Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/c7c4a8-342c-4ed9-b521-a2fa42ec362e/1/34CFI7opWaRmJmEU3USp1-pdsUM.roa
File: 34CFI7opWaRmJmEU3USp1-pdsUM.roa (raw, json)
Hash identifier: VR60UPNjtAQXCb1BsK4C3X1TTKyz2UA14zMEaxfz8kQ=
Subject key identifier: DF:80:85:23:BA:29:59:A4:66:26:61:14:DD:44:A9:D7:EA:5D:B1:43
Certificate issuer: /CN=b70d0e166fa5f2c7855b024b35c47e57bdc55656
Certificate serial: 04A1322B
Authority key identifier: B7:0D:0E:16:6F:A5:F2:C7:85:5B:02:4B:35:C4:7E:57:BD:C5:56:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tw0OFm-l8seFWwJLNcR-V73FVlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/c7c4a8-342c-4ed9-b521-a2fa42ec362e/1/34CFI7opWaRmJmEU3USp1-pdsUM.roa
Signing time: Sat 01 Jan 2022 10:03:12 +0000
ROA not before: Sat 01 Jan 2022 10:03:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210816
IP address blocks: 2a10:4646:c0::/44 maxlen: 44
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77673003 (0x4a1322b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b70d0e166fa5f2c7855b024b35c47e57bdc55656
Validity
Not Before: Jan 1 10:03:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=df808523ba2959a466266114dd44a9d7ea5db143
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:3f:23:1f:38:24:fb:eb:c7:58:44:95:a7:12:
e1:cb:46:75:48:28:40:47:80:1a:95:2a:a2:ce:13:
b3:09:1b:a1:99:bf:3d:d0:dc:0a:af:43:26:68:c3:
9d:dd:56:d2:99:56:96:14:e5:fe:21:3e:ab:24:24:
2d:92:6c:9a:b4:0a:cc:72:51:3f:1e:36:c8:ea:cc:
80:76:eb:62:31:a9:b8:30:2c:82:6a:44:ff:a6:76:
c0:52:99:ef:f5:96:94:0e:33:23:ee:c4:42:51:83:
58:a5:a3:ff:f6:19:c3:65:25:6b:8b:ce:ec:1f:9b:
af:fd:39:6e:ab:0f:d4:5f:14:ae:5e:96:71:cf:08:
8a:56:6b:9a:16:62:6e:ad:15:a1:a5:07:1d:69:f3:
ab:fe:a0:b4:4d:66:57:a7:dd:d2:ab:79:14:7d:5c:
7f:44:48:eb:ad:4e:bc:50:b2:eb:e9:dc:e8:d9:8f:
4f:24:86:31:44:63:5d:66:a7:a2:16:db:6c:af:e4:
e7:5a:e5:c4:3c:32:9a:91:15:9c:38:ce:00:20:77:
95:a7:83:4c:c1:2f:b4:d2:44:9e:d2:a7:45:2e:89:
fd:5b:3f:fd:9f:33:38:bd:54:fb:c1:83:2b:8d:66:
18:d9:9e:f5:79:61:13:20:10:da:53:87:64:91:eb:
bf:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:80:85:23:BA:29:59:A4:66:26:61:14:DD:44:A9:D7:EA:5D:B1:43
X509v3 Authority Key Identifier:
keyid:B7:0D:0E:16:6F:A5:F2:C7:85:5B:02:4B:35:C4:7E:57:BD:C5:56:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tw0OFm-l8seFWwJLNcR-V73FVlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/c7c4a8-342c-4ed9-b521-a2fa42ec362e/1/34CFI7opWaRmJmEU3USp1-pdsUM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/c7c4a8-342c-4ed9-b521-a2fa42ec362e/1/tw0OFm-l8seFWwJLNcR-V73FVlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:4646:c0::/44
Signature Algorithm: sha256WithRSAEncryption
3b:d2:5b:c4:d6:a6:78:14:82:3a:4d:80:cc:d9:b5:2c:fd:95:
3f:88:be:61:67:b8:d6:ba:b6:f1:d8:22:ef:c2:b1:72:7a:80:
ed:de:1f:c1:1d:6c:63:3f:23:e8:cd:87:30:8b:c8:eb:b2:2a:
ec:66:68:d7:8b:f2:7f:90:a6:2c:e5:5d:82:b1:28:57:9f:fc:
8c:a9:09:2d:2f:25:00:e5:a5:58:72:b4:69:0e:76:e8:3f:2a:
02:b6:48:67:a5:60:fd:39:76:3a:4c:44:12:7d:20:70:e6:a9:
f6:85:ac:ae:97:b0:ce:87:c6:cc:db:21:5c:15:ef:4e:33:d6:
6d:c0:30:73:28:49:8d:98:69:08:80:95:1c:2a:37:50:fc:36:
c5:5b:00:22:51:b8:37:4c:c9:75:e4:38:30:d0:4b:39:31:5e:
8a:1a:c4:db:49:4f:13:4f:05:c6:eb:fe:aa:dc:0f:50:47:82:
27:9c:a5:b1:1a:bd:1e:1b:24:b3:8d:64:50:b7:66:2c:7f:0d:
c6:ae:9e:e4:68:94:87:ec:d6:81:8c:ea:aa:46:50:7c:04:8f:
79:e0:98:e3:31:47:4d:05:c8:bb:c7:fd:84:38:62:b8:fe:ff:
b3:da:82:25:81:23:ee:a8:e5:19:55:64:7d:66:06:50:7e:17:
e9:be:ff:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:34 2024 by rpki-client on console-fra.rpki-client.org