Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/f28922-fc7f-4fc6-92a9-871c3e9b1c4c/1/fdQnqN6ENpb_elLdumQR9ObAqQ4.roa
File: fdQnqN6ENpb_elLdumQR9ObAqQ4.roa (raw, json)
Hash identifier: CJg4yJc+UpYSk/HYfVd0GjDSrkDXAJ/mi82RL15JyZU=
Subject key identifier: 7D:D4:27:A8:DE:84:36:96:FF:7A:52:DD:BA:64:11:F4:E6:C0:A9:0E
Certificate issuer: /CN=a4f0a5a0f1693a9742d7faaf4f8fd17e81cc2ab6
Certificate serial: 01856C6F043794A54556F409335A002ABA28
Authority key identifier: A4:F0:A5:A0:F1:69:3A:97:42:D7:FA:AF:4F:8F:D1:7E:81:CC:2A:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pPCloPFpOpdC1_qvT4_RfoHMKrY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/f28922-fc7f-4fc6-92a9-871c3e9b1c4c/1/fdQnqN6ENpb_elLdumQR9ObAqQ4.roa
Signing time: Sun 01 Jan 2023 08:24:52 +0000
ROA not before: Sun 01 Jan 2023 08:24:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61157
IP address blocks: 2a0d:f46::/32 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:6f:04:37:94:a5:45:56:f4:09:33:5a:00:2a:ba:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4f0a5a0f1693a9742d7faaf4f8fd17e81cc2ab6
Validity
Not Before: Jan 1 08:24:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7dd427a8de843696ff7a52ddba6411f4e6c0a90e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:5f:6f:48:f8:57:ba:20:30:ff:11:95:4f:13:
c0:92:e0:f0:ea:a8:19:13:b5:c8:0e:d0:da:52:a8:
5b:f6:67:08:7b:00:02:ef:ec:48:02:15:6e:69:99:
2c:eb:9a:a3:73:2a:f1:ed:71:8b:87:3e:6c:0d:44:
2e:bc:4a:d1:fe:86:f5:c9:23:1e:7f:63:9d:2b:20:
2f:bf:0f:d4:c2:53:ab:13:86:36:7b:0d:4f:51:21:
f1:21:c0:f3:51:69:29:83:15:d2:a4:cf:87:e6:0c:
1d:f1:a0:8e:df:19:12:1f:3d:b8:53:b8:fe:76:d2:
28:35:b8:40:f3:94:f4:23:40:db:aa:77:64:54:a8:
09:6d:c8:fc:d3:5e:40:07:7e:1f:8e:2e:a4:9d:14:
35:47:12:0a:06:36:29:86:96:b8:95:5c:0b:66:65:
d3:74:c7:f7:1a:d0:74:b3:0c:5e:83:d7:12:35:43:
58:ff:c5:52:6b:82:d0:da:e2:10:53:92:6a:67:25:
a9:62:fd:5a:34:28:aa:0d:b1:ab:74:33:a2:13:d1:
65:80:ea:47:0e:62:a0:9a:f3:e1:21:c5:12:91:e6:
95:69:b7:1e:de:52:30:83:ce:6d:56:f2:db:04:c9:
6c:eb:05:da:a9:30:5c:3a:8a:4e:26:88:68:4f:34:
41:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:D4:27:A8:DE:84:36:96:FF:7A:52:DD:BA:64:11:F4:E6:C0:A9:0E
X509v3 Authority Key Identifier:
keyid:A4:F0:A5:A0:F1:69:3A:97:42:D7:FA:AF:4F:8F:D1:7E:81:CC:2A:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pPCloPFpOpdC1_qvT4_RfoHMKrY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/f28922-fc7f-4fc6-92a9-871c3e9b1c4c/1/fdQnqN6ENpb_elLdumQR9ObAqQ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/f28922-fc7f-4fc6-92a9-871c3e9b1c4c/1/pPCloPFpOpdC1_qvT4_RfoHMKrY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:f46::/32
Signature Algorithm: sha256WithRSAEncryption
7c:88:97:a5:1f:2e:9c:7c:c3:d1:51:6b:5c:2f:dc:b7:10:22:
ac:57:d5:9b:b4:47:e1:9b:3d:67:9b:ca:6f:e2:97:cc:7d:47:
55:f2:aa:11:e3:b4:b1:22:3b:df:c4:d6:a2:ae:37:a6:c2:60:
48:3c:ab:a8:f0:23:03:03:5d:2f:63:95:69:44:94:6f:80:8a:
03:96:b8:d4:54:07:90:f4:c9:10:d8:67:9e:ed:7c:f8:95:7b:
5f:48:8d:b0:f7:67:bf:8c:bd:69:b3:a5:2c:fb:c3:6e:df:44:
24:8e:84:2a:f8:e9:71:69:aa:42:d5:d0:b9:9b:d9:76:74:ba:
c5:b6:9a:48:7b:70:f3:e3:03:1d:12:f2:b6:8b:ce:69:5b:71:
d9:7f:7c:64:ac:15:97:5b:87:87:4c:9f:af:cc:10:84:6b:4b:
a6:09:ff:3a:ab:72:b2:a5:06:94:4f:a2:76:34:bb:d6:6e:be:
d7:98:5f:3c:9c:9c:62:4a:91:bc:24:53:ce:ca:e2:62:42:40:
28:f4:2c:73:12:36:13:45:3d:15:59:4e:d4:3c:c6:3b:41:02:
69:a4:ed:40:b2:e2:f4:13:33:5a:46:83:6a:cb:c9:d6:1d:2a:
8f:ce:3d:0a:a4:d1:75:04:47:24:30:c2:f7:9f:a7:7b:dd:bc:
13:2b:67:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:20 2024 by rpki-client on console-ams.rpki-client.org