Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/c2cfaf-b1ae-46d8-92a7-d0174a7138a4/1/pY-6u_KuUjO7-HvTy52ikCiNgaI.roa
File: pY-6u_KuUjO7-HvTy52ikCiNgaI.roa (raw, json)
Hash identifier: xuA22J+tWN6flU6Xn/HE10AV+dYgIW7/oMTKmR0eTWI=
Subject key identifier: A5:8F:BA:BB:F2:AE:52:33:BB:F8:7B:D3:CB:9D:A2:90:28:8D:81:A2
Certificate issuer: /CN=74c17c3f45fc59ee6675f10914ec3a9e68b7238f
Certificate serial: 05319000
Authority key identifier: 74:C1:7C:3F:45:FC:59:EE:66:75:F1:09:14:EC:3A:9E:68:B7:23:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dMF8P0X8We5mdfEJFOw6nmi3I48.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/c2cfaf-b1ae-46d8-92a7-d0174a7138a4/1/pY-6u_KuUjO7-HvTy52ikCiNgaI.roa
Signing time: Sat 01 Jan 2022 16:04:54 +0000
ROA not before: Sat 01 Jan 2022 16:04:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42505
IP address blocks: 2a06:5cc0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87134208 (0x5319000)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74c17c3f45fc59ee6675f10914ec3a9e68b7238f
Validity
Not Before: Jan 1 16:04:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a58fbabbf2ae5233bbf87bd3cb9da290288d81a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:32:92:ca:6e:9e:80:a6:ff:9c:ac:02:1c:72:
a6:32:d3:f2:4a:17:6f:db:94:c7:f5:d1:1c:be:d7:
6c:95:71:1e:08:10:0a:3b:b9:a7:26:ba:e5:14:f1:
4b:7e:99:4d:cb:b3:57:a3:fc:4d:9b:31:c4:e2:9f:
f3:f6:b1:56:f8:09:57:ea:03:d2:d5:44:08:b6:79:
c9:ad:20:1e:e6:40:de:d1:a4:9b:03:8b:17:df:f0:
1e:33:38:55:e6:82:93:ed:78:14:e3:ac:07:7c:75:
bc:5d:d6:aa:4c:d2:c8:a6:91:31:03:f7:cd:5b:7d:
ad:6a:15:0b:1d:c6:0d:80:8f:e2:74:35:46:66:c5:
d2:ec:13:09:57:4a:f7:5a:7f:22:71:fa:ea:f9:e2:
9b:fa:4c:da:fc:30:2d:c8:27:e5:0b:71:ed:9f:39:
7c:b6:09:22:18:35:e7:9b:f7:4c:d8:a8:b3:b1:55:
e0:d8:e0:d3:0e:6a:da:78:d0:57:b8:b9:77:b5:48:
33:47:51:d0:16:6c:1d:2c:df:69:64:75:11:81:93:
d7:ad:93:13:46:1a:2d:0b:c3:be:cf:91:19:93:bb:
83:a5:36:e9:be:00:b8:28:a3:f4:cf:96:27:6b:5d:
30:e8:a5:0e:3e:32:b2:f3:55:68:25:e7:78:b8:82:
1e:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:8F:BA:BB:F2:AE:52:33:BB:F8:7B:D3:CB:9D:A2:90:28:8D:81:A2
X509v3 Authority Key Identifier:
keyid:74:C1:7C:3F:45:FC:59:EE:66:75:F1:09:14:EC:3A:9E:68:B7:23:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dMF8P0X8We5mdfEJFOw6nmi3I48.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/c2cfaf-b1ae-46d8-92a7-d0174a7138a4/1/pY-6u_KuUjO7-HvTy52ikCiNgaI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/c2cfaf-b1ae-46d8-92a7-d0174a7138a4/1/dMF8P0X8We5mdfEJFOw6nmi3I48.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:5cc0::/29
Signature Algorithm: sha256WithRSAEncryption
85:2d:28:1a:51:f7:52:03:a9:39:a2:08:a1:7f:d1:dd:fc:76:
05:96:36:c0:47:2d:81:60:f5:85:ee:cf:b4:1c:88:5b:5e:38:
97:8e:c9:52:c0:47:f3:43:f3:47:4a:bd:d9:72:18:e8:ea:69:
a2:a4:41:63:41:45:8d:71:64:2d:8a:a3:18:28:21:80:17:af:
3e:f1:dc:e9:d6:8e:a0:d9:55:a6:e3:4d:87:b0:23:62:62:a4:
f0:1f:1f:81:a8:12:d5:a1:fa:9d:c9:b1:2a:30:92:04:ba:91:
39:ef:d8:7f:bd:fb:f8:79:ef:ce:c2:c9:51:aa:ee:b7:07:74:
16:b2:02:cf:06:1e:ee:7e:85:63:ba:08:40:7b:14:ac:50:30:
05:ec:ad:0a:b0:66:83:77:9d:51:58:2e:87:d2:b7:0d:f5:04:
ee:e4:ca:b7:5f:c1:cb:65:ed:73:ff:e2:09:1b:6d:9e:f9:8f:
68:65:1c:08:be:d6:ca:43:11:a4:38:ae:77:bf:43:ee:2c:da:
ba:35:28:76:99:b0:98:23:26:38:95:65:2a:ac:12:d3:d2:af:
91:77:50:c4:a6:b6:7c:ac:d9:24:d5:40:d1:88:1f:8d:37:37:
9b:30:b3:68:27:40:eb:94:1b:09:64:be:b4:f3:dd:c8:fc:67:
fe:d7:e1:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:26 2024 by rpki-client on console-fra.rpki-client.org