Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/QkaoZmhs74nfQzHsx2WxG0ztvbg.roa
File: QkaoZmhs74nfQzHsx2WxG0ztvbg.roa (raw, json)
Hash identifier: VLynvucB4jifDORTkMFdWbT5qaEKMoi+LcZDOhIGgd8=
Subject key identifier: 42:46:A8:66:68:6C:EF:89:DF:43:31:EC:C7:65:B1:1B:4C:ED:BD:B8
Certificate issuer: /CN=54914541fd1b95e7c0afc875fbef78794f55386b
Certificate serial: 0184E1C22D87731DCB5166974ACF4B132B37
Authority key identifier: 54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/QkaoZmhs74nfQzHsx2WxG0ztvbg.roa
Signing time: Mon 05 Dec 2022 10:08:30 +0000
ROA not before: Mon 05 Dec 2022 10:08:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200959
IP address blocks: 2a0a:6040:e500::/40 maxlen: 48
2a06:a005:2040::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:e1:c2:2d:87:73:1d:cb:51:66:97:4a:cf:4b:13:2b:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54914541fd1b95e7c0afc875fbef78794f55386b
Validity
Not Before: Dec 5 10:08:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4246a866686cef89df4331ecc765b11b4cedbdb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:4a:f4:d8:c2:c3:09:d9:c7:76:c3:cb:4b:02:
8b:c4:9c:ef:8e:91:fd:f4:36:8d:09:1a:e5:5a:b8:
b0:fb:51:4f:79:fe:24:0e:17:a8:69:9f:ed:6e:10:
34:7d:c7:7a:71:cc:b5:1b:15:d7:18:02:c5:35:a3:
9e:83:e0:0e:88:01:9b:d4:b5:80:45:3f:b5:31:55:
04:21:d8:d9:47:b6:ae:b5:de:30:04:c0:15:44:cc:
8f:30:0c:4a:87:3b:fc:b1:a8:01:57:6f:7a:46:3b:
10:38:3f:b7:35:d1:85:5c:d5:c8:bc:97:c2:1f:2f:
fb:66:fa:ec:09:13:a3:22:0b:64:e1:4f:c7:41:42:
ef:be:99:4d:d8:ff:54:91:58:7c:37:e6:be:2f:3d:
67:35:f0:ae:12:0e:49:cd:61:39:2a:07:02:3c:c4:
66:9b:1a:5c:e5:73:cb:32:4f:19:64:17:7f:c2:12:
1a:57:15:c5:ee:56:cc:09:32:ae:32:97:b1:b5:75:
1c:f3:15:9a:ce:71:d4:dc:22:f2:79:c5:18:e7:d5:
f7:e8:4f:66:72:89:2f:07:52:f2:92:72:73:f8:43:
d3:7e:d5:5c:56:32:49:6c:17:76:2b:2d:16:37:ca:
3e:68:e0:7a:4b:d6:db:0c:8b:4f:da:55:61:ba:45:
f8:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:46:A8:66:68:6C:EF:89:DF:43:31:EC:C7:65:B1:1B:4C:ED:BD:B8
X509v3 Authority Key Identifier:
keyid:54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/QkaoZmhs74nfQzHsx2WxG0ztvbg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/VJFFQf0blefAr8h1--94eU9VOGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:2040::/44
2a0a:6040:e500::/40
Signature Algorithm: sha256WithRSAEncryption
94:7e:99:3b:67:6e:51:b4:95:93:2c:44:6f:c2:ce:84:24:dd:
89:91:98:f3:af:06:62:55:74:f7:39:d9:48:c9:36:a8:37:bd:
43:68:03:e6:26:6d:64:44:ab:3b:71:bc:74:0a:fb:90:3a:bd:
a7:cc:45:a5:74:33:61:94:49:4f:29:db:96:b9:db:ec:9c:8d:
b2:ec:5c:04:4e:6a:bc:af:ea:f5:07:2e:a3:07:91:eb:55:b7:
67:49:10:d5:48:d5:d6:b9:c7:3b:e7:cf:24:0c:37:74:e9:db:
e8:88:ef:12:0e:24:ca:d5:e3:4d:02:07:3a:ca:8f:21:a9:49:
93:cf:92:57:d2:2a:cb:a6:de:bd:fe:7d:c9:20:8a:5e:ea:33:
fd:6c:1c:ad:b5:01:4a:a0:20:b2:11:8b:20:ff:cc:98:c3:50:
1f:11:0e:b8:f5:83:e6:d9:94:4d:a3:f7:67:a6:95:d0:15:9a:
c2:6e:02:a0:7f:d5:51:d3:ad:f8:db:e8:55:61:74:d2:2d:15:
b9:6f:dd:b5:21:00:0b:3e:95:f4:1a:93:6d:93:c4:af:ee:fa:
58:94:d0:67:b1:19:ff:6e:a7:ac:6a:d8:3f:59:a5:78:8a:d1:
cb:a8:46:24:7f:de:c5:33:93:c7:54:48:e4:52:c8:c4:64:50:
26:ee:c5:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:17 2023 by rpki-client on console-ams.rpki-client.org