Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/d67fe9-e18c-4351-a0a0-1e358ade24fe/1/Hwa0udApOkrur9UXYFYnvs26vTI.roa
File: Hwa0udApOkrur9UXYFYnvs26vTI.roa (raw, json)
Hash identifier: ycMYbIlnUsPi5vDOhzBgA8Gh7NwSJ/cMQoTYivH7gFk=
Subject key identifier: 1F:06:B4:B9:D0:29:3A:4A:EE:AF:D5:17:60:56:27:BE:CD:BA:BD:32
Certificate issuer: /CN=3bf6a3db7a15ab57fabaa6feca289e7557715bac
Certificate serial: 01823711168B7D3D64324C4833043AFD3457
Authority key identifier: 3B:F6:A3:DB:7A:15:AB:57:FA:BA:A6:FE:CA:28:9E:75:57:71:5B:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O_aj23oVq1f6uqb-yiiedVdxW6w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/d67fe9-e18c-4351-a0a0-1e358ade24fe/1/Hwa0udApOkrur9UXYFYnvs26vTI.roa
Signing time: Mon 25 Jul 2022 20:34:02 +0000
ROA not before: Mon 25 Jul 2022 20:34:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 2a11:f540::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:37:11:16:8b:7d:3d:64:32:4c:48:33:04:3a:fd:34:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bf6a3db7a15ab57fabaa6feca289e7557715bac
Validity
Not Before: Jul 25 20:34:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1f06b4b9d0293a4aeeafd517605627becdbabd32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:f5:05:91:68:5e:67:5a:f5:b6:9e:bd:69:71:
10:e0:9b:a9:79:18:26:7c:ac:55:58:02:74:87:ee:
74:0a:69:be:e6:cc:02:23:3c:79:54:c3:c7:8c:5a:
42:13:cd:b3:c7:03:3a:1f:35:0f:28:71:08:64:f7:
a3:c8:88:0e:d9:4d:ad:90:95:78:70:6f:d8:f0:e6:
b1:cc:6a:57:e9:13:81:9d:bd:63:87:2f:31:22:f4:
f8:cd:23:25:33:07:18:44:6f:b4:f5:3b:a6:be:87:
1f:2f:c9:63:a9:b4:54:6e:06:7a:21:0f:63:4f:b6:
45:38:e3:fc:f8:47:7d:0b:b5:a4:4a:f7:d3:49:d8:
7d:75:1f:db:d1:dc:ef:be:dc:88:1e:cb:75:3c:a6:
7d:75:f5:1e:6a:a7:dd:ac:9b:1c:7f:18:d2:fa:d5:
49:b4:f3:44:dc:f8:20:e8:8c:30:0f:b0:a0:f6:de:
e9:9c:35:70:9a:47:0b:b6:f8:99:5a:d7:cf:32:38:
00:e2:0e:a7:f9:43:b9:69:3f:af:4d:9c:25:92:d5:
70:32:0b:f4:fa:02:80:20:f1:bb:fd:35:78:98:fa:
88:ae:c5:30:09:5c:6b:20:4f:35:e2:49:07:48:fd:
d1:ed:57:7b:e8:17:ea:76:1c:93:f3:54:ff:7a:f0:
b3:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:06:B4:B9:D0:29:3A:4A:EE:AF:D5:17:60:56:27:BE:CD:BA:BD:32
X509v3 Authority Key Identifier:
keyid:3B:F6:A3:DB:7A:15:AB:57:FA:BA:A6:FE:CA:28:9E:75:57:71:5B:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O_aj23oVq1f6uqb-yiiedVdxW6w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/d67fe9-e18c-4351-a0a0-1e358ade24fe/1/Hwa0udApOkrur9UXYFYnvs26vTI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/d67fe9-e18c-4351-a0a0-1e358ade24fe/1/O_aj23oVq1f6uqb-yiiedVdxW6w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:f540::/29
Signature Algorithm: sha256WithRSAEncryption
b2:20:b8:1e:b6:14:4b:f2:41:02:80:84:15:a5:c2:f3:80:73:
68:98:0c:d9:4f:1b:2f:86:f7:fa:12:08:1b:67:b4:45:9b:02:
25:4f:60:ad:3d:d3:a9:fb:e4:e5:65:cf:5f:40:1c:b0:e5:c4:
5c:9f:a9:4c:d8:c8:e9:5e:9d:a8:b6:76:a5:7b:cf:e3:03:d3:
95:06:f4:3a:58:8e:b6:06:4a:51:c0:72:0f:4d:cb:26:91:cb:
be:0d:f7:f9:16:2a:1d:02:1b:1f:e8:67:fa:08:f7:e0:3c:e9:
a8:9e:6d:b7:5c:21:8b:b7:d9:7c:a5:eb:10:6b:a0:5c:ed:46:
07:cc:76:1b:6d:03:60:77:fe:f4:cf:9d:5e:ff:be:9c:a9:47:
ef:05:6e:1b:c9:0a:ba:4a:2d:01:a8:f3:d9:79:ee:a6:ca:9d:
4d:25:a2:c5:36:a8:84:de:70:ca:fd:84:c2:88:b1:0f:f1:55:
3c:2b:f2:1d:05:3c:37:0c:da:34:40:70:90:36:97:ea:fc:13:
cc:b6:1c:5c:a1:99:a2:2d:7e:2c:4f:c2:9c:5f:13:b6:f9:fd:
c4:a7:46:61:9a:25:ee:10:d3:21:f8:66:7c:bb:24:30:32:37:
a0:58:21:16:50:83:0c:03:f8:70:61:7b:1b:65:31:be:93:b6:
92:8e:fc:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:29 2024 by rpki-client on console-fra.rpki-client.org