:b8:3a:5f:
08:a5:cc:38:4d:52:3f:1d:dc:55:d4:e5:f7:1a:03:
7e:2e:08:02:50:93:5a:b2:52:de:9a:54:e9:32:e8:
c3:e9:7f:a9:f4:48:d7:81:33:98:20:01:df:09:fb:
04:0e:f5:b6:2e:35:64:9c:00:97:a5:a2:11:7f:a5:
14:b9:8d:be:74:5e:46:a7:ad:f6:03:21:32:eb:b2:
ba:1b:e3:21:4e:c4:8f:af:86:4e:9e:bf:59:b2:0e:
c8:7e:d3:cd:9b:45:4a:27:8b:e9:9b:29:6b:09:58:
d0:a9:43:16:4c:a9:93:eb:83:32:52:ca:f0:12:91:
e3:cd:27:e3:3d:75:5e:6c:92:c4:ae:95:f6:4f:67:
61:70:b0:f7:4c:db:41:74:e4:01:c2:ee:5a:45:b6:
16:78:fb:21:5b:5d:8b:ea:1a:fa:89:de:2e:e8:ff:
8d:49:bb:8f:aa:87:e7:5f:6e:4c:e1:8c:e8:73:63:
c2:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:15:21:D8:78:20:5A:72:A1:DE:A6:C3:2B:9D:2F:C9:17:4F:02:29
X509v3 Authority Key Identifier:
keyid:72:E4:F7:B9:22:9C:5D:65:83:88:08:40:B7:0C:96:A5:08:FD:07:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cuT3uSKcXWWDiAhAtwyWpQj9B_4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/6b226a-94b4-4111-8b57-c81ddcb454bc/1/5hUh2HggWnKh3qbDK50vyRdPAik.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/6b226a-94b4-4111-8b57-c81ddcb454bc/1/cuT3uSKcXWWDiAhAtwyWpQj9B_4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:4a80::/32
Signature Algorithm: sha256WithRSAEncryption
6c:ed:27:1e:7c:96:19:3c:da:d4:4a:2b:07:91:a3:a4:8e:99:
96:44:02:df:69:6c:b7:db:ec:cc:6a:d4:b6:ee:c4:f0:b1:74:
e5:21:23:78:bf:10:99:40:b5:b0:5a:92:62:3f:c3:23:2d:d6:
5f:7e:6e:5f:cc:a5:3b:01:e3:97:c7:60:48:22:33:3a:5f:08:
b4:c3:34:df:e5:17:1d:9b:97:da:72:a1:76:a0:fc:48:e6:d9:
c6:4c:ee:eb:18:43:05:16:e6:a1:50:53:4c:d3:6e:7e:4b:4f:
87:20:4e:ec:dc:f2:e2:2a:71:cb:dd:6a:0b:9a:d9:e8:3f:0a:
8b:0d:54:11:0e:89:6c:98:a3:36:ad:87:dc:b2:35:d4:fa:a0:
5d:62:0b:a7:74:fd:96:a5:7c:00:ce:ec:f2:71:9f:d8:85:96:
88:f0:ed:a4:52:1b:51:01:ad:0b:9d:a8:ba:06:28:5b:6b:13:
ab:0d:a0:c6:a0:b8:50:22:0c:6f:04:06:35:df:7b:94:53:e2:
6e:08:6e:1b:c2:1f:24:9f:24:26:d2:cb:ae:e0:e5:e3:55:4c:
b9:a9:88:f7:be:72:c6:8b:21:ef:ea:28:e3:0d:cc:33:68:11:
77:59:f0:8c:51:7b:44:75:75:be:6d:68:34:65:62:af:50:dc:
90:42:62:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:04 2024 by rpki-client on console-ams.rpki-client.org