Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/cc11e8-d51b-4679-9c6c-1ef197d6dc69/1/0Az6V6D1gxEXyVV8vKYFhMzQLVs.roa
File: 0Az6V6D1gxEXyVV8vKYFhMzQLVs.roa (raw, json)
Hash identifier: +Nn2K71uPi6lBgE+BtCbUF4ySZtvYo/VKrn7NOM8Utk=
Subject key identifier: D0:0C:FA:57:A0:F5:83:11:17:C9:55:7C:BC:A6:05:84:CC:D0:2D:5B
Certificate issuer: /CN=6bb3ae11a3a6a5ee1e32ea6cce1f10df231ead88
Certificate serial: 01856D9D4BAB28A566BE0954BFB6F0D2124B
Authority key identifier: 6B:B3:AE:11:A3:A6:A5:EE:1E:32:EA:6C:CE:1F:10:DF:23:1E:AD:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a7OuEaOmpe4eMupszh8Q3yMerYg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/cc11e8-d51b-4679-9c6c-1ef197d6dc69/1/0Az6V6D1gxEXyVV8vKYFhMzQLVs.roa
Signing time: Sun 01 Jan 2023 13:55:03 +0000
ROA not before: Sun 01 Jan 2023 13:55:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209401
IP address blocks: 2a0f:85c1:100::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:9d:4b:ab:28:a5:66:be:09:54:bf:b6:f0:d2:12:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6bb3ae11a3a6a5ee1e32ea6cce1f10df231ead88
Validity
Not Before: Jan 1 13:55:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d00cfa57a0f5831117c9557cbca60584ccd02d5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:d7:07:12:f7:c7:5b:4e:e4:80:34:47:36:44:
13:83:74:e7:df:84:89:a0:9e:79:ff:d2:b2:a9:09:
e8:7f:54:77:40:59:a8:92:03:87:03:d1:f7:5b:60:
a6:be:45:cf:2e:51:d4:6b:e6:8d:6a:ac:eb:0e:21:
9c:41:0b:85:91:27:47:02:8a:1f:2d:d9:cd:54:01:
f7:87:7c:8d:48:ce:ac:8c:83:8d:26:e5:6f:ba:12:
f7:94:b7:19:8f:f2:f8:03:53:a8:84:ea:26:e1:8b:
e4:a7:96:be:16:8c:c2:ae:6e:40:4e:8a:41:fc:66:
a6:9a:77:47:6f:ea:4c:05:65:6d:a5:36:fa:8d:05:
54:66:bb:7a:bf:89:07:79:b9:a8:64:06:86:6c:b1:
cf:1c:cb:00:ce:0a:98:cc:ca:a3:6f:7c:c9:a1:04:
2d:b5:48:5f:41:c9:91:2c:a4:ba:4c:85:6f:59:55:
39:c0:30:13:4c:d6:9c:20:b1:6c:f9:a5:d1:51:81:
d1:03:6e:74:67:e9:6a:56:4c:2a:84:ee:ad:af:3f:
b2:16:1a:96:d7:bc:9b:6c:55:62:86:12:e9:e5:b8:
40:cb:78:1b:a2:5b:de:14:ad:03:19:97:1c:4c:7d:
16:a4:6b:ea:e4:44:0c:cc:b0:05:9a:03:96:9f:4a:
17:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:0C:FA:57:A0:F5:83:11:17:C9:55:7C:BC:A6:05:84:CC:D0:2D:5B
X509v3 Authority Key Identifier:
keyid:6B:B3:AE:11:A3:A6:A5:EE:1E:32:EA:6C:CE:1F:10:DF:23:1E:AD:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7OuEaOmpe4eMupszh8Q3yMerYg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/cc11e8-d51b-4679-9c6c-1ef197d6dc69/1/0Az6V6D1gxEXyVV8vKYFhMzQLVs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/cc11e8-d51b-4679-9c6c-1ef197d6dc69/1/a7OuEaOmpe4eMupszh8Q3yMerYg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:85c1:100::/40
Signature Algorithm: sha256WithRSAEncryption
a2:11:7e:31:69:d5:75:97:40:de:6b:e6:8f:6f:4f:06:b0:22:
9e:ae:e8:34:95:0f:96:32:08:cb:82:d7:7b:43:95:28:5d:fd:
7d:70:eb:51:db:29:1c:88:2a:5a:56:75:c8:0e:50:ae:dc:11:
3a:6b:2d:0d:9b:62:6a:fe:94:fe:ef:6c:25:3b:39:14:1f:b9:
18:a9:51:f1:bc:94:55:52:2c:a0:91:5d:f4:94:00:fe:67:b6:
28:5a:34:d1:40:25:35:89:90:1f:8e:d8:06:2b:a0:df:14:99:
69:83:f5:8e:4c:36:b3:09:30:e0:2a:ab:67:a6:31:10:e2:8a:
b9:51:7b:fc:d4:25:42:bf:bd:d4:5b:e0:4c:e5:ac:14:60:3f:
8b:a1:78:58:48:73:ba:b3:55:a1:02:3c:c3:cf:ba:4e:97:14:
da:19:1a:88:5a:70:22:ce:d3:df:05:a0:5d:f1:fe:21:cc:1c:
a0:b6:ef:02:92:a9:e3:5a:c2:38:df:be:b2:20:67:7b:59:86:
f0:a1:5a:5a:60:3a:4e:6b:a7:b2:f0:f1:d0:a9:9e:55:0a:d7:
d3:a8:7c:fe:ee:e7:e6:41:5a:5b:3c:a7:a6:93:56:1e:65:31:
8a:09:14:d6:f6:8c:1f:6b:91:bb:09:3d:af:a8:9d:84:ed:06:
39:cf:4c:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:14 2024 by rpki-client on console-ams.rpki-client.org