Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/6ff24a-c915-4493-a34e-bcfe4e7b3dcc/1/kOkRMic0kgwfuf0Qas3xi6PmZx4.roa
File: kOkRMic0kgwfuf0Qas3xi6PmZx4.roa (raw, json)
Hash identifier: BUaT4KqkDwI9+i3ZH286u5R05pggqjDAPOfZHgRvtm8=
Subject key identifier: 90:E9:11:32:27:34:92:0C:1F:B9:FD:10:6A:CD:F1:8B:A3:E6:67:1E
Certificate issuer: /CN=535773d7face4d95307a23439fe94e9adfa64a12
Certificate serial: 018AD50D8388A5CA7A7790965E117D51C834
Authority key identifier: 53:57:73:D7:FA:CE:4D:95:30:7A:23:43:9F:E9:4E:9A:DF:A6:4A:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U1dz1_rOTZUweiNDn-lOmt-mShI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/6ff24a-c915-4493-a34e-bcfe4e7b3dcc/1/kOkRMic0kgwfuf0Qas3xi6PmZx4.roa
Signing time: Wed 27 Sep 2023 05:12:27 +0000
ROA not before: Wed 27 Sep 2023 05:12:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 2a13:de40::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:d5:0d:83:88:a5:ca:7a:77:90:96:5e:11:7d:51:c8:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=535773d7face4d95307a23439fe94e9adfa64a12
Validity
Not Before: Sep 27 05:12:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=90e911322734920c1fb9fd106acdf18ba3e6671e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:a5:c9:f8:53:f0:08:2f:0f:34:6d:ca:cb:3b:
50:44:b2:90:3b:82:69:bc:96:19:15:0e:25:b9:8f:
e4:e6:30:53:17:4c:76:a9:c4:cf:a5:99:9e:a5:00:
2d:e8:10:b5:bf:85:ce:29:34:7d:e1:75:bf:57:e7:
e4:16:10:8a:90:63:fe:da:d6:86:be:b2:7e:21:51:
ce:cc:41:d0:21:83:24:c5:95:49:6d:44:aa:71:4a:
96:19:38:8a:7d:1c:d7:69:52:bf:97:6b:78:b0:2c:
ee:9d:53:6d:6b:5f:0a:a6:82:ab:63:43:65:ec:20:
cd:92:01:b5:21:1c:56:13:a1:e4:55:c8:63:47:a9:
0d:d7:2b:77:72:e6:4e:9d:e7:85:2d:63:79:5f:a6:
ce:44:30:46:f2:05:58:7f:a6:c0:03:1c:f1:8c:09:
78:78:1c:db:99:e0:3a:c3:ed:32:01:6a:84:36:12:
f2:c5:2f:89:a9:ea:ba:f1:3b:57:fc:94:48:0f:50:
35:14:85:d7:d0:3f:13:8f:be:9f:61:c9:1c:15:28:
f6:68:9b:1a:a8:5c:2c:ec:cc:1a:ec:d6:81:b7:17:
9f:45:7b:5a:27:d9:e4:fa:53:d3:06:80:a1:05:fc:
d3:d1:62:e0:8b:07:33:00:8d:48:1e:a6:3c:7f:ea:
b4:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:E9:11:32:27:34:92:0C:1F:B9:FD:10:6A:CD:F1:8B:A3:E6:67:1E
X509v3 Authority Key Identifier:
keyid:53:57:73:D7:FA:CE:4D:95:30:7A:23:43:9F:E9:4E:9A:DF:A6:4A:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U1dz1_rOTZUweiNDn-lOmt-mShI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/6ff24a-c915-4493-a34e-bcfe4e7b3dcc/1/kOkRMic0kgwfuf0Qas3xi6PmZx4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/6ff24a-c915-4493-a34e-bcfe4e7b3dcc/1/U1dz1_rOTZUweiNDn-lOmt-mShI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:de40::/32
Signature Algorithm: sha256WithRSAEncryption
61:ca:ba:d9:8a:17:f6:fd:1c:55:4e:df:39:36:fa:a2:0c:8b:
53:76:56:69:f9:cd:87:4a:7c:f3:c7:48:b8:db:83:36:9e:d5:
77:d5:e1:cd:76:49:3a:98:db:70:9d:f1:59:33:50:fa:f5:9d:
00:e6:33:40:52:27:74:61:97:0c:b8:35:57:f0:d8:86:26:35:
be:8e:1e:99:4d:53:1a:1b:de:71:f2:b4:2e:e4:b4:93:63:26:
95:bd:16:50:3f:2c:28:7e:bc:1e:f8:f9:5b:97:33:88:4c:7d:
7b:42:b1:3b:d4:ba:67:a9:2f:5f:21:73:03:80:bf:b8:00:c1:
6b:a0:e9:42:38:cb:e0:2a:08:02:ac:da:c9:52:f9:f2:46:16:
98:7e:64:44:82:97:59:1b:68:01:ad:fd:f8:d4:7a:b9:5d:d6:
68:b2:7c:3a:a3:b1:c4:ad:45:52:2b:bd:2b:2f:8a:ae:22:5f:
be:65:2a:e5:2e:16:5c:82:d9:68:5c:1c:bb:9a:ba:57:71:cd:
00:6f:db:99:5b:cd:1e:ec:02:3b:80:24:ab:b1:e3:cb:2a:3d:
6f:b9:f5:9f:55:4d:a5:4b:4c:04:81:cf:8a:4e:f0:19:a4:a1:
a4:99:d6:7b:6d:06:d8:b7:ba:b5:1d:10:f9:67:5f:5b:35:66:
cd:8c:54:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:11 2024 by rpki-client on console-fra.rpki-client.org