Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/9lLdHIVo9PCkPdkrgLYFDQZV7Jg.roa
File: 9lLdHIVo9PCkPdkrgLYFDQZV7Jg.roa (raw, json)
Hash identifier: 96wbWIvajuIkf6f88Mcg+Bnu75uQxl8xKG+pFdjVxes=
Subject key identifier: F6:52:DD:1C:85:68:F4:F0:A4:3D:D9:2B:80:B6:05:0D:06:55:EC:98
Certificate issuer: /CN=54914541fd1b95e7c0afc875fbef78794f55386b
Certificate serial: 01840EBCA0A879DA43E32533DDEEF1B69321
Authority key identifier: 54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/9lLdHIVo9PCkPdkrgLYFDQZV7Jg.roa
Signing time: Tue 25 Oct 2022 10:42:33 +0000
ROA not before: Tue 25 Oct 2022 10:42:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201938
IP address blocks: 2a06:a005:5a2::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:0e:bc:a0:a8:79:da:43:e3:25:33:dd:ee:f1:b6:93:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54914541fd1b95e7c0afc875fbef78794f55386b
Validity
Not Before: Oct 25 10:42:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f652dd1c8568f4f0a43dd92b80b6050d0655ec98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:f3:22:00:b5:e8:c1:39:c5:62:8f:24:0d:e8:
8c:61:8e:ef:22:95:fb:4d:de:08:c5:39:6b:33:f1:
b7:47:5d:12:9d:70:2b:cf:ae:df:be:68:df:79:09:
0d:01:4a:91:4b:69:2a:ff:71:24:51:bb:03:c0:29:
09:5f:30:64:6f:59:87:4f:76:27:35:94:c0:75:96:
33:c0:34:e4:f7:a3:1c:1f:e6:0c:ca:5d:01:4e:70:
38:ce:ed:cb:bf:0d:80:de:89:d0:75:f3:e0:07:1f:
ff:30:35:55:ee:9e:00:e8:5b:da:b7:2a:c4:a6:35:
ad:93:08:8d:b3:fb:e6:b9:27:bc:80:f7:1a:eb:ab:
f7:50:ac:15:18:d7:5a:6b:90:18:48:07:c9:c3:80:
e3:66:d5:ac:5a:93:30:10:b8:e4:1e:e3:42:11:5b:
28:26:83:1d:69:5f:74:d8:5b:63:c2:29:76:69:e6:
e0:8f:78:b5:b4:0c:2f:84:93:e2:1d:35:cd:9a:e5:
73:f9:23:3f:2e:61:bf:bc:26:b8:ec:fb:18:4f:d5:
31:d9:89:30:cb:10:ef:3c:0e:ba:a1:a8:6d:70:aa:
d8:af:56:f5:32:a1:91:1a:a6:ab:d4:f6:4d:07:79:
b0:d6:da:aa:b9:59:e7:fb:b5:10:ef:40:4c:6d:64:
d3:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:52:DD:1C:85:68:F4:F0:A4:3D:D9:2B:80:B6:05:0D:06:55:EC:98
X509v3 Authority Key Identifier:
keyid:54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/9lLdHIVo9PCkPdkrgLYFDQZV7Jg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/VJFFQf0blefAr8h1--94eU9VOGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:5a2::/48
Signature Algorithm: sha256WithRSAEncryption
3d:0c:7b:7e:f9:19:5a:1b:03:ba:38:d0:f8:4a:32:8d:85:8e:
1d:dd:92:c3:0c:9a:17:a6:db:14:08:e2:01:2e:29:25:5a:bd:
57:26:ac:2f:c2:4e:53:92:07:1c:08:99:dc:f6:98:e2:6f:d2:
9a:b2:fa:18:bb:40:4e:44:9c:14:3a:0a:80:09:25:95:fa:86:
a5:24:c6:9a:7a:12:12:9c:f4:9c:ce:24:62:c0:2d:5c:2a:31:
2f:a8:6c:52:26:a7:02:ed:fd:cf:79:fa:b5:4f:d4:00:f4:10:
b0:56:b9:95:7a:8c:ae:c5:ce:cb:ef:6d:3c:f8:c7:77:af:a1:
a4:96:2e:0d:05:d3:83:a2:ad:1a:87:95:e1:1f:fe:72:6b:92:
a8:d3:02:e5:69:20:b6:c0:0b:65:cb:ba:59:c0:0b:40:c1:4e:
00:0a:ae:9a:36:18:a4:4f:73:39:30:a9:7c:21:a2:98:30:98:
e2:25:87:6f:2c:41:55:79:ed:10:6f:84:d1:79:b6:dd:bb:cf:
f2:6d:f5:0f:00:cf:ca:0f:e3:18:fa:a5:ec:c3:ca:54:b3:1c:
dd:b8:5e:54:be:1f:d7:19:43:e7:18:1b:c7:0b:af:c4:9f:75:
e3:ae:71:b0:aa:6e:c4:8f:f9:af:8f:db:7a:d9:e9:c5:77:71:
b2:ff:c8:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:35 2023 by rpki-client on console-fra.rpki-client.org