Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/3HhBhZt0_8gbkem2IPuk1oSQy_A.roa
File: 3HhBhZt0_8gbkem2IPuk1oSQy_A.roa (raw, json)
Hash identifier: DNQrvG5pVdYuAAMGneD1/nyh7wwDQfEn55G5OD8a29Y=
Subject key identifier: DC:78:41:85:9B:74:FF:C8:1B:91:E9:B6:20:FB:A4:D6:84:90:CB:F0
Certificate issuer: /CN=54914541fd1b95e7c0afc875fbef78794f55386b
Certificate serial: 1735BD3C
Authority key identifier: 54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/3HhBhZt0_8gbkem2IPuk1oSQy_A.roa
Signing time: Sun 27 Mar 2022 03:03:48 +0000
ROA not before: Sun 27 Mar 2022 03:03:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212359
IP address blocks: 2a06:a005:1c0::/44 maxlen: 48
2a06:a005:1d0::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 389397820 (0x1735bd3c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54914541fd1b95e7c0afc875fbef78794f55386b
Validity
Not Before: Mar 27 03:03:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dc7841859b74ffc81b91e9b620fba4d68490cbf0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:e6:a3:83:e3:22:8a:44:2a:a7:42:0e:ab:eb:
c5:a2:c9:d0:20:f8:ed:0d:2e:ba:ee:66:d5:5f:79:
8e:c7:fa:05:1e:a5:85:46:08:01:a2:d3:08:15:6d:
ca:51:d0:7b:44:eb:00:6d:62:ef:29:2a:48:3e:3d:
19:95:a3:a9:f7:a7:12:1f:e3:aa:17:6c:57:e6:a7:
46:d2:75:24:60:1c:0b:3b:19:62:b3:db:12:02:a9:
c6:55:dd:22:b7:a4:7c:c4:fe:f7:eb:ca:52:75:80:
bd:1b:46:09:86:42:f3:34:b6:37:fb:d7:4b:c0:07:
47:5e:39:43:39:1b:9c:67:c9:b6:41:96:ba:d0:9f:
a3:3b:4a:d9:a4:b2:1c:87:e0:b7:6e:29:ce:c8:56:
f5:d0:78:ad:92:3d:10:7a:60:ca:7c:96:79:c1:a9:
58:44:35:c9:39:2b:37:02:8c:83:92:1d:d8:3d:b2:
65:29:1e:34:d1:a0:9d:20:ea:ee:38:61:49:ca:93:
8e:7e:70:5e:34:e1:03:cd:a7:c2:46:e2:07:be:3a:
d0:09:ea:78:0d:a2:09:65:6c:98:27:31:cd:3d:5c:
14:24:89:db:4b:14:66:36:ec:4d:da:e9:ec:1f:a6:
d1:e6:94:ba:bc:95:95:91:dd:4e:d3:3c:e4:3f:6c:
03:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:78:41:85:9B:74:FF:C8:1B:91:E9:B6:20:FB:A4:D6:84:90:CB:F0
X509v3 Authority Key Identifier:
keyid:54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/3HhBhZt0_8gbkem2IPuk1oSQy_A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/VJFFQf0blefAr8h1--94eU9VOGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:1c0::/43
Signature Algorithm: sha256WithRSAEncryption
0d:51:6a:a7:5a:2a:aa:bd:15:41:a2:bb:89:b9:bd:31:ec:bf:
14:02:0a:61:72:18:4a:aa:f0:04:d6:7d:1c:f6:e9:df:6d:26:
85:cd:7e:72:29:0e:70:f7:95:ba:9e:21:c3:8b:78:d0:0e:0c:
37:d7:60:ac:ce:59:49:55:fb:f8:b7:d6:e3:dd:54:cb:7d:62:
f1:b2:87:31:0c:b1:e0:21:5d:ef:88:10:ad:a3:9f:2c:51:ec:
c9:2b:19:dd:18:95:76:f0:e1:84:76:8b:d1:52:ff:d3:6b:7c:
02:a8:ff:73:9b:04:48:20:34:38:87:b2:45:c2:8d:cf:54:0e:
41:2c:c4:fb:69:a9:93:b1:0f:24:2c:ba:ff:b7:66:92:d7:f6:
ee:5c:c0:a4:c1:3c:a1:7b:59:2a:93:55:91:84:92:b9:41:f3:
29:e5:f5:0d:42:37:7e:1f:c1:cc:dd:07:15:9f:e8:c1:c1:9b:
b0:bd:78:33:b0:97:cd:7f:78:92:c6:8e:70:a4:4c:ed:e8:10:
9f:2e:5b:02:ac:17:68:4e:e7:4f:ef:ad:b8:54:71:8a:b1:71:
e3:ee:66:d4:29:ba:16:74:5a:6a:3d:f3:28:27:8b:d9:28:48:
a5:2a:3b:f0:4d:f8:fe:d6:c1:90:6b:bc:20:78:c5:f8:7e:fb:
f5:4a:24:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:35 2023 by rpki-client on console-fra.rpki-client.org