Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/HIwf4uYJ4bUq2bXnwGi0klbjGDI.roa
File: HIwf4uYJ4bUq2bXnwGi0klbjGDI.roa (raw, json)
Hash identifier: zVL1/MhQthOkWtYPUAxT5RgmEWV20+ndMd2OvLadDOo=
Subject key identifier: 1C:8C:1F:E2:E6:09:E1:B5:2A:D9:B5:E7:C0:68:B4:92:56:E3:18:32
Certificate issuer: /CN=54914541fd1b95e7c0afc875fbef78794f55386b
Certificate serial: 018477E8EEB663F88209DA05B188690F7FBD
Authority key identifier: 54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/HIwf4uYJ4bUq2bXnwGi0klbjGDI.roa
Signing time: Mon 14 Nov 2022 20:51:04 +0000
ROA not before: Mon 14 Nov 2022 20:51:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201412
IP address blocks: 2a06:a005:1082::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:77:e8:ee:b6:63:f8:82:09:da:05:b1:88:69:0f:7f:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54914541fd1b95e7c0afc875fbef78794f55386b
Validity
Not Before: Nov 14 20:51:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1c8c1fe2e609e1b52ad9b5e7c068b49256e31832
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:43:74:e0:f2:8c:47:59:58:43:4a:7f:7f:4b:
f5:b8:95:bf:de:6b:e9:ac:db:bf:a7:27:52:69:fe:
b8:ac:b4:cd:55:2a:99:22:d1:d0:e8:b5:60:18:db:
92:4b:19:62:42:d2:43:a8:79:dc:91:43:bd:c1:7e:
8b:2d:28:fe:34:d4:bb:43:88:b1:ce:83:8f:67:bd:
e6:7a:1a:10:10:47:f2:5a:69:44:3a:e8:82:ea:68:
10:dd:af:64:af:66:28:7a:4f:7d:a2:23:80:41:4b:
c3:1c:c8:16:01:c0:30:ea:aa:f4:54:57:3e:ed:90:
42:40:58:34:02:9c:38:2f:54:4c:67:04:66:3f:aa:
dc:a3:22:2f:31:bf:ca:10:c8:19:67:84:9a:48:05:
af:3b:3a:55:4e:f5:78:58:04:01:e7:42:c0:a8:9a:
95:37:b3:ec:ef:d0:06:b5:92:25:7d:a5:83:40:3c:
7b:ce:9e:ab:d2:b3:2f:3f:87:3d:3e:f3:b4:4d:ad:
75:3f:17:61:77:93:ac:2f:1f:1b:2c:d0:1d:e1:f2:
6c:53:6e:99:d3:9c:a7:0e:49:20:57:6b:d4:3a:f0:
cc:6f:3e:4c:b4:26:f4:f0:b1:2e:9c:a1:08:d9:ae:
ec:5d:69:4e:a4:1f:ba:78:10:f5:0a:4e:7e:7c:63:
11:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:8C:1F:E2:E6:09:E1:B5:2A:D9:B5:E7:C0:68:B4:92:56:E3:18:32
X509v3 Authority Key Identifier:
keyid:54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/HIwf4uYJ4bUq2bXnwGi0klbjGDI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/VJFFQf0blefAr8h1--94eU9VOGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:1082::/48
Signature Algorithm: sha256WithRSAEncryption
53:74:e5:a7:80:b0:2e:da:68:71:af:e5:08:e0:f4:1a:84:80:
7e:5f:e8:e5:90:ac:d0:df:10:f0:36:88:eb:0e:fe:0e:3d:3b:
d3:aa:44:39:26:50:21:c1:cc:68:db:a7:9c:6d:24:21:69:56:
87:16:b2:4d:e2:96:cb:71:1b:6a:22:8f:6e:48:9b:61:38:9e:
71:fd:42:ca:5e:28:01:3a:9d:e9:26:a0:fe:ca:7e:97:35:d3:
3c:93:91:82:cb:1c:f1:3e:18:bc:07:dd:75:11:66:d1:c5:38:
28:bb:11:97:2f:38:38:13:5a:90:23:da:3b:d4:a3:68:dd:b9:
be:94:3c:39:d8:04:3c:c7:89:ab:79:4d:e6:1f:70:16:eb:4e:
72:36:2d:7b:bd:e9:76:7d:d6:a8:13:2c:08:45:41:92:8c:57:
12:e0:3c:37:ad:e5:c0:4a:08:b5:5e:39:4b:4d:15:f9:c7:cb:
5c:76:fe:ee:78:46:2b:d7:a5:dd:e0:5b:9f:de:e4:8c:94:3d:
9d:e8:e9:d6:46:ed:24:4b:9e:b6:ac:0e:ab:56:72:f8:20:3c:
4f:bd:0e:e8:1b:a7:ec:31:45:3c:7b:3f:b7:08:b4:16:73:49:
1a:15:c8:83:87:89:ae:02:0c:50:e7:95:d3:76:88:cc:60:10:
39:57:1e:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:17 2023 by rpki-client on console-ams.rpki-client.org