Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/cc11e8-d51b-4679-9c6c-1ef197d6dc69/1/73mA1fDUtEx26M_tdHNeuOD7hRQ.roa
File: 73mA1fDUtEx26M_tdHNeuOD7hRQ.roa (raw, json)
Hash identifier: OTXMgLt6zLj18ZWPddrOz0qUZxqcOpI6R1K0UkThDQg=
Subject key identifier: EF:79:80:D5:F0:D4:B4:4C:76:E8:CF:ED:74:73:5E:B8:E0:FB:85:14
Certificate issuer: /CN=6bb3ae11a3a6a5ee1e32ea6cce1f10df231ead88
Certificate serial: 01877F0F4C07FA2788385571FCBAF2D118BA
Authority key identifier: 6B:B3:AE:11:A3:A6:A5:EE:1E:32:EA:6C:CE:1F:10:DF:23:1E:AD:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a7OuEaOmpe4eMupszh8Q3yMerYg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/cc11e8-d51b-4679-9c6c-1ef197d6dc69/1/73mA1fDUtEx26M_tdHNeuOD7hRQ.roa
Signing time: Fri 14 Apr 2023 09:18:41 +0000
ROA not before: Fri 14 Apr 2023 09:18:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56655
IP address blocks: 2a0f:85c1:270::/44 maxlen: 44
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:7f:0f:4c:07:fa:27:88:38:55:71:fc:ba:f2:d1:18:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6bb3ae11a3a6a5ee1e32ea6cce1f10df231ead88
Validity
Not Before: Apr 14 09:18:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ef7980d5f0d4b44c76e8cfed74735eb8e0fb8514
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:f0:45:75:ba:92:0f:8d:4a:bd:39:93:59:8f:
fb:ba:6c:3c:52:73:27:d2:05:86:aa:69:a5:a6:71:
42:35:1e:60:1f:e1:a0:1a:25:a4:e8:e2:5f:42:7a:
6e:4c:89:ed:dd:a2:04:ba:98:15:8a:5e:d8:88:6c:
16:61:24:9d:3b:85:38:39:6c:de:38:ea:ca:08:1c:
10:ee:cf:d2:f2:a0:2c:97:68:2c:a8:3f:e3:ca:1c:
c0:ce:96:84:5a:01:f2:38:16:cc:f6:ca:5b:f7:56:
e9:e9:a4:e2:79:5d:c2:62:c6:0e:c8:85:c6:de:a1:
46:22:3a:92:63:51:a9:e8:b7:50:e2:f4:a8:cd:1d:
0c:c1:f5:de:62:85:a4:ac:4f:35:3a:92:b0:ea:78:
9a:81:c0:d3:d6:a0:0b:cc:d1:34:b9:0e:b6:2e:4c:
f1:1a:af:36:f0:c4:2c:63:60:5c:dc:2c:a2:c5:aa:
65:74:d0:07:f4:c0:0c:61:0c:44:f6:1c:76:15:f9:
c7:e8:75:e8:26:57:8f:73:4b:36:a1:54:9a:e3:99:
ce:d4:d4:29:8d:b9:f4:d6:ab:1a:3b:ad:c4:04:21:
d3:dc:5d:c1:b4:c6:6a:0d:ff:0d:5b:43:c0:71:62:
24:5e:af:cf:fa:03:c9:03:55:55:6e:28:00:91:50:
ff:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:79:80:D5:F0:D4:B4:4C:76:E8:CF:ED:74:73:5E:B8:E0:FB:85:14
X509v3 Authority Key Identifier:
keyid:6B:B3:AE:11:A3:A6:A5:EE:1E:32:EA:6C:CE:1F:10:DF:23:1E:AD:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7OuEaOmpe4eMupszh8Q3yMerYg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/cc11e8-d51b-4679-9c6c-1ef197d6dc69/1/73mA1fDUtEx26M_tdHNeuOD7hRQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/cc11e8-d51b-4679-9c6c-1ef197d6dc69/1/a7OuEaOmpe4eMupszh8Q3yMerYg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:85c1:270::/44
Signature Algorithm: sha256WithRSAEncryption
1d:2b:fd:aa:2b:ce:1a:86:25:c4:59:0b:6b:c4:87:21:5b:2a:
7c:d0:3b:35:b0:8a:0f:c0:18:16:e7:97:39:21:90:b6:64:33:
61:b8:7d:e0:46:92:1a:25:9a:4d:6b:30:d9:30:93:47:b6:f6:
b9:74:a4:76:c9:d6:6e:39:e2:6d:c6:c9:3a:4c:cb:ac:63:ed:
12:2f:bd:32:15:5f:bc:83:6d:1f:5d:00:72:fe:8a:f1:18:8d:
59:b2:e7:29:2f:b4:ee:35:43:3b:dc:b0:60:8d:49:7e:fd:d8:
c3:2f:c6:6c:c7:84:80:6d:4a:c6:f7:eb:eb:d9:8d:cb:30:7e:
b6:a4:97:4c:d2:6a:ce:16:2f:cb:24:1a:76:6b:c0:59:d5:18:
2a:00:aa:a7:e1:f4:37:27:10:e5:11:74:1c:e8:3a:16:67:78:
9c:30:b9:a0:5e:b0:2d:c1:10:b3:9c:62:05:5d:a9:70:cf:ba:
ca:9a:5d:f0:16:e4:de:3f:69:da:21:78:fd:6e:b3:74:a3:54:
3b:dd:ea:bd:03:4c:46:8a:63:56:51:49:11:fe:c6:80:92:11:
b6:96:a7:d9:78:47:15:ef:31:b7:61:fb:46:a0:31:0e:c3:05:
8c:e5:54:94:d1:9a:34:62:74:26:b9:ff:5f:48:9f:4a:44:f0:
3d:ca:02:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:48 2024 by rpki-client on console-fra.rpki-client.org