Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/cc11e8-d51b-4679-9c6c-1ef197d6dc69/1/4w9ttIWYbyAFGRP8rZOrG1wjpts.roa
File: 4w9ttIWYbyAFGRP8rZOrG1wjpts.roa (raw, json)
Hash identifier: PyJelBybCw9YQixSVP2COpZ13Gbumslxe8l8Zq7u2nI=
Subject key identifier: E3:0F:6D:B4:85:98:6F:20:05:19:13:FC:AD:93:AB:1B:5C:23:A6:DB
Certificate issuer: /CN=6bb3ae11a3a6a5ee1e32ea6cce1f10df231ead88
Certificate serial: 01856D9D4961CB065D7F2829E399875D96A3
Authority key identifier: 6B:B3:AE:11:A3:A6:A5:EE:1E:32:EA:6C:CE:1F:10:DF:23:1E:AD:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a7OuEaOmpe4eMupszh8Q3yMerYg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/cc11e8-d51b-4679-9c6c-1ef197d6dc69/1/4w9ttIWYbyAFGRP8rZOrG1wjpts.roa
Signing time: Sun 01 Jan 2023 13:55:02 +0000
ROA not before: Sun 01 Jan 2023 13:55:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207842
IP address blocks: 2a0f:85c1:220::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:9d:49:61:cb:06:5d:7f:28:29:e3:99:87:5d:96:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6bb3ae11a3a6a5ee1e32ea6cce1f10df231ead88
Validity
Not Before: Jan 1 13:55:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e30f6db485986f20051913fcad93ab1b5c23a6db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:89:42:3a:b6:d7:75:35:99:3d:cb:15:86:b5:
c5:6d:12:79:cb:58:fa:eb:c3:25:57:36:53:17:c9:
d0:24:85:2c:3a:f6:48:28:5f:73:f8:6e:8a:25:cb:
12:50:51:75:2f:48:3a:cc:47:43:90:63:20:90:c6:
50:5a:52:75:b0:3e:67:bc:01:94:a1:d1:da:f4:6a:
6b:c2:e0:cc:94:d9:e8:da:8e:f0:5f:ff:99:b1:a4:
cd:3f:5f:aa:93:88:ab:32:d9:7d:ec:bd:07:c4:d0:
11:d0:dd:b9:28:32:cd:62:b1:f7:d4:a3:b4:fb:3c:
f4:70:43:da:ab:39:99:4b:a3:8f:7f:30:45:9e:77:
dd:85:36:59:3e:59:ee:e7:d1:d6:9e:25:8f:60:1d:
52:c7:61:e4:14:a1:4f:35:ca:a6:f9:9c:ed:5c:d8:
b1:13:1a:0f:b1:43:1e:4d:d9:e4:2a:f6:25:f3:f0:
00:d6:00:a7:86:df:aa:d6:76:e4:20:da:c8:d5:2e:
4e:fc:bf:72:16:2e:43:90:63:59:b7:f5:68:e4:0b:
89:b4:bd:2e:68:17:6c:e2:85:02:74:b7:3a:88:b2:
7a:a3:03:5f:0e:12:3e:f1:dd:ed:19:e0:92:4a:fa:
98:ce:5b:90:3e:69:1b:46:75:2e:4a:8e:40:16:19:
ab:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:0F:6D:B4:85:98:6F:20:05:19:13:FC:AD:93:AB:1B:5C:23:A6:DB
X509v3 Authority Key Identifier:
keyid:6B:B3:AE:11:A3:A6:A5:EE:1E:32:EA:6C:CE:1F:10:DF:23:1E:AD:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7OuEaOmpe4eMupszh8Q3yMerYg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/cc11e8-d51b-4679-9c6c-1ef197d6dc69/1/4w9ttIWYbyAFGRP8rZOrG1wjpts.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/cc11e8-d51b-4679-9c6c-1ef197d6dc69/1/a7OuEaOmpe4eMupszh8Q3yMerYg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:85c1:220::/44
Signature Algorithm: sha256WithRSAEncryption
6c:9a:cc:35:29:97:1e:b2:69:c4:6e:0e:27:02:2d:2a:36:98:
a3:62:1d:e0:6d:9b:8b:c2:2a:29:91:7c:af:7f:69:22:05:ae:
28:89:ff:3e:14:d1:1f:f6:1f:15:c2:90:57:29:23:6c:93:67:
da:7f:9a:ed:25:21:eb:ad:fe:90:47:87:f8:98:63:91:33:11:
07:0d:a7:ff:35:d8:99:85:f7:76:ea:88:c4:b1:f8:a6:ff:5c:
f6:bc:46:91:59:45:bc:d7:f3:9e:bc:c9:c0:e3:f8:59:ca:79:
3a:db:e0:24:cf:f4:bc:ec:d2:1f:93:c4:bf:26:d0:6f:d7:52:
80:a2:2a:de:81:e5:19:05:93:d9:cc:8d:d6:db:27:e4:c3:1d:
d6:a1:8e:e1:1b:d8:7d:68:e3:f9:d6:2a:0f:d3:b4:73:ad:a2:
23:cf:27:9f:97:8a:ae:5c:89:da:d3:a7:3c:6a:bb:c5:6a:d6:
b6:3b:fb:7b:ff:d5:9f:a8:4e:91:32:3e:2e:45:cc:37:02:a8:
2f:fd:4c:fb:9f:fb:c9:72:66:cf:ce:bd:3c:f3:86:40:df:38:
af:bc:dc:a3:4e:e8:4f:b7:3b:e2:f4:44:ce:fb:6c:f6:83:5d:
47:9f:b2:42:86:60:c1:93:b9:0c:ac:85:77:e5:94:d5:14:eb:
38:df:07:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:48 2024 by rpki-client on console-fra.rpki-client.org