Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/O73swBQoLMA6USOxCw4zJ8iTpJY.roa
File: O73swBQoLMA6USOxCw4zJ8iTpJY.roa (raw, json)
Hash identifier: JDDT7sbhJqwrLaXGtXIfUOhjSUyUfE2fzCNt7djLxLM=
Subject key identifier: 3B:BD:EC:C0:14:28:2C:C0:3A:51:23:B1:0B:0E:33:27:C8:93:A4:96
Certificate issuer: /CN=54914541fd1b95e7c0afc875fbef78794f55386b
Certificate serial: 17464DD7
Authority key identifier: 54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/O73swBQoLMA6USOxCw4zJ8iTpJY.roa
Signing time: Sun 27 Mar 2022 16:22:30 +0000
ROA not before: Sun 27 Mar 2022 16:22:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7721
IP address blocks: 2a06:a005:220::/44 maxlen: 48
2a06:a005:230::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 390483415 (0x17464dd7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54914541fd1b95e7c0afc875fbef78794f55386b
Validity
Not Before: Mar 27 16:22:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3bbdecc014282cc03a5123b10b0e3327c893a496
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:1c:f2:75:a6:ac:e3:56:df:7f:68:ee:0d:5d:
00:7a:07:c4:e6:5a:01:0d:3c:01:cc:3c:fe:8d:a1:
6d:a3:bf:39:09:7a:4b:20:7b:e5:75:47:53:aa:cb:
09:82:66:54:25:1a:e6:ca:a2:71:a4:d1:cb:fe:0d:
f4:67:51:40:92:2a:10:4a:e2:d7:94:fe:0d:87:07:
c1:c5:c3:63:78:5f:9b:9f:0f:af:6c:96:c2:d9:fb:
9a:03:ab:c4:5a:71:b1:cb:4f:ce:fd:4a:3e:a2:36:
b2:b6:55:be:fa:59:7b:a4:16:91:98:79:2d:13:f0:
98:02:d0:bc:ca:9e:9c:cb:f9:c5:cc:76:e2:95:c9:
aa:34:98:d2:5b:6a:ec:9e:62:b0:9c:90:af:c8:95:
18:61:5d:b6:79:f3:6b:75:62:d0:80:7c:5d:12:ac:
7c:a1:cf:39:82:a3:9d:3a:84:df:82:8a:00:d0:32:
a3:22:6f:1c:bb:4b:8c:47:74:86:bc:0c:c6:a8:34:
98:e6:eb:50:05:79:48:21:b8:f9:8e:cf:53:34:4e:
14:45:a6:f2:66:ca:b8:17:e6:3c:99:6e:a9:b4:42:
6c:a2:1c:2a:e5:2b:d9:b1:51:66:29:3e:d3:18:9f:
83:bb:91:53:6a:ba:3a:2f:66:fa:4a:25:c0:2d:68:
97:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:BD:EC:C0:14:28:2C:C0:3A:51:23:B1:0B:0E:33:27:C8:93:A4:96
X509v3 Authority Key Identifier:
keyid:54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/O73swBQoLMA6USOxCw4zJ8iTpJY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/VJFFQf0blefAr8h1--94eU9VOGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:220::/43
Signature Algorithm: sha256WithRSAEncryption
60:ea:2e:96:bd:fc:d9:fc:ee:38:d7:79:22:19:42:1c:de:5c:
66:c2:2d:5d:17:44:17:08:9a:9f:56:ae:e8:95:4b:37:f7:01:
1c:e2:ca:75:f3:fd:c9:59:92:22:3d:84:64:b3:fd:9c:ce:96:
4d:e9:22:68:1a:25:66:2f:67:56:93:80:53:0b:53:3e:23:4e:
cc:21:03:62:3b:11:cd:c3:7a:a3:75:3a:cd:a5:5f:c1:19:c0:
44:fe:02:27:17:26:cb:1a:97:4b:f6:43:5f:f4:d6:01:4a:75:
26:f2:cf:04:94:19:31:46:16:4f:7b:19:c5:f2:a7:fb:b5:ca:
e2:00:a3:fd:15:37:9e:85:61:44:41:0a:ba:2b:a3:22:db:58:
35:c9:69:d3:84:9d:9a:3e:dc:32:b1:38:16:89:24:00:df:63:
65:96:3f:8f:41:bf:04:2c:5a:b5:a9:01:4f:bc:fa:83:8d:4b:
6f:bd:26:71:79:7c:9d:e1:13:41:a8:75:99:ea:20:d6:d0:58:
e7:92:07:02:ba:2e:cd:0e:93:4a:40:a9:a6:a9:6d:08:9f:d5:
83:fa:38:71:d7:8f:b7:c0:53:07:a9:5d:67:a5:19:d6:7f:7b:
bf:1f:65:ec:a7:f6:a3:0b:a9:bb:73:93:da:a3:99:44:58:9d:
38:31:b1:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:01 2024 by rpki-client on console-ams.rpki-client.org