Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/c7c4a8-342c-4ed9-b521-a2fa42ec362e/1/BRrH1yu1MAZ-zgZdplb5y271hyk.roa
File: BRrH1yu1MAZ-zgZdplb5y271hyk.roa (raw, json)
Hash identifier: hH/dpeTm/A61FBdXfjsM1spolvbl16Ix07PODm9dNPs=
Subject key identifier: 05:1A:C7:D7:2B:B5:30:06:7E:CE:06:5D:A6:56:F9:CB:6E:F5:87:29
Certificate issuer: /CN=b70d0e166fa5f2c7855b024b35c47e57bdc55656
Certificate serial: 018471E067D4078CBE70AEDE5037418E84F9
Authority key identifier: B7:0D:0E:16:6F:A5:F2:C7:85:5B:02:4B:35:C4:7E:57:BD:C5:56:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tw0OFm-l8seFWwJLNcR-V73FVlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/c7c4a8-342c-4ed9-b521-a2fa42ec362e/1/BRrH1yu1MAZ-zgZdplb5y271hyk.roa
Signing time: Sun 13 Nov 2022 16:44:02 +0000
ROA not before: Sun 13 Nov 2022 16:44:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210816
IP address blocks: 2a10:4646:c0::/44 maxlen: 44
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:71:e0:67:d4:07:8c:be:70:ae:de:50:37:41:8e:84:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b70d0e166fa5f2c7855b024b35c47e57bdc55656
Validity
Not Before: Nov 13 16:44:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=051ac7d72bb530067ece065da656f9cb6ef58729
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:20:e9:ae:06:16:5d:c9:ad:c0:ce:17:22:c1:
bd:2a:c8:01:df:a5:32:c3:f4:5b:53:44:67:77:71:
ab:a1:3a:c7:c1:f1:50:8a:b7:3f:cc:79:eb:a1:fa:
69:fc:e5:84:ba:dd:79:70:f7:bf:a1:25:6a:10:0d:
99:18:16:4a:5e:0e:38:83:ea:dd:4e:49:5b:f1:e5:
97:91:7e:1a:c2:99:9b:ef:b2:3c:e8:11:5f:34:a5:
6d:6b:20:52:db:a2:a6:97:c8:c4:78:b0:71:2d:96:
49:36:04:83:7f:a8:b5:bc:e9:fb:a3:32:12:10:69:
e2:91:58:3d:94:6c:bd:b6:58:cf:a8:6b:b8:a5:b5:
1f:7b:f1:97:12:3a:79:1c:51:88:c1:fb:b6:05:c0:
43:56:fe:a0:e6:0d:0a:73:71:31:c8:db:86:71:d4:
37:46:9e:8b:d7:2a:f2:86:36:4a:d4:8d:2f:0a:64:
64:6d:53:4f:51:bd:b9:f3:e9:d0:2a:e9:12:af:cd:
54:04:cd:02:28:e9:23:c2:94:b9:ac:8f:c7:a0:49:
dc:da:75:7f:7b:92:b2:87:29:24:5b:08:a0:4f:e8:
2c:b0:08:4d:90:39:62:37:25:8d:27:60:b8:f7:a3:
92:52:88:3b:d9:69:54:f5:c4:fb:d8:7b:40:6b:25:
87:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:1A:C7:D7:2B:B5:30:06:7E:CE:06:5D:A6:56:F9:CB:6E:F5:87:29
X509v3 Authority Key Identifier:
keyid:B7:0D:0E:16:6F:A5:F2:C7:85:5B:02:4B:35:C4:7E:57:BD:C5:56:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tw0OFm-l8seFWwJLNcR-V73FVlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/c7c4a8-342c-4ed9-b521-a2fa42ec362e/1/BRrH1yu1MAZ-zgZdplb5y271hyk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/c7c4a8-342c-4ed9-b521-a2fa42ec362e/1/tw0OFm-l8seFWwJLNcR-V73FVlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:4646:c0::/44
Signature Algorithm: sha256WithRSAEncryption
9a:0e:1b:ec:3d:ab:34:f7:1c:e4:5a:92:c1:be:8d:f8:f0:7e:
28:43:1a:4a:56:f5:c2:12:0b:23:2d:9e:f0:8f:61:43:37:d6:
27:7b:6d:98:f6:41:8a:9d:af:a0:6e:cf:ea:8c:1e:ae:29:c7:
26:62:03:92:6d:52:fb:d2:ba:af:5a:e2:e3:74:ae:01:bd:2c:
e6:8f:37:db:fd:59:2d:c6:4c:2d:45:49:3d:0a:58:5e:a0:57:
1a:e7:24:2b:02:b3:44:44:ec:c2:4a:29:b9:93:5d:3a:8c:08:
75:f6:7f:e6:e3:99:6a:ee:06:46:03:75:cc:ce:20:c0:b9:a1:
42:a0:ec:30:33:2a:2f:b5:eb:28:21:0c:be:64:48:f8:9c:ff:
38:0c:cc:4e:70:fc:a0:15:d5:ee:14:32:07:06:ee:96:51:25:
7c:ef:24:b4:36:ba:2b:3c:bf:3f:5b:dc:88:a1:40:8b:87:d9:
21:95:b0:98:81:bd:0f:96:af:de:c3:ba:f8:cd:c9:17:f1:7d:
20:57:c6:9e:a0:35:53:2b:4e:2a:c5:58:55:6a:cb:96:2b:1b:
3d:cb:69:92:b3:09:c6:ab:15:c6:ba:5d:5d:11:b7:34:b6:33:
98:a5:a3:b2:24:cf:87:22:43:62:90:70:2e:ba:be:37:44:7e:
b9:85:db:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:55 2024 by rpki-client on console-ams.rpki-client.org