Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/714f44-fc37-45a0-b67d-722150cddd98/1/dnEZ0LuevTPRBomolxlUyy2TK7g.roa
File: dnEZ0LuevTPRBomolxlUyy2TK7g.roa (raw, json)
Hash identifier: Apeu+osAZfYZrTslo0xYMaTL033e06pDJ5PTd8FtyEU=
Subject key identifier: 76:71:19:D0:BB:9E:BD:33:D1:06:89:A8:97:19:54:CB:2D:93:2B:B8
Certificate issuer: /CN=fc6fa9111449a693e8419d2344a1edaad8c7e096
Certificate serial: 0183450FA3545D53A7D1023D7278C61F60C9
Authority key identifier: FC:6F:A9:11:14:49:A6:93:E8:41:9D:23:44:A1:ED:AA:D8:C7:E0:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_G-pERRJppPoQZ0jRKHtqtjH4JY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/714f44-fc37-45a0-b67d-722150cddd98/1/dnEZ0LuevTPRBomolxlUyy2TK7g.roa
Signing time: Fri 16 Sep 2022 06:49:56 +0000
ROA not before: Fri 16 Sep 2022 06:49:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 40676
IP address blocks: 2a10:17c0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:45:0f:a3:54:5d:53:a7:d1:02:3d:72:78:c6:1f:60:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc6fa9111449a693e8419d2344a1edaad8c7e096
Validity
Not Before: Sep 16 06:49:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=767119d0bb9ebd33d10689a8971954cb2d932bb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:01:62:83:cb:14:c1:42:24:8b:aa:1b:bb:98:
58:e5:fc:f3:72:dd:8a:c5:d4:09:f1:38:a0:cd:78:
00:38:24:14:a7:ae:07:c2:ec:3a:6f:eb:09:49:39:
c2:35:73:fd:32:54:06:05:60:4d:93:92:88:91:8b:
00:f6:84:c5:73:66:99:99:a7:50:a0:02:ea:13:76:
72:97:f4:a2:ba:26:f6:19:64:b4:40:58:84:ae:2a:
87:bf:77:a8:07:4c:23:98:d1:10:6c:d0:1f:e0:13:
af:10:22:b4:5c:85:dc:45:74:29:aa:26:77:eb:08:
6c:d0:14:1d:13:5c:40:60:92:d0:e9:19:96:57:80:
35:ec:72:e2:aa:fb:10:75:8b:05:a3:1e:a5:27:b6:
77:be:59:1a:9b:e6:7e:20:d5:f8:67:1a:d1:04:44:
42:c8:79:b0:59:32:9d:36:3d:c9:6f:c8:6b:2c:b7:
a9:6d:c8:a7:96:95:91:ba:e3:b0:a9:8b:9b:0e:dd:
66:c0:c1:bf:43:7a:75:91:84:8c:6c:87:3d:00:10:
b2:6b:30:1b:ee:1d:69:44:da:a6:39:4e:b2:38:71:
9d:74:ab:7f:03:15:ac:ae:57:17:87:e9:92:e8:ca:
de:ac:1c:3b:43:c2:19:79:ea:04:1b:40:9c:f5:2f:
77:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:71:19:D0:BB:9E:BD:33:D1:06:89:A8:97:19:54:CB:2D:93:2B:B8
X509v3 Authority Key Identifier:
keyid:FC:6F:A9:11:14:49:A6:93:E8:41:9D:23:44:A1:ED:AA:D8:C7:E0:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_G-pERRJppPoQZ0jRKHtqtjH4JY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/714f44-fc37-45a0-b67d-722150cddd98/1/dnEZ0LuevTPRBomolxlUyy2TK7g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/714f44-fc37-45a0-b67d-722150cddd98/1/_G-pERRJppPoQZ0jRKHtqtjH4JY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:17c0::/29
Signature Algorithm: sha256WithRSAEncryption
89:21:99:1c:cf:1b:c6:f0:71:95:c4:a0:c2:b6:25:d8:86:7e:
03:8a:98:1d:87:6e:f8:96:db:c8:54:34:c9:b3:73:c7:eb:4a:
b6:70:87:03:99:07:91:65:77:9a:ee:ea:2f:a5:22:1f:72:d0:
97:8b:2b:75:62:ea:d8:b5:95:4b:fd:00:2c:77:3d:64:f7:0e:
ef:b7:e2:5d:79:4f:1b:c1:ca:99:8c:01:34:14:86:a0:c7:38:
76:9b:36:21:58:ad:b2:bf:90:6e:3a:e7:4e:12:72:d8:79:99:
82:b0:91:c3:af:fe:0a:7c:1f:fe:aa:c7:4b:55:42:1f:09:c6:
ff:37:e6:af:26:23:89:8b:e5:30:77:0e:44:43:a9:5c:c3:5b:
d9:31:fa:d4:87:0d:f3:8d:85:0e:9f:74:c1:c7:0c:1a:f2:04:
97:75:95:ed:09:4f:19:98:7b:39:dc:6b:45:b5:11:50:65:1b:
f5:9d:a7:f0:bb:b2:9c:84:d4:bc:20:0e:17:da:dd:3b:d2:fb:
a3:b4:35:67:43:bd:c3:db:d4:8e:64:d3:d4:53:32:2b:7d:df:
3b:76:cd:bf:28:5b:c2:3e:c3:59:4d:58:b7:34:29:2a:d9:a0:
7b:36:9c:2c:9d:9a:f1:53:33:78:f5:53:9d:b5:ba:e7:85:fa:
82:8d:90:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:25 2023 by rpki-client on console-ams.rpki-client.org