Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/15b08a-0299-401a-947f-69967100f868/1/cxxFwBBqejJnEiT9Rp0IT1F8uPY.roa
File: cxxFwBBqejJnEiT9Rp0IT1F8uPY.roa (raw, json)
Hash identifier: pB5A3MFM6b6DmBvu/d/5xrnPTZyPJcgYFvTfClxHDqw=
Subject key identifier: 73:1C:45:C0:10:6A:7A:32:67:12:24:FD:46:9D:08:4F:51:7C:B8:F6
Certificate issuer: /CN=e4adcd7a10cea1b5bd27ac8582e7d8062620dae7
Certificate serial: 01856C0123F0C05FB040BCEADAD008F2CB19
Authority key identifier: E4:AD:CD:7A:10:CE:A1:B5:BD:27:AC:85:82:E7:D8:06:26:20:DA:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5K3NehDOobW9J6yFgufYBiYg2uc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/15b08a-0299-401a-947f-69967100f868/1/cxxFwBBqejJnEiT9Rp0IT1F8uPY.roa
Signing time: Sun 01 Jan 2023 06:24:52 +0000
ROA not before: Sun 01 Jan 2023 06:24:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 22773
IP address blocks: 2a11:98c0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:01:23:f0:c0:5f:b0:40:bc:ea:da:d0:08:f2:cb:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4adcd7a10cea1b5bd27ac8582e7d8062620dae7
Validity
Not Before: Jan 1 06:24:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=731c45c0106a7a32671224fd469d084f517cb8f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:0e:fd:7c:d0:dc:aa:aa:45:7d:cd:13:ec:b5:
da:c7:38:44:28:0b:d4:0d:59:50:35:16:43:7e:76:
b5:e9:81:42:55:bb:b4:6f:89:1f:08:0a:5c:2c:ce:
71:b0:66:74:fd:3a:10:97:0c:87:1c:3c:a1:0d:f6:
b8:83:32:3d:4d:84:c2:0e:ea:b6:10:46:1f:a0:8b:
ba:21:43:2c:f4:a9:bd:1e:5e:4e:0c:e3:ee:3c:01:
f9:f1:90:d2:fa:e4:54:af:3a:c3:27:b8:75:36:84:
1d:da:41:7a:12:15:9d:13:72:c3:71:d8:da:24:71:
71:10:25:fd:ef:70:99:24:5c:09:e8:bb:15:8c:78:
5f:31:63:5c:9e:a2:51:e9:7d:f1:d9:73:91:f3:34:
5c:91:08:bf:33:69:e5:2d:6a:18:24:91:bd:03:26:
4d:be:40:95:23:ef:32:02:22:2c:ac:ee:52:c9:dd:
d0:83:a9:fb:7c:da:10:46:05:a2:58:2f:98:18:91:
ba:fa:17:db:f8:9f:84:a2:41:22:6d:ef:bb:47:40:
fb:01:07:c3:ab:80:45:64:c8:b6:06:ca:64:b4:bd:
7c:76:2c:e9:13:d5:30:74:53:79:c7:da:e2:7b:90:
11:47:76:74:de:ca:e7:1b:c5:f5:6f:c7:21:b4:97:
3f:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:1C:45:C0:10:6A:7A:32:67:12:24:FD:46:9D:08:4F:51:7C:B8:F6
X509v3 Authority Key Identifier:
keyid:E4:AD:CD:7A:10:CE:A1:B5:BD:27:AC:85:82:E7:D8:06:26:20:DA:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5K3NehDOobW9J6yFgufYBiYg2uc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/15b08a-0299-401a-947f-69967100f868/1/cxxFwBBqejJnEiT9Rp0IT1F8uPY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/15b08a-0299-401a-947f-69967100f868/1/5K3NehDOobW9J6yFgufYBiYg2uc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:98c0::/29
Signature Algorithm: sha256WithRSAEncryption
9b:0c:58:34:d7:36:6b:0f:31:5e:64:6d:ba:73:ec:34:80:00:
1e:f2:e2:b8:14:a3:4d:0a:5f:f0:cd:5f:7d:c5:49:43:37:06:
ed:52:a6:09:9a:09:6f:6e:d2:43:49:66:12:ed:e9:47:56:3b:
20:c5:dc:98:db:7a:30:b1:78:4c:a7:9f:94:23:fa:8b:a7:cb:
57:fc:8a:43:2e:2a:ef:a7:94:bb:e6:31:76:c3:2d:e5:0c:a0:
9e:1e:38:cf:44:b8:2b:49:a3:8c:7f:eb:1d:6e:64:42:bd:82:
a4:6d:4c:2a:21:a7:b0:a9:55:52:a2:9d:6c:14:af:08:5f:c9:
74:93:fe:1a:b3:3f:1e:d0:8f:a0:f5:d0:66:19:b8:97:2c:6a:
c2:22:3e:2d:a8:be:e4:d4:29:4d:aa:83:33:a7:57:51:66:a9:
cb:d0:10:30:33:69:06:c2:6d:ae:49:da:87:dc:e8:76:d0:da:
fc:d4:97:a2:58:3b:9a:27:57:7a:18:93:5e:76:72:02:17:57:
8d:d1:e9:d5:eb:69:1b:93:a1:a5:49:a9:63:c9:f5:6c:a5:5a:
80:7b:6e:2c:bd:69:b9:f2:41:e0:41:6a:a9:94:c7:de:9f:3c:
78:fe:03:16:ff:66:5b:1f:b7:14:56:1c:63:c1:76:c1:35:c7:
53:1e:7d:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 20 08:03:56 2023 by rpki-client on console-fra.rpki-client.org