Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/ee1d76-59bb-40b9-bc31-b06e20997889/1/vmI5mSyKu4J1y_HFSTqEsk-KWV0.roa
File: vmI5mSyKu4J1y_HFSTqEsk-KWV0.roa (raw, json)
Hash identifier: IgXI5zpEqm6AdojwhpLa6fc9mOJOYL1xGmFxRAdSIHs=
Subject key identifier: BE:62:39:99:2C:8A:BB:82:75:CB:F1:C5:49:3A:84:B2:4F:8A:59:5D
Certificate issuer: /CN=07447a5109aa95f5b55803a552ce9ec9bb7aede1
Certificate serial: 018CCA2A4A30B508D72101B19E7CC9C69DB4
Authority key identifier: 07:44:7A:51:09:AA:95:F5:B5:58:03:A5:52:CE:9E:C9:BB:7A:ED:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B0R6UQmqlfW1WAOlUs6eybt67eE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/ee1d76-59bb-40b9-bc31-b06e20997889/1/vmI5mSyKu4J1y_HFSTqEsk-KWV0.roa
Signing time: Tue 02 Jan 2024 12:33:38 +0000
ROA not before: Tue 02 Jan 2024 12:33:38 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211939
IP address blocks: 2001:678:ab0::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2a:4a:30:b5:08:d7:21:01:b1:9e:7c:c9:c6:9d:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07447a5109aa95f5b55803a552ce9ec9bb7aede1
Validity
Not Before: Jan 2 12:33:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=be6239992c8abb8275cbf1c5493a84b24f8a595d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:30:b6:ba:8a:5e:35:5b:f2:3d:cd:d8:5e:6d:
0f:dd:ba:88:9a:57:bc:4a:d9:97:24:7a:a9:35:fe:
98:53:cc:0d:32:92:96:a7:e9:86:95:9c:9b:fb:3d:
36:fe:99:25:79:db:f8:12:a8:51:35:bf:9c:90:8c:
7a:9d:ec:fc:e6:03:c7:bd:a0:4e:8d:dd:95:94:c4:
40:37:51:f2:e5:7f:f7:e4:9b:d6:6d:60:f8:d0:74:
de:7e:31:21:4c:18:d5:f3:7b:ff:21:86:d6:b7:97:
b7:ce:c9:48:57:91:36:92:16:6a:92:95:fe:d7:c9:
cb:ff:fc:40:46:89:0b:86:11:90:81:d1:d2:19:f1:
28:e7:62:90:0a:c5:93:9a:76:bd:43:2a:58:62:ca:
28:de:79:95:28:c0:34:e9:7d:07:50:16:b6:c4:75:
e0:1c:a3:95:4c:9e:16:65:5c:4b:0d:f6:44:0d:db:
02:b4:d7:de:2b:a9:30:a3:d3:ae:74:0d:96:49:aa:
00:84:56:3b:dc:07:78:66:50:d6:eb:bd:99:35:97:
c4:ff:62:95:c5:6e:ab:3c:83:2d:12:05:8f:e1:d3:
fa:11:c6:d3:f7:e4:bf:9b:aa:9c:74:42:72:68:e4:
65:8c:68:fa:55:5a:05:ef:b0:42:45:37:dd:1e:9d:
9d:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:62:39:99:2C:8A:BB:82:75:CB:F1:C5:49:3A:84:B2:4F:8A:59:5D
X509v3 Authority Key Identifier:
keyid:07:44:7A:51:09:AA:95:F5:B5:58:03:A5:52:CE:9E:C9:BB:7A:ED:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B0R6UQmqlfW1WAOlUs6eybt67eE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/ee1d76-59bb-40b9-bc31-b06e20997889/1/vmI5mSyKu4J1y_HFSTqEsk-KWV0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/ee1d76-59bb-40b9-bc31-b06e20997889/1/B0R6UQmqlfW1WAOlUs6eybt67eE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:ab0::/48
Signature Algorithm: sha256WithRSAEncryption
6f:d5:55:17:6b:21:48:00:77:ee:b1:43:a9:e8:fa:33:cf:15:
f9:13:7c:8f:af:ca:a5:f3:34:a8:11:78:2b:09:b2:e2:bb:c6:
48:f0:04:10:10:2e:a7:d0:cf:5f:5d:a1:f6:c9:78:fd:cd:3c:
fe:cf:ac:83:58:5d:a2:91:7e:a5:6f:77:32:eb:0e:39:10:f0:
6c:67:6e:2b:a1:42:d6:72:48:2f:9f:64:45:2d:d3:35:fd:e3:
f5:f2:79:e0:51:4a:d8:99:b5:44:09:60:33:d0:58:d4:88:a4:
dd:a8:bc:99:d2:1a:53:80:42:bb:48:97:c6:f7:2c:0b:fc:e0:
e7:08:6d:58:ca:1f:50:f8:3f:99:fb:d0:4f:90:45:c3:5c:16:
f6:4f:14:80:35:b1:12:34:be:ab:38:e0:f7:9a:7a:48:18:46:
8a:0f:a8:a6:28:71:e5:87:b4:20:c8:a5:6f:ad:fc:32:35:c8:
d9:c6:e4:d3:ec:fd:31:86:d7:fe:f4:19:25:74:b9:37:7f:fc:
48:f5:50:99:87:8c:a8:a3:34:5b:0d:05:25:37:ec:2f:00:6e:
98:84:9b:95:c5:82:fb:3c:68:ca:58:d5:68:9f:a0:a3:9c:a0:
20:42:b1:a8:15:6b:52:40:c2:b8:e2:89:00:26:11:af:73:07:
a5:9e:48:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 15 17:20:58 2024 by rpki-client on console-fra.rpki-client.org