Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/de08a1-f083-4340-af3e-bfe801a45f1e/1/52qG0BW7r0VErnItXqhsyk8MKNQ.roa
File: 52qG0BW7r0VErnItXqhsyk8MKNQ.roa (raw, json)
Hash identifier: enEX2UGT4ASHUVOoiqAfgw5Uy1sNOArhPrMcpTQUEq0=
Subject key identifier: E7:6A:86:D0:15:BB:AF:45:44:AE:72:2D:5E:A8:6C:CA:4F:0C:28:D4
Certificate issuer: /CN=d251a73c2a9bb6f9d5c88e0b39888c8a95c57f82
Certificate serial: 0186130573499286F3BB137BBD8FCF503636
Authority key identifier: D2:51:A7:3C:2A:9B:B6:F9:D5:C8:8E:0B:39:88:8C:8A:95:C5:7F:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0lGnPCqbtvnVyI4LOYiMipXFf4I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/de08a1-f083-4340-af3e-bfe801a45f1e/1/52qG0BW7r0VErnItXqhsyk8MKNQ.roa
Signing time: Thu 02 Feb 2023 16:46:09 +0000
ROA not before: Thu 02 Feb 2023 16:46:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56884
IP address blocks: 2a13:9200::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:13:05:73:49:92:86:f3:bb:13:7b:bd:8f:cf:50:36:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d251a73c2a9bb6f9d5c88e0b39888c8a95c57f82
Validity
Not Before: Feb 2 16:46:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e76a86d015bbaf4544ae722d5ea86cca4f0c28d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:c2:44:9b:6c:30:b1:95:19:b5:e4:80:52:4d:
50:2a:29:a5:ae:71:36:c1:0a:31:bc:21:b6:9a:6c:
a0:37:c2:f1:a7:6b:d7:12:8f:3c:8a:f5:24:bf:e2:
5c:57:ce:58:f5:02:c6:98:9c:c2:a0:76:bf:da:92:
44:12:38:ad:87:d4:21:9d:86:48:0c:65:fb:7d:be:
30:2f:84:a1:0c:e6:1d:e1:24:13:09:eb:fa:ed:98:
38:10:b1:8f:e2:31:d0:56:d0:c9:b1:8b:8d:0d:ad:
db:67:a0:a8:f2:df:9d:34:e4:eb:41:2f:4b:1b:27:
d1:23:bd:10:aa:b9:5b:81:35:d3:d8:6c:e4:fa:76:
d4:e0:0a:a7:b1:bb:c4:b6:30:5b:0f:4b:56:63:92:
59:e3:36:0a:fa:bf:de:83:66:85:77:b4:51:4d:34:
db:18:9a:1d:27:bc:14:f2:7c:23:a2:08:10:69:d1:
3d:00:51:7c:e4:ba:60:e7:33:ca:f5:f1:44:48:e3:
cc:e0:b0:b8:9d:f7:d2:e9:d0:12:e9:a8:86:51:e4:
ff:43:01:5e:7a:99:7d:63:46:ed:21:c9:ae:d3:27:
a2:03:e9:1b:d8:09:01:00:c1:63:c7:91:74:75:38:
76:99:52:73:ef:39:e5:56:ec:d6:b5:09:ae:c7:c1:
3b:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:6A:86:D0:15:BB:AF:45:44:AE:72:2D:5E:A8:6C:CA:4F:0C:28:D4
X509v3 Authority Key Identifier:
keyid:D2:51:A7:3C:2A:9B:B6:F9:D5:C8:8E:0B:39:88:8C:8A:95:C5:7F:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0lGnPCqbtvnVyI4LOYiMipXFf4I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/de08a1-f083-4340-af3e-bfe801a45f1e/1/52qG0BW7r0VErnItXqhsyk8MKNQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/de08a1-f083-4340-af3e-bfe801a45f1e/1/0lGnPCqbtvnVyI4LOYiMipXFf4I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9200::/29
Signature Algorithm: sha256WithRSAEncryption
79:8c:ea:ab:ed:8b:c9:38:b3:2e:7e:ab:73:46:bd:bc:18:c5:
a6:ed:ca:74:a1:2c:b1:3b:a0:f7:1b:49:b7:5e:fd:a5:09:6b:
91:f2:5c:1e:96:eb:45:43:56:5c:87:6a:cf:b2:81:1a:d6:be:
f4:1a:99:2c:a2:69:eb:e2:f3:61:7f:5d:c4:35:54:18:54:3c:
3a:db:c0:a5:f7:2e:69:4a:72:38:00:6d:34:d9:e3:ef:b6:10:
a9:e0:a1:b6:9b:0c:79:c3:6e:1d:a8:79:a3:6e:e5:95:59:a6:
be:2b:19:2a:ba:ba:8a:91:e1:12:5e:74:44:ff:25:af:b6:f7:
31:3f:16:cb:af:f1:ca:fb:ef:e2:e7:fc:e7:be:da:cc:16:6d:
0a:18:ab:00:3a:c5:3e:f3:76:d2:a0:d4:23:6d:8d:8c:b3:aa:
17:d1:a8:20:07:50:3d:ed:31:73:c7:fb:2a:70:3e:ef:5c:15:
3a:10:83:dc:89:d1:a8:b3:eb:df:63:cd:ec:91:b6:94:47:e5:
2a:09:cb:33:66:a7:f9:fb:6c:51:c3:bb:6f:c7:ed:99:bc:e6:
24:15:07:4b:ad:82:fc:2e:5a:8e:45:16:47:42:a7:29:e1:08:
78:21:40:48:20:5a:89:e6:db:c9:ae:28:34:8d:de:61:58:0d:
f6:69:7b:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 22 09:27:14 2023 by rpki-client on console-ams.rpki-client.org