Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/dbecfc-1fde-4c46-834c-19be17db55f9/1/Ysn_x73UQ68tib97cQw9OSEuZSY.roa
File: Ysn_x73UQ68tib97cQw9OSEuZSY.roa (raw, json)
Hash identifier: BRcUNG8IZbezszJGfunx2zrf40oxVKUuZQodEEtRESg=
Subject key identifier: 62:C9:FF:C7:BD:D4:43:AF:2D:89:BF:7B:71:0C:3D:39:21:2E:65:26
Certificate issuer: /CN=7d00ccf61fa633675bc7c652c7946be09c2c465f
Certificate serial: 0185711522894124BC672BCD81F2A2BAEDCB
Authority key identifier: 7D:00:CC:F6:1F:A6:33:67:5B:C7:C6:52:C7:94:6B:E0:9C:2C:46:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQDM9h-mM2dbx8ZSx5Rr4JwsRl8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/dbecfc-1fde-4c46-834c-19be17db55f9/1/Ysn_x73UQ68tib97cQw9OSEuZSY.roa
Signing time: Mon 02 Jan 2023 06:04:48 +0000
ROA not before: Mon 02 Jan 2023 06:04:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204790
IP address blocks: 2a11:5b40::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:15:22:89:41:24:bc:67:2b:cd:81:f2:a2:ba:ed:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d00ccf61fa633675bc7c652c7946be09c2c465f
Validity
Not Before: Jan 2 06:04:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=62c9ffc7bdd443af2d89bf7b710c3d39212e6526
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:7c:1c:4c:e8:05:6b:6b:33:78:f3:b2:54:b9:
8a:db:d4:30:ed:df:27:e4:a1:77:db:32:17:54:be:
77:a5:db:fd:23:cd:24:ef:c9:ac:2d:b9:93:c5:a0:
57:ea:4c:dc:da:58:d9:62:91:08:0c:54:ed:9f:a8:
bc:0a:07:2f:d8:76:15:58:47:90:d8:bf:02:fb:79:
9a:dc:b5:39:d9:80:97:b7:14:52:d7:f6:b9:33:fa:
07:de:2e:cb:97:12:d8:d9:94:f1:d3:b9:da:a8:96:
e8:d6:5a:be:25:0d:f0:4c:38:df:45:33:db:d3:e3:
ca:60:8b:88:18:ce:0c:b3:18:c0:ff:93:86:16:66:
b6:99:2e:e9:98:2c:54:fa:f5:d6:33:03:3e:b0:f8:
72:00:05:34:8b:d0:e4:4e:27:54:cb:c8:21:bf:b2:
cf:47:d6:6f:68:6a:0e:8e:89:aa:32:a0:09:58:93:
6e:a1:fb:28:91:e8:7e:ec:58:b7:e9:3d:16:bb:3e:
f0:ae:d2:11:ed:bc:f5:0b:05:09:ac:48:cd:f2:23:
fa:a6:7a:58:40:84:b1:9e:b1:a3:45:ba:33:cb:01:
e8:da:a5:6c:d6:09:45:bc:88:87:33:21:2a:f9:2f:
43:d0:74:1a:5c:c4:e4:04:18:c4:2c:c0:3f:80:2e:
14:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:C9:FF:C7:BD:D4:43:AF:2D:89:BF:7B:71:0C:3D:39:21:2E:65:26
X509v3 Authority Key Identifier:
keyid:7D:00:CC:F6:1F:A6:33:67:5B:C7:C6:52:C7:94:6B:E0:9C:2C:46:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQDM9h-mM2dbx8ZSx5Rr4JwsRl8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/dbecfc-1fde-4c46-834c-19be17db55f9/1/Ysn_x73UQ68tib97cQw9OSEuZSY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/dbecfc-1fde-4c46-834c-19be17db55f9/1/fQDM9h-mM2dbx8ZSx5Rr4JwsRl8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:5b40::/29
Signature Algorithm: sha256WithRSAEncryption
2b:b7:29:3e:50:2a:9b:02:d8:a7:10:9d:27:ad:09:08:17:4a:
ba:45:be:7b:24:83:4a:a0:2b:a4:9a:60:7e:fe:2a:a4:71:9e:
3f:19:5f:2f:90:ed:58:c7:9a:33:7f:5a:54:62:f5:95:fc:da:
9b:c1:50:52:fd:69:18:f2:de:c5:40:36:fb:09:16:61:b6:a3:
22:e2:1a:ed:93:44:3b:6c:3a:9e:ca:e6:24:5c:7c:75:0e:01:
2e:9f:63:a6:09:6e:cc:48:13:74:ee:d2:f8:af:74:3e:b2:db:
00:c9:e4:3b:fe:b8:07:58:92:99:bd:09:78:e6:2e:01:8d:df:
a3:3c:4b:a8:32:98:05:d1:63:bd:09:94:de:2b:75:8b:42:53:
79:6d:49:49:41:62:36:3b:51:bb:19:b5:46:d5:fe:20:cb:9a:
af:57:17:ee:dd:5a:f5:b7:ae:52:50:a1:e0:f2:14:8b:18:59:
c8:79:29:4b:99:71:b6:a2:2d:50:09:77:50:ca:14:51:68:91:
9d:9f:b0:c3:34:94:7b:d9:c5:0c:74:1e:1e:13:f8:05:13:8b:
12:42:0e:af:6b:dc:01:3d:ea:f7:a6:d8:ed:9e:b2:20:99:c2:
5e:bf:64:13:9e:98:fa:d0:22:43:80:1f:28:5d:76:bb:0b:46:
18:60:f2:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:14 2024 by rpki-client on console-ams.rpki-client.org