Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/cc11e8-d51b-4679-9c6c-1ef197d6dc69/1/HZkDSIpqhurQDr4tUUcjwzCz4T4.roa
File: HZkDSIpqhurQDr4tUUcjwzCz4T4.roa (raw, json)
Hash identifier: BqYAMjeBWhqxbUAUSwN86rXKiaPDzfFb2gMhcSpqJ30=
Subject key identifier: 1D:99:03:48:8A:6A:86:EA:D0:0E:BE:2D:51:47:23:C3:30:B3:E1:3E
Certificate issuer: /CN=6bb3ae11a3a6a5ee1e32ea6cce1f10df231ead88
Certificate serial: 018902568C7B049334FC3CCEB9740742D0FA
Authority key identifier: 6B:B3:AE:11:A3:A6:A5:EE:1E:32:EA:6C:CE:1F:10:DF:23:1E:AD:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a7OuEaOmpe4eMupszh8Q3yMerYg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/cc11e8-d51b-4679-9c6c-1ef197d6dc69/1/HZkDSIpqhurQDr4tUUcjwzCz4T4.roa
Signing time: Wed 28 Jun 2023 14:09:33 +0000
ROA not before: Wed 28 Jun 2023 14:09:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39753
IP address blocks: 2a0f:85c1:100::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:02:56:8c:7b:04:93:34:fc:3c:ce:b9:74:07:42:d0:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6bb3ae11a3a6a5ee1e32ea6cce1f10df231ead88
Validity
Not Before: Jun 28 14:09:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1d9903488a6a86ead00ebe2d514723c330b3e13e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:f3:1f:50:68:a7:1f:be:1b:d2:a6:61:30:1f:
4b:03:00:84:e1:68:e0:ff:55:6c:d1:0a:66:25:62:
5f:5e:60:b3:3c:f9:f5:78:1a:38:42:3e:b0:12:d2:
3d:45:d4:05:e3:9b:09:f1:93:34:4c:0f:89:5a:03:
28:be:7f:6c:84:30:51:f2:03:ae:d3:fd:1d:6d:b0:
df:dd:45:ab:30:45:1e:50:12:e6:85:f6:7d:d9:23:
e5:95:eb:2a:68:0f:a4:5f:42:b8:a7:0a:9c:ab:60:
5f:48:89:72:b7:44:a2:ef:db:c8:ad:15:31:22:47:
d6:05:9f:24:1e:09:3c:76:e7:63:52:79:a4:16:55:
b5:71:b3:8d:41:cd:37:54:42:f8:93:2d:ac:71:5b:
82:d0:19:49:35:fa:10:e0:19:79:0d:bb:58:96:05:
c0:10:7e:91:12:dc:7f:76:5e:78:b4:e5:78:0c:45:
28:54:b8:cf:4e:9e:62:08:38:b4:36:e7:44:a3:a8:
db:71:6a:fd:48:7c:d2:38:e9:79:fc:95:b5:aa:a0:
fc:a4:02:57:e6:5f:41:e0:fc:41:86:2f:d8:58:fd:
be:f8:df:8a:64:6a:76:83:68:fd:0d:cd:e4:ee:bc:
5e:c0:84:fb:1a:44:8e:6c:4f:f9:17:e4:ae:76:d6:
bd:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:99:03:48:8A:6A:86:EA:D0:0E:BE:2D:51:47:23:C3:30:B3:E1:3E
X509v3 Authority Key Identifier:
keyid:6B:B3:AE:11:A3:A6:A5:EE:1E:32:EA:6C:CE:1F:10:DF:23:1E:AD:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7OuEaOmpe4eMupszh8Q3yMerYg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/cc11e8-d51b-4679-9c6c-1ef197d6dc69/1/HZkDSIpqhurQDr4tUUcjwzCz4T4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/cc11e8-d51b-4679-9c6c-1ef197d6dc69/1/a7OuEaOmpe4eMupszh8Q3yMerYg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:85c1:100::/40
Signature Algorithm: sha256WithRSAEncryption
8a:e7:31:dc:bf:af:45:d3:f5:8d:d0:5c:42:f1:f7:ed:f1:16:
35:24:81:a9:06:50:ae:93:49:b8:7e:35:bd:36:c8:96:b7:50:
a4:eb:fe:75:be:10:26:8d:8f:ca:01:6e:c2:d8:cb:88:e0:4b:
5a:6e:fc:e7:09:3e:6d:5b:e9:d3:19:c4:43:3a:e1:60:d4:45:
59:4d:35:da:f7:d9:39:31:aa:92:cc:ba:81:5b:1d:4d:68:67:
5a:dd:73:2b:a4:ce:c5:9d:b1:d0:5a:1d:c0:ea:72:51:59:c7:
ea:de:26:89:49:df:44:23:24:53:56:2b:1b:a8:76:13:44:cb:
df:e5:2a:e0:84:48:bf:b0:c1:50:9b:bc:cc:93:50:d1:f0:4a:
39:03:de:b9:a2:46:c8:db:2a:5c:96:5d:9b:a9:6f:4b:a7:50:
56:f8:d0:68:cb:4d:fd:81:a1:f5:b4:1d:9b:98:6e:70:69:1a:
c5:f1:e6:31:b6:29:18:f1:ae:ea:2d:32:c3:69:cf:3e:d5:20:
58:50:aa:eb:64:82:1c:2d:7c:09:09:3d:76:4a:88:0e:b4:79:
f7:35:2e:0e:2e:37:62:79:b6:ad:16:a0:1f:3f:52:f7:79:e7:
55:32:e9:52:6b:03:fb:a1:94:31:fd:c9:34:d4:7e:a5:b8:b5:
4d:b6:5e:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:48 2024 by rpki-client on console-fra.rpki-client.org