Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/c7c4a8-342c-4ed9-b521-a2fa42ec362e/1/SHajB4tRPCXZT3LVDJdvB1AF4Po.roa
File: SHajB4tRPCXZT3LVDJdvB1AF4Po.roa (raw, json)
Hash identifier: qUAZZ4as2Cfw6ZdSD5iLh2uEb7SPDb1UFCUUOjJbJxs=
Subject key identifier: 48:76:A3:07:8B:51:3C:25:D9:4F:72:D5:0C:97:6F:07:50:05:E0:FA
Certificate issuer: /CN=b70d0e166fa5f2c7855b024b35c47e57bdc55656
Certificate serial: 04AC67E3
Authority key identifier: B7:0D:0E:16:6F:A5:F2:C7:85:5B:02:4B:35:C4:7E:57:BD:C5:56:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tw0OFm-l8seFWwJLNcR-V73FVlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/c7c4a8-342c-4ed9-b521-a2fa42ec362e/1/SHajB4tRPCXZT3LVDJdvB1AF4Po.roa
Signing time: Sat 01 Jan 2022 10:03:18 +0000
ROA not before: Sat 01 Jan 2022 10:03:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212066
IP address blocks: 2a10:4646:15::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78407651 (0x4ac67e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b70d0e166fa5f2c7855b024b35c47e57bdc55656
Validity
Not Before: Jan 1 10:03:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4876a3078b513c25d94f72d50c976f075005e0fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:9a:07:96:7c:47:0d:a0:2b:86:f8:45:e6:c8:
c3:b3:51:4c:00:1a:47:07:00:53:65:89:2f:99:31:
3d:24:1c:33:ec:ae:3c:2c:dd:42:59:da:d1:45:2a:
6e:b1:82:e3:b9:02:18:0b:c6:00:41:22:33:88:ce:
6f:93:87:cc:d0:03:6e:48:22:29:be:31:5a:6b:39:
01:e1:da:8c:a0:05:2d:29:ce:e7:39:94:5c:7d:73:
89:58:46:9d:0a:a6:45:04:9c:ef:77:d8:7d:0a:c4:
ff:ff:e8:80:c2:68:99:b4:50:c9:a1:6c:6e:d8:1e:
60:40:5c:6a:c4:1d:05:21:54:0b:5d:4c:9e:27:ab:
49:9e:f5:ae:63:4f:51:62:92:b5:13:7f:f3:28:e1:
8c:2d:05:72:07:cf:2f:ea:82:4b:7d:6f:98:86:a1:
09:ff:0f:ea:08:78:05:32:d6:77:e8:62:7f:56:a6:
26:ab:c4:95:26:7b:a6:2b:7c:3a:d9:63:88:ac:16:
1d:50:ed:d1:e7:4f:17:73:0d:b5:d0:fa:9f:3c:0f:
63:3b:63:84:30:2b:68:2d:90:c7:c3:41:24:26:ab:
02:21:b0:f8:ba:33:34:0a:8d:84:54:c4:23:94:4e:
98:83:b2:17:e5:ac:84:24:44:bf:7a:e2:e9:1e:a3:
06:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:76:A3:07:8B:51:3C:25:D9:4F:72:D5:0C:97:6F:07:50:05:E0:FA
X509v3 Authority Key Identifier:
keyid:B7:0D:0E:16:6F:A5:F2:C7:85:5B:02:4B:35:C4:7E:57:BD:C5:56:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tw0OFm-l8seFWwJLNcR-V73FVlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/c7c4a8-342c-4ed9-b521-a2fa42ec362e/1/SHajB4tRPCXZT3LVDJdvB1AF4Po.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/c7c4a8-342c-4ed9-b521-a2fa42ec362e/1/tw0OFm-l8seFWwJLNcR-V73FVlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:4646:15::/48
Signature Algorithm: sha256WithRSAEncryption
4c:60:5d:b4:0b:2e:3e:62:3c:03:2f:48:1a:f3:33:0c:1e:4d:
c3:2c:bf:c6:f3:c7:12:f5:8d:9d:d0:a0:85:7f:97:9f:07:5c:
03:48:49:42:9e:e8:ff:04:dc:5b:ad:fa:bf:95:31:d9:78:0a:
d7:b9:c9:ec:1d:90:e7:1e:f5:d5:ad:81:b9:e9:a4:ae:ed:8c:
0c:38:25:4a:63:fc:7a:50:eb:95:8f:ba:cd:3f:db:f4:68:73:
50:50:6d:28:aa:89:54:fa:fa:09:57:97:f6:48:07:5f:c9:a1:
0d:ab:ab:c3:a2:78:d6:11:08:af:58:17:db:64:b8:6b:b4:c4:
bf:e8:4c:fd:f6:2a:54:68:4f:ef:8a:95:45:95:86:59:fd:78:
fb:fb:9b:fb:25:a2:2b:47:d8:39:df:0d:d3:a5:41:7f:d8:77:
0d:3f:81:83:21:4c:d8:8e:21:90:e5:8e:89:0e:f9:57:ae:fc:
86:d2:56:0a:8c:1c:e5:ab:32:b4:da:45:0d:24:69:8c:40:f7:
bd:6a:cd:f7:66:40:71:0b:20:aa:47:6d:67:58:86:f0:b5:76:
5e:a7:5e:c6:f8:34:b3:d6:a4:24:28:63:8a:34:3e:46:22:0c:
45:72:9e:52:ff:6b:4a:67:e3:98:dc:dc:5d:9a:67:28:6a:74:
b7:c3:1b:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:22 2023 by rpki-client on console-fra.rpki-client.org