Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/7a1a62-e481-4a14-ad6e-35bff96da4c5/1/bSjWBIYFdSgtaLQwPCUrggKGERw.roa
File: bSjWBIYFdSgtaLQwPCUrggKGERw.roa (raw, json)
Hash identifier: sdu1Z/kI/356UB2deXMBoaVfS4vW8Jde/O3C8z5gFMI=
Subject key identifier: 6D:28:D6:04:86:05:75:28:2D:68:B4:30:3C:25:2B:82:02:86:11:1C
Certificate issuer: /CN=2be816211f215121746f970f2ef8cc40bd7f225b
Certificate serial: 018A01EE65C93F1C24A18134C9332BE38308
Authority key identifier: 2B:E8:16:21:1F:21:51:21:74:6F:97:0F:2E:F8:CC:40:BD:7F:22:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K-gWIR8hUSF0b5cPLvjMQL1_Ils.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/7a1a62-e481-4a14-ad6e-35bff96da4c5/1/bSjWBIYFdSgtaLQwPCUrggKGERw.roa
Signing time: Thu 17 Aug 2023 05:18:35 +0000
ROA not before: Thu 17 Aug 2023 05:18:35 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202044
IP address blocks: 2a0b:3e00::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:01:ee:65:c9:3f:1c:24:a1:81:34:c9:33:2b:e3:83:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2be816211f215121746f970f2ef8cc40bd7f225b
Validity
Not Before: Aug 17 05:18:35 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6d28d604860575282d68b4303c252b820286111c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:a9:de:39:71:1b:64:59:17:f6:56:99:f1:f7:
45:d3:50:fe:36:8a:ba:00:fe:9c:ac:1f:7a:42:7d:
05:fb:2f:15:21:75:2a:42:b7:41:25:b8:7c:fd:7e:
75:60:a5:67:51:5f:f9:6d:2d:01:6c:7f:72:a5:b0:
58:c9:8a:7a:eb:e1:0a:f9:25:9f:99:60:04:a0:ec:
10:e3:2c:83:38:9a:0c:ff:06:59:9e:27:3b:c1:6a:
43:cd:9a:6c:27:ea:2f:f5:8d:02:7e:99:43:fc:8e:
93:0c:70:9e:1a:20:6e:ca:6d:7a:14:47:a1:27:68:
b1:14:b7:57:4e:02:42:56:49:67:11:f8:4d:bc:4c:
00:3c:92:98:38:69:3d:f7:f4:ff:6a:55:a5:f5:f1:
aa:8d:ef:85:27:57:5e:34:90:e7:2a:2b:67:b2:31:
51:ae:dd:a9:4b:7b:9b:3e:98:77:14:b1:d5:55:5c:
60:32:e6:25:e6:31:ab:81:ab:18:9d:70:5a:85:f2:
97:f7:76:49:0a:29:39:86:47:7a:ec:7d:93:6f:0c:
15:a8:32:25:94:17:28:08:c0:17:c4:cd:15:c9:14:
5d:ca:d5:c9:7d:30:16:77:11:47:d5:ee:d3:84:62:
70:15:e7:18:1a:fa:89:cd:77:25:d9:04:6a:a7:0f:
34:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:28:D6:04:86:05:75:28:2D:68:B4:30:3C:25:2B:82:02:86:11:1C
X509v3 Authority Key Identifier:
keyid:2B:E8:16:21:1F:21:51:21:74:6F:97:0F:2E:F8:CC:40:BD:7F:22:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K-gWIR8hUSF0b5cPLvjMQL1_Ils.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7a1a62-e481-4a14-ad6e-35bff96da4c5/1/bSjWBIYFdSgtaLQwPCUrggKGERw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7a1a62-e481-4a14-ad6e-35bff96da4c5/1/K-gWIR8hUSF0b5cPLvjMQL1_Ils.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:3e00::/29
Signature Algorithm: sha256WithRSAEncryption
3e:7c:7d:bf:b5:fe:91:14:b5:07:a2:09:e9:b2:f8:c7:86:64:
7b:4f:41:6c:cb:c9:8b:04:41:cb:39:95:32:36:31:5e:ed:d8:
ea:5b:16:67:53:56:d3:f3:e9:ef:3b:3a:3b:e9:ee:99:6c:9e:
b9:f4:52:2a:44:80:75:1b:cf:43:f7:ee:1b:ec:99:0b:15:7b:
af:56:4d:20:e0:e3:01:e9:40:f0:cd:b5:97:a9:d2:97:4d:c5:
13:c8:3e:86:e4:24:22:45:28:73:da:11:c7:77:c3:d6:57:0e:
67:30:de:d2:49:00:04:30:d9:b0:c3:b9:ed:d2:44:54:5d:f1:
2a:8a:10:01:28:73:9e:b0:bf:39:44:30:d6:c5:13:d2:62:88:
f7:b6:1b:dd:fc:fb:c7:d2:f4:c3:03:69:aa:1d:2b:88:b2:d8:
75:72:4c:63:48:ca:36:06:00:ca:e8:39:07:e7:3b:66:85:0a:
b9:12:9c:bd:68:fe:74:31:98:5c:3c:c2:41:35:80:ff:72:3a:
12:70:bc:55:03:4e:cd:1b:4e:e3:34:de:c6:00:9d:60:dd:ee:
6a:95:aa:7c:ad:5f:7e:4c:7d:d9:e3:0e:49:fc:00:c0:54:4f:
90:f9:b2:10:33:fd:db:b6:8c:8d:ff:43:8d:b6:ef:ce:78:ef:
ec:6e:1d:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:02 2024 by rpki-client on console-fra.rpki-client.org