Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/0h1BkTM_UoveD98dDHy7MIT8Tss.roa
File: 0h1BkTM_UoveD98dDHy7MIT8Tss.roa (raw, json)
Hash identifier: gssRJO9DkEibhCcmKoSe7KF+rf9ut7WnxpAQ+PD9vBA=
Subject key identifier: D2:1D:41:91:33:3F:52:8B:DE:0F:DF:1D:0C:7C:BB:30:84:FC:4E:CB
Certificate issuer: /CN=54914541fd1b95e7c0afc875fbef78794f55386b
Certificate serial: 15BABE4E
Authority key identifier: 54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/0h1BkTM_UoveD98dDHy7MIT8Tss.roa
Signing time: Sat 01 Jan 2022 05:59:05 +0000
ROA not before: Sat 01 Jan 2022 05:59:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 149296
IP address blocks: 2a06:a001:a110::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 364559950 (0x15babe4e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54914541fd1b95e7c0afc875fbef78794f55386b
Validity
Not Before: Jan 1 05:59:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d21d4191333f528bde0fdf1d0c7cbb3084fc4ecb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:4a:c9:06:33:db:e7:de:46:f9:c7:a7:47:41:
0f:28:31:1b:6f:04:23:a7:ca:0c:b3:70:44:eb:f1:
08:84:6c:f8:63:94:a8:de:29:b8:ea:e0:f6:cf:bd:
3e:31:0e:d0:19:0f:b4:e1:13:9a:2e:46:4a:aa:5e:
c1:98:d8:9e:3d:04:d0:91:17:54:6f:13:7d:75:82:
a7:02:7d:7d:0e:a4:fc:5b:6c:72:e2:b2:01:1e:e5:
0d:48:38:af:46:33:4e:f1:4d:f1:8d:ac:45:a9:67:
5c:a9:03:87:00:87:64:0f:6c:41:57:31:7a:66:97:
ee:69:e2:89:02:63:10:64:3f:16:c8:b5:ca:dc:dd:
72:69:c9:0c:74:c2:31:e4:2e:34:0f:17:00:f4:a4:
4f:0f:47:a1:26:a9:df:00:b4:4a:09:e8:1a:86:eb:
f7:31:87:d2:ce:5c:5f:29:48:23:88:88:f4:3a:06:
c1:2d:de:42:9d:5b:fb:3d:e4:81:d5:a6:53:aa:57:
81:06:df:ff:f8:15:36:67:27:19:e7:a9:c5:b7:f1:
19:6f:c2:dc:a2:92:a0:a2:a7:da:c5:ee:3c:51:1b:
5f:7a:12:b2:d4:65:dc:2c:38:1b:dc:ba:9f:20:d1:
80:7e:bc:c5:fe:d7:0d:f3:05:66:da:03:de:0f:bb:
b1:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:1D:41:91:33:3F:52:8B:DE:0F:DF:1D:0C:7C:BB:30:84:FC:4E:CB
X509v3 Authority Key Identifier:
keyid:54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/0h1BkTM_UoveD98dDHy7MIT8Tss.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/VJFFQf0blefAr8h1--94eU9VOGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a001:a110::/44
Signature Algorithm: sha256WithRSAEncryption
02:cf:2b:eb:48:e4:2c:f6:ec:77:b9:dc:4f:91:c9:b6:92:f6:
82:cd:f4:e2:79:75:26:44:40:3a:5f:55:07:03:a4:6f:76:8e:
71:4c:33:79:fe:34:9a:88:2f:b4:28:29:b4:e6:dd:3c:0f:0e:
b7:a0:90:37:e7:ce:0d:24:87:da:46:5b:24:88:67:51:94:a4:
2b:6b:36:23:8f:55:44:55:31:f4:23:ef:32:e3:0e:6d:26:5c:
63:00:a9:53:75:73:30:20:21:4a:60:08:b4:77:99:66:65:2e:
0a:59:41:a2:f9:93:5d:98:35:01:0b:b7:dd:e6:de:84:8c:bc:
1a:8f:c3:9f:92:b8:fe:6e:9d:8e:bd:0e:d6:ce:48:e4:99:72:
98:5b:dc:6a:61:33:ad:1b:9c:e5:d7:86:b5:51:41:3f:2b:de:
73:eb:42:66:1e:b8:3e:83:94:3a:ef:40:5d:c6:21:b8:67:07:
96:85:a4:90:c7:0f:ee:1c:21:53:75:5f:af:10:ce:1b:f0:f3:
83:c9:d9:19:c2:73:22:bc:b1:21:4a:c9:5a:46:a3:0d:55:46:
2c:e3:96:bf:0e:fb:97:7d:d3:8d:65:ca:26:55:b8:2e:f6:d7:
38:28:70:86:e3:02:f9:1a:df:57:ce:4b:07:3f:db:b0:c1:ca:
15:b1:8b:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:11 2024 by rpki-client on console-fra.rpki-client.org