Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/SsemTiHdNBOIjuw41Q4G_UTkBcg.roa
File: SsemTiHdNBOIjuw41Q4G_UTkBcg.roa (raw, json)
Hash identifier: 2ZTmFuyAFmFM1cZhV3HkRvzvw4o80s3EUKDn7Ewcbd0=
Subject key identifier: 4A:C7:A6:4E:21:DD:34:13:88:8E:EC:38:D5:0E:06:FD:44:E4:05:C8
Certificate issuer: /CN=54914541fd1b95e7c0afc875fbef78794f55386b
Certificate serial: 1A6B00E4
Authority key identifier: 54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/SsemTiHdNBOIjuw41Q4G_UTkBcg.roa
Signing time: Wed 01 Jun 2022 00:17:14 +0000
ROA not before: Wed 01 Jun 2022 00:17:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205398
IP address blocks: 2a06:a005:2db::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 443220196 (0x1a6b00e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54914541fd1b95e7c0afc875fbef78794f55386b
Validity
Not Before: Jun 1 00:17:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4ac7a64e21dd3413888eec38d50e06fd44e405c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:fe:29:b1:7c:c3:0c:27:6f:89:a5:18:eb:ce:
e4:9d:3b:e4:f6:ec:fe:22:82:29:78:0c:96:23:05:
7a:01:4f:0c:be:3c:cb:cd:d8:be:2d:c2:a6:e4:68:
60:4f:35:6b:92:39:8f:77:1a:45:d5:c9:0a:44:ea:
e4:a4:6a:f7:c8:36:2c:f7:b2:d9:bc:7a:70:21:bf:
bc:7e:86:2a:1c:d4:a6:56:5d:78:67:18:cf:79:1f:
0e:63:d3:08:db:89:ba:24:91:d0:52:7d:94:d5:c4:
f5:b7:ce:db:43:22:26:26:0e:70:76:85:0a:cb:0a:
7c:e8:b4:a0:0e:f8:c4:2f:d7:89:7f:3c:09:94:dd:
eb:61:a3:ff:1f:54:8f:59:db:42:2d:77:8c:75:ac:
6f:43:da:db:dc:13:25:17:de:da:35:9e:43:bd:34:
be:e0:b4:59:67:cd:5e:e5:81:52:21:ec:42:02:8b:
89:f7:9e:02:85:a1:60:7a:08:87:ba:c1:4f:e3:87:
61:a7:0b:d7:39:ca:db:3b:96:67:fb:b1:83:e6:b3:
ae:f2:7b:df:40:2e:34:f0:65:72:3a:6a:92:a9:4e:
e8:a9:a1:69:0d:d4:93:fd:3a:d9:93:c7:4e:af:4f:
fd:8c:dd:d6:e2:48:dc:2a:f2:8b:1f:7d:9b:bc:1d:
bd:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:C7:A6:4E:21:DD:34:13:88:8E:EC:38:D5:0E:06:FD:44:E4:05:C8
X509v3 Authority Key Identifier:
keyid:54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/SsemTiHdNBOIjuw41Q4G_UTkBcg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/VJFFQf0blefAr8h1--94eU9VOGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:2db::/48
Signature Algorithm: sha256WithRSAEncryption
48:14:67:8c:de:b1:53:fc:e3:3e:50:0e:20:4f:4b:69:78:20:
e9:af:0e:ba:73:b0:0d:7a:38:df:19:c8:0c:3e:5f:2c:7e:09:
ce:02:0a:c4:79:63:69:13:ed:7b:0e:09:4a:38:13:fb:d3:ae:
5a:98:a4:c8:bd:f8:fd:49:12:bf:58:41:50:84:e9:cb:2c:fc:
2c:a5:35:93:0b:e5:a4:d1:d1:3c:c2:fb:9b:f1:2a:22:d3:bb:
67:bb:47:ec:35:ba:bb:36:d1:ac:62:21:25:ea:07:6b:fa:ca:
54:8f:16:c9:4b:35:ad:ad:e4:dd:97:53:5e:36:34:e6:90:0f:
0c:ca:a8:3a:61:d4:04:9c:ab:84:cf:b6:be:bf:99:0b:1b:8b:
3f:0b:43:a6:75:03:73:1a:10:9a:51:fe:be:81:00:2b:ea:1f:
d7:48:da:aa:b6:ea:06:f4:66:51:9a:62:93:f1:f3:0d:f6:d9:
7c:a8:71:dd:3a:bd:f9:19:05:65:3b:ee:3f:f5:16:88:9a:77:
2e:94:1c:17:8e:64:39:59:04:89:b5:cd:ad:8d:29:be:3f:b4:
bf:34:7e:3e:21:ec:a0:5e:bb:d6:a4:d9:0a:be:e4:39:98:53:
d7:7c:ce:32:4e:e7:45:89:b2:80:2e:b0:ac:86:27:ac:a6:f3:
10:0f:e7:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:36 2023 by rpki-client on console-fra.rpki-client.org