Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/2077ba-1dc6-4117-bcb7-ab4cdf3145c9/1/wT68VHgRvIxwicc1GzvWpN0nJPo.roa
File: wT68VHgRvIxwicc1GzvWpN0nJPo.roa (raw, json)
Hash identifier: qvDKeie8BJKgdbRLxay0lMblFaidRY/sVM2rGy9DePA=
Subject key identifier: C1:3E:BC:54:78:11:BC:8C:70:89:C7:35:1B:3B:D6:A4:DD:27:24:FA
Certificate issuer: /CN=b70594f265f0c3eb00e7cfc28fec8590c8a632a5
Certificate serial: 097790B1
Authority key identifier: B7:05:94:F2:65:F0:C3:EB:00:E7:CF:C2:8F:EC:85:90:C8:A6:32:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/twWU8mXww-sA58_Cj-yFkMimMqU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/2077ba-1dc6-4117-bcb7-ab4cdf3145c9/1/wT68VHgRvIxwicc1GzvWpN0nJPo.roa
Signing time: Sat 01 Jan 2022 12:03:32 +0000
ROA not before: Sat 01 Jan 2022 12:03:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211578
IP address blocks: 2a0b:a280:12::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 158830769 (0x97790b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b70594f265f0c3eb00e7cfc28fec8590c8a632a5
Validity
Not Before: Jan 1 12:03:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c13ebc547811bc8c7089c7351b3bd6a4dd2724fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:9b:8e:fe:b8:b2:a0:e2:22:07:d3:1e:7c:41:
64:fe:86:4d:cc:fa:81:d1:21:64:b8:b5:2f:1a:a1:
36:0d:20:cf:b6:c0:74:0f:95:0c:a2:64:fb:b5:be:
26:02:b3:73:8a:08:8b:3a:00:31:f5:d1:98:58:36:
0b:d3:82:1c:26:bb:cd:f7:da:6d:a5:96:ba:ca:0e:
27:48:af:5b:df:96:86:da:55:ea:64:ac:96:0a:b7:
06:6e:5b:06:31:85:54:82:8a:d7:83:be:79:9b:c8:
18:7a:65:84:7d:b3:09:ce:8c:f6:db:7d:89:f2:08:
f3:af:41:33:35:e7:82:17:82:4c:b9:7a:08:eb:56:
cb:96:7c:97:7f:37:4e:68:cf:33:e7:6d:7c:f4:ba:
e8:bb:8b:aa:67:c7:e8:c9:20:34:6b:b7:0b:18:af:
a7:19:73:be:ce:57:eb:58:0d:9a:57:a7:58:44:f5:
bd:05:b3:8f:07:b4:7e:a1:dd:ef:f5:a0:c4:38:92:
8c:0d:0b:4d:05:ce:9f:d9:fe:0d:48:a5:b1:64:06:
74:03:4e:ab:06:b0:b5:9a:be:cc:d9:3e:26:b8:a4:
8f:b4:5c:a1:e1:43:8e:92:d5:06:fe:8c:1a:e3:f4:
54:f7:41:fe:f0:74:fa:14:46:3a:51:a1:b9:ed:9f:
43:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:3E:BC:54:78:11:BC:8C:70:89:C7:35:1B:3B:D6:A4:DD:27:24:FA
X509v3 Authority Key Identifier:
keyid:B7:05:94:F2:65:F0:C3:EB:00:E7:CF:C2:8F:EC:85:90:C8:A6:32:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/twWU8mXww-sA58_Cj-yFkMimMqU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/2077ba-1dc6-4117-bcb7-ab4cdf3145c9/1/wT68VHgRvIxwicc1GzvWpN0nJPo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/2077ba-1dc6-4117-bcb7-ab4cdf3145c9/1/twWU8mXww-sA58_Cj-yFkMimMqU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:a280:12::/48
Signature Algorithm: sha256WithRSAEncryption
83:8b:c5:44:04:c4:b8:73:cf:e4:bb:b4:92:7a:22:c3:e6:4e:
55:ad:63:0c:31:f9:c2:f4:48:d5:ec:dc:ed:01:31:7e:5b:a1:
9f:e6:01:99:e0:0c:ba:1c:e0:a1:26:09:d8:a1:b4:9f:ce:c6:
a9:d2:8f:aa:f9:2c:01:f4:1c:4e:21:5b:f1:c3:d1:13:7f:68:
bc:d4:16:9b:0e:cf:4c:97:ed:b1:92:7c:fa:db:05:5d:06:cc:
b2:69:c5:b2:ab:1a:39:f7:83:f2:75:71:8c:f9:b1:76:d1:2c:
af:1b:22:09:40:24:cf:a5:aa:cd:5a:e4:36:09:7d:7c:d4:24:
58:e8:ad:bb:10:65:81:fc:b5:e9:a9:a8:15:22:7e:6c:d9:a8:
d7:08:4a:29:dc:6f:c5:2b:cb:f4:a0:4f:ad:b7:99:31:92:57:
1c:ee:ca:37:6c:05:88:e1:18:4d:42:92:69:4d:22:5e:fa:70:
b7:81:8c:00:ce:fb:a8:45:aa:41:6a:c9:7a:a3:25:09:36:18:
f5:a8:24:44:94:e8:f5:1a:4d:2e:80:6e:2a:d6:d6:3f:b3:55:
d4:1e:c2:0a:a3:5a:02:cd:ac:e7:79:c5:44:02:36:f2:50:02:
c8:f8:d6:f0:85:11:fc:fe:79:30:5f:9d:d8:dd:d6:15:80:fb:
b8:a2:b9:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:50 2024 by rpki-client on console-ams.rpki-client.org