Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/tM8ZsqiUag8vy8CIxJTWHw7avJg.roa
File: tM8ZsqiUag8vy8CIxJTWHw7avJg.roa (raw, json)
Hash identifier: hXbaN5wUTCc441hYqgUWvOtI3jMSP6ZCmJit1ivlrWM=
Subject key identifier: B4:CF:19:B2:A8:94:6A:0F:2F:CB:C0:88:C4:94:D6:1F:0E:DA:BC:98
Certificate issuer: /CN=54914541fd1b95e7c0afc875fbef78794f55386b
Certificate serial: 18B814C3
Authority key identifier: 54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/tM8ZsqiUag8vy8CIxJTWHw7avJg.roa
Signing time: Mon 25 Apr 2022 13:53:55 +0000
ROA not before: Mon 25 Apr 2022 13:53:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213312
IP address blocks: 2a06:a005:620::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 414717123 (0x18b814c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54914541fd1b95e7c0afc875fbef78794f55386b
Validity
Not Before: Apr 25 13:53:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b4cf19b2a8946a0f2fcbc088c494d61f0edabc98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:5e:f4:ce:5d:21:fb:8a:f7:97:88:2f:1a:7e:
d6:8d:89:da:a0:79:ec:42:4e:75:41:9a:9a:73:c0:
ea:85:6d:9d:76:b8:b1:bf:91:04:43:90:9c:5c:41:
1f:83:47:a8:ef:a3:31:9e:3a:70:6a:d7:7b:99:ab:
b7:12:44:7b:96:44:0b:ad:9c:6d:ca:9e:b0:53:32:
e6:3a:be:8b:e9:f1:bb:22:8e:a8:7c:58:4d:22:21:
95:c6:83:b9:cf:c2:08:eb:8f:c6:76:3a:65:20:10:
7e:bb:98:ac:46:6a:e9:29:83:f1:46:f5:ea:e0:b9:
3b:f1:46:2b:9e:22:c6:f8:f5:11:3c:a8:41:ef:07:
62:bf:76:00:c6:ca:00:14:84:93:7e:ad:ac:76:8d:
b4:93:44:51:43:ff:fc:67:c6:fa:c5:bd:65:d1:72:
be:43:1f:f0:95:a3:ff:1c:8f:c2:5c:af:a4:8e:cb:
c3:7c:40:21:e4:d2:e1:26:97:47:5e:ce:59:bd:7b:
16:da:21:1c:fb:39:0d:5a:c4:22:79:ad:ee:3e:a3:
d9:55:5d:f8:ec:a0:7b:67:97:c6:fa:4f:c9:f0:4c:
53:81:8f:dc:04:14:ac:8e:d3:60:7c:8e:f8:dc:4e:
28:bf:62:a4:23:56:1c:cb:96:31:aa:9f:45:c2:6c:
d0:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:CF:19:B2:A8:94:6A:0F:2F:CB:C0:88:C4:94:D6:1F:0E:DA:BC:98
X509v3 Authority Key Identifier:
keyid:54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/tM8ZsqiUag8vy8CIxJTWHw7avJg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/VJFFQf0blefAr8h1--94eU9VOGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:620::/44
Signature Algorithm: sha256WithRSAEncryption
84:b1:84:b1:48:8c:95:09:0c:8d:0b:d8:b7:0c:5e:05:56:6e:
c0:f9:03:1d:d2:b6:e8:be:4e:07:7c:b5:83:0a:6f:be:4e:dc:
74:b6:f9:2b:ae:1a:18:b3:1c:0b:a1:75:dc:ad:63:6d:31:79:
fc:4a:17:85:1e:f7:14:39:88:d0:ce:00:8b:e1:5f:b5:3e:97:
7f:51:2b:d5:c8:2a:81:43:be:f9:97:c0:86:26:ac:e9:de:7e:
69:4a:6c:69:7d:9a:84:25:7a:b7:f4:ed:f9:6e:ed:b2:ba:cc:
61:19:ba:14:75:d9:1c:ed:46:f9:3d:4b:66:db:06:bc:14:89:
8b:c4:c6:64:73:39:71:6a:a3:78:a2:84:df:cc:40:1b:56:73:
3d:4f:86:94:9d:56:0d:6d:8a:3b:dc:48:71:c4:66:99:48:d5:
c0:e6:cd:52:af:4f:32:f1:a7:28:a2:fe:ec:7b:78:ae:0e:53:
7f:c8:25:f5:4b:30:82:c2:65:c4:4d:e9:4e:50:37:c3:3b:69:
2d:56:f2:97:44:be:e5:5f:90:4c:c0:8b:9e:43:5b:14:7b:9c:
39:be:d4:f7:13:f9:61:3c:3c:30:7e:13:6a:60:a7:29:bc:e4:
0b:84:9b:dd:61:12:53:dc:94:81:66:43:e0:61:80:c8:f2:ed:
24:fb:43:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:38 2023 by rpki-client on console-fra.rpki-client.org