Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/8HDaIyuYJ7SxLzfxvgRrXkkWNto.roa
File: 8HDaIyuYJ7SxLzfxvgRrXkkWNto.roa (raw, json)
Hash identifier: D5emiV3hGqrfdxIB/PyAcIAiAm8ONkgXuG2S3Cf0/ec=
Subject key identifier: F0:70:DA:23:2B:98:27:B4:B1:2F:37:F1:BE:04:6B:5E:49:16:36:DA
Certificate issuer: /CN=54914541fd1b95e7c0afc875fbef78794f55386b
Certificate serial: 0184B407FA61E319CEE9EC1D6E2FE0292218
Authority key identifier: 54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/8HDaIyuYJ7SxLzfxvgRrXkkWNto.roa
Signing time: Sat 26 Nov 2022 13:02:12 +0000
ROA not before: Sat 26 Nov 2022 13:02:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210631
IP address blocks: 2a0a:6040:ed00::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:b4:07:fa:61:e3:19:ce:e9:ec:1d:6e:2f:e0:29:22:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54914541fd1b95e7c0afc875fbef78794f55386b
Validity
Not Before: Nov 26 13:02:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f070da232b9827b4b12f37f1be046b5e491636da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:64:ff:fc:41:1d:94:aa:7a:7a:10:3f:4d:db:
99:fd:35:f4:f8:98:ab:18:26:22:25:3f:05:cf:72:
10:33:ee:1d:9a:6a:46:02:25:49:dc:14:31:0e:2d:
14:f1:7f:e3:69:a4:47:66:c1:11:0b:e5:aa:67:df:
76:1f:fa:c2:55:a4:ed:d0:bf:68:58:c6:26:b8:57:
23:51:47:c9:49:3e:15:f9:5c:63:36:f0:15:c4:33:
af:a9:1e:fe:87:b4:fd:71:0c:14:f9:3b:d8:90:b2:
4a:97:1f:08:4c:c1:ba:69:0b:2c:51:89:57:ea:90:
37:1d:a4:cb:f0:a2:3b:65:48:dc:eb:07:c0:1d:b2:
6f:3f:e0:d9:c1:d0:45:3a:c5:0c:ee:cd:12:00:cf:
7a:45:a6:d6:71:05:eb:81:1c:81:d1:c2:c2:44:6c:
97:6a:ce:32:b5:a0:a4:14:c2:98:f8:8e:87:b2:8e:
36:aa:8b:31:a5:f1:e3:da:97:f5:a5:99:9d:8c:e8:
48:e5:f7:a2:3b:10:1e:9f:71:1b:29:90:9b:5c:33:
f0:17:cd:e1:59:b7:8e:28:ce:87:48:de:fd:27:de:
81:c5:1b:08:ad:3a:11:73:c8:8a:ed:c4:37:74:36:
61:47:a0:66:1c:d0:9f:4d:dc:92:45:52:37:43:db:
64:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:70:DA:23:2B:98:27:B4:B1:2F:37:F1:BE:04:6B:5E:49:16:36:DA
X509v3 Authority Key Identifier:
keyid:54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/8HDaIyuYJ7SxLzfxvgRrXkkWNto.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/VJFFQf0blefAr8h1--94eU9VOGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:6040:ed00::/40
Signature Algorithm: sha256WithRSAEncryption
29:7c:e3:cb:19:b4:5b:49:8f:10:b6:e2:0c:2b:64:5f:29:ec:
ea:12:ee:f0:2c:40:d3:18:49:ec:9c:65:79:6c:e6:20:82:5a:
3a:3f:53:7c:91:ea:2d:53:4a:96:9b:a8:5c:a1:e2:95:b4:fd:
34:b6:75:d7:de:c3:db:fa:27:57:37:c5:67:54:24:65:ee:28:
63:2f:0f:17:78:03:bf:81:c1:3d:4b:e1:c4:c8:14:e5:f0:e1:
a7:a1:d9:86:91:b9:38:8b:be:57:62:b7:ca:8b:81:aa:70:b5:
7d:27:a5:86:29:0c:86:8b:db:9a:02:66:49:c0:26:b7:22:92:
af:47:42:3b:27:b6:d8:c2:a1:43:40:8a:c5:cd:cb:86:7f:26:
fe:21:1a:6f:42:63:70:cc:1b:b6:52:9f:d6:bf:fd:b7:d4:8e:
c5:c4:df:e8:89:58:af:76:31:45:b9:a2:79:ca:f2:e5:13:48:
9e:a6:52:02:bd:3b:7e:26:30:5e:2d:ea:02:02:21:28:1b:f6:
95:c4:c9:85:b1:8a:85:c0:83:16:92:64:0f:ee:44:c9:68:41:
d7:12:a1:fb:ef:8b:9a:e4:89:70:8f:c4:69:f1:dd:36:20:77:
8a:1c:74:2c:fb:98:9f:32:53:18:bd:37:1e:bd:fb:fa:38:5b:
5c:bc:68:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:35 2023 by rpki-client on console-fra.rpki-client.org