Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/4d693f-5369-411b-add3-564ae771b1a4/1/ylPemJyaGYaIfqbsq_Z0ABEKV_Q.roa
File: ylPemJyaGYaIfqbsq_Z0ABEKV_Q.roa (raw, json)
Hash identifier: uQclnKBalvtfws6NUjif4G/xcpXj8LpYksXbdFE73/g=
Subject key identifier: CA:53:DE:98:9C:9A:19:86:88:7E:A6:EC:AB:F6:74:00:11:0A:57:F4
Certificate issuer: /CN=849ff2cc8e0b8ac046f7a49a5e3268dd402a5907
Certificate serial: A14935
Authority key identifier: 84:9F:F2:CC:8E:0B:8A:C0:46:F7:A4:9A:5E:32:68:DD:40:2A:59:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hJ_yzI4LisBG96SaXjJo3UAqWQc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/4d693f-5369-411b-add3-564ae771b1a4/1/ylPemJyaGYaIfqbsq_Z0ABEKV_Q.roa
Signing time: Sat 01 Jan 2022 00:51:35 +0000
ROA not before: Sat 01 Jan 2022 00:51:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 18779
IP address blocks: 2a11:5840::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10570037 (0xa14935)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=849ff2cc8e0b8ac046f7a49a5e3268dd402a5907
Validity
Not Before: Jan 1 00:51:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ca53de989c9a1986887ea6ecabf67400110a57f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:6d:44:72:a5:a1:d7:de:e1:75:ed:71:7e:db:
28:e4:08:5f:d7:21:d3:db:34:90:66:df:68:4a:2a:
5f:e0:d6:a9:d6:dd:8d:74:74:d5:d3:6c:ec:e9:a9:
25:18:99:47:d4:be:68:e2:a9:25:af:3a:07:21:cb:
e7:d0:d3:8f:b3:99:fa:fe:6f:9b:89:d5:ab:12:49:
46:6a:c5:b7:8f:20:1a:6e:34:25:8f:f3:b9:49:d7:
fb:6a:59:92:a0:27:71:a6:a1:78:bd:7e:d2:b9:97:
98:90:95:ef:e8:a6:53:47:1b:8c:42:04:d6:cb:e6:
e1:5e:2a:e8:53:26:c5:47:97:55:75:1f:c7:c8:e3:
b4:85:6f:62:ae:c0:83:56:a3:e6:94:a8:84:35:3d:
36:55:ec:ce:2c:79:3f:78:bd:ae:a0:ae:af:59:3c:
9b:8c:19:c6:1d:31:55:e0:a0:1d:e2:a0:48:d4:f5:
5c:5d:1b:8e:af:e4:c7:ab:32:01:5d:fd:98:7d:19:
ad:77:d0:1c:df:8d:d9:33:d4:60:69:0e:38:48:d6:
fd:76:d2:88:51:e0:ac:11:a9:1e:b5:39:f0:da:1c:
97:88:cb:ab:72:6b:14:5f:c1:c5:1c:cf:50:eb:9c:
00:77:f8:2e:f5:48:93:a6:5b:51:80:c5:63:07:b8:
2f:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:53:DE:98:9C:9A:19:86:88:7E:A6:EC:AB:F6:74:00:11:0A:57:F4
X509v3 Authority Key Identifier:
keyid:84:9F:F2:CC:8E:0B:8A:C0:46:F7:A4:9A:5E:32:68:DD:40:2A:59:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hJ_yzI4LisBG96SaXjJo3UAqWQc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/4d693f-5369-411b-add3-564ae771b1a4/1/ylPemJyaGYaIfqbsq_Z0ABEKV_Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/4d693f-5369-411b-add3-564ae771b1a4/1/hJ_yzI4LisBG96SaXjJo3UAqWQc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:5840::/29
Signature Algorithm: sha256WithRSAEncryption
d5:4f:8b:fa:3f:4d:7c:e6:4c:12:46:bb:17:2f:cb:63:0c:eb:
78:d0:ba:80:45:2b:42:5a:c4:79:39:d7:97:8c:b7:32:c8:e8:
fc:5e:e4:ec:8b:9b:d1:45:ab:f3:b0:d9:a5:f2:d4:93:1a:54:
c5:7c:0a:54:94:dc:a7:61:2f:81:0c:a6:62:be:50:33:7d:cf:
2c:9e:c7:28:e3:35:59:84:54:31:ec:ea:a3:78:9f:b8:8f:04:
7c:8b:86:9b:a5:d5:04:d1:a7:ef:68:72:d5:e1:2f:0a:c9:92:
b3:26:62:1d:6e:84:d9:f2:96:f0:f8:9e:22:92:4b:54:8b:01:
52:bc:fc:e7:d8:e1:85:50:56:1d:fd:1d:e8:11:22:9f:18:8e:
f5:3d:f3:2d:da:18:5c:13:07:07:7f:78:5f:d7:e9:c5:6b:31:
ff:c5:1d:e6:04:12:ef:ca:ec:c3:4e:6f:ad:ce:8f:7e:69:96:
95:88:59:ab:9c:c9:9d:63:ab:88:d9:10:dd:68:38:41:25:75:
53:e5:2e:2b:27:0a:aa:76:56:24:00:36:73:31:70:63:27:7b:
77:c5:9a:e5:0e:c3:9f:72:49:51:ab:fe:68:6a:47:61:87:eb:
22:26:07:b2:71:b4:7a:2e:5e:fe:71:ee:04:a8:42:c4:bf:5a:
10:f0:2d:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:08 2024 by rpki-client on console-ams.rpki-client.org