Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/e5c0b6-8788-4bb9-b885-3fbfb94d9100/1/Avc_1MPbjR6FBHKSwUZOw2UfH_U.roa
File: Avc_1MPbjR6FBHKSwUZOw2UfH_U.roa (raw, json)
Hash identifier: wHedZyieY426T72sg4V9QDldt+X+Xw+ak/Sgez1KyPA=
Subject key identifier: 02:F7:3F:D4:C3:DB:8D:1E:85:04:72:92:C1:46:4E:C3:65:1F:1F:F5
Certificate issuer: /CN=09b9d37450b62ae3f144eb42ac52ce243b628a7a
Certificate serial: 0184F17EF5DEC63B07C821DBDA903478FFD1
Authority key identifier: 09:B9:D3:74:50:B6:2A:E3:F1:44:EB:42:AC:52:CE:24:3B:62:8A:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CbnTdFC2KuPxROtCrFLOJDtiino.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/e5c0b6-8788-4bb9-b885-3fbfb94d9100/1/Avc_1MPbjR6FBHKSwUZOw2UfH_U.roa
Signing time: Thu 08 Dec 2022 11:29:00 +0000
ROA not before: Thu 08 Dec 2022 11:29:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3280
IP address blocks: 2a0e:d480::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f1:7e:f5:de:c6:3b:07:c8:21:db:da:90:34:78:ff:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09b9d37450b62ae3f144eb42ac52ce243b628a7a
Validity
Not Before: Dec 8 11:29:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=02f73fd4c3db8d1e85047292c1464ec3651f1ff5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:b3:1c:74:f0:0c:6f:e0:ac:a5:46:24:2f:39:
ee:85:26:e2:a6:cf:b0:43:27:75:8d:e4:91:88:a7:
e9:27:21:54:68:42:e5:3d:76:bc:69:ad:ff:74:22:
a5:84:22:11:e1:64:a3:40:1c:87:2a:3c:fe:e0:18:
07:a5:09:bc:62:8b:45:88:19:5c:c2:a3:54:cf:d8:
e8:e2:30:4e:28:8f:d5:e5:0c:e0:1b:33:21:b5:e8:
92:9d:d2:69:a5:9f:b0:69:0d:df:cf:c7:08:fd:b9:
57:d1:8a:cd:27:2b:f1:47:18:ae:5b:27:5f:ae:60:
43:97:22:f0:21:8f:e6:28:b1:9b:5f:74:3d:00:a8:
40:67:6d:7e:d5:9d:a8:5f:e5:11:8a:5c:57:21:dc:
99:fc:5c:d5:13:ad:ff:5d:29:31:db:93:c2:f0:12:
f3:9a:8e:8d:6d:ce:02:8e:0a:e9:ef:01:3e:c9:09:
7e:af:85:e5:eb:23:18:dd:76:6c:fe:4b:f9:62:80:
84:a8:c4:23:16:bb:2c:8e:ac:4a:07:06:0d:2d:80:
53:e6:ea:e3:92:12:37:22:0c:eb:98:ec:7b:03:fd:
c7:b8:6c:05:68:9e:4e:e4:c3:1b:25:eb:39:a8:46:
67:64:fa:31:d6:1c:64:98:72:24:9f:fa:f2:13:5a:
35:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:F7:3F:D4:C3:DB:8D:1E:85:04:72:92:C1:46:4E:C3:65:1F:1F:F5
X509v3 Authority Key Identifier:
keyid:09:B9:D3:74:50:B6:2A:E3:F1:44:EB:42:AC:52:CE:24:3B:62:8A:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CbnTdFC2KuPxROtCrFLOJDtiino.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/e5c0b6-8788-4bb9-b885-3fbfb94d9100/1/Avc_1MPbjR6FBHKSwUZOw2UfH_U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/e5c0b6-8788-4bb9-b885-3fbfb94d9100/1/CbnTdFC2KuPxROtCrFLOJDtiino.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:d480::/40
Signature Algorithm: sha256WithRSAEncryption
39:bd:55:e3:dc:13:08:ed:04:09:5c:b0:51:de:70:71:5f:ae:
de:2d:8e:af:b1:2a:62:57:39:61:59:39:ac:8b:2c:e7:f0:2c:
0c:e2:ea:c0:90:79:b1:60:2b:f0:ef:bd:06:4c:eb:1a:10:07:
5d:c4:ee:8c:32:60:41:4e:2e:d7:55:f9:73:1b:0f:21:54:25:
66:c1:a1:57:d6:b6:72:a5:be:27:ae:cb:9a:11:75:3c:12:dd:
ae:84:2e:d2:d8:08:14:60:67:75:3e:bd:7e:25:f0:db:d9:75:
88:36:dd:f9:17:e7:87:f8:bc:69:d3:f0:fd:39:60:56:48:91:
e1:fb:17:dd:1a:25:04:67:af:18:5a:81:ab:a6:ed:7f:9e:6f:
9d:e8:2c:91:e2:0d:a4:50:6a:a2:16:47:ae:62:40:ec:a3:35:
a3:93:48:6b:3f:49:5a:d5:c6:d3:52:58:e6:54:2a:8f:79:d8:
9a:c0:27:2f:f5:96:a8:7d:24:54:85:b8:b1:c4:3a:14:0d:6f:
94:bd:b0:58:45:ba:ee:83:e1:05:ad:b6:99:be:5f:ad:22:57:
d6:e2:39:02:25:f3:00:83:70:1c:4a:58:07:8e:02:e2:87:c4:
2f:7f:83:3d:f0:c7:1d:0f:fc:e2:a9:e6:68:9e:2b:ec:61:44:
82:41:62:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:17 2024 by rpki-client on console-fra.rpki-client.org