Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/cc11e8-d51b-4679-9c6c-1ef197d6dc69/1/JFA5rmmPEDLycxQRGTY9EyJWEGg.roa
File: JFA5rmmPEDLycxQRGTY9EyJWEGg.roa (raw, json)
Hash identifier: eDerg6E5cTJE9i5ZtvaubE9IGgOIuFjeVSoX0/mkZ0A=
Subject key identifier: 24:50:39:AE:69:8F:10:32:F2:73:14:11:19:36:3D:13:22:56:10:68
Certificate issuer: /CN=6bb3ae11a3a6a5ee1e32ea6cce1f10df231ead88
Certificate serial: 01856D9D4EF2613FAE11417AEA73CA0E658E
Authority key identifier: 6B:B3:AE:11:A3:A6:A5:EE:1E:32:EA:6C:CE:1F:10:DF:23:1E:AD:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a7OuEaOmpe4eMupszh8Q3yMerYg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/cc11e8-d51b-4679-9c6c-1ef197d6dc69/1/JFA5rmmPEDLycxQRGTY9EyJWEGg.roa
Signing time: Sun 01 Jan 2023 13:55:04 +0000
ROA not before: Sun 01 Jan 2023 13:55:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210532
IP address blocks: 2a0f:85c1:27::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:9d:4e:f2:61:3f:ae:11:41:7a:ea:73:ca:0e:65:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6bb3ae11a3a6a5ee1e32ea6cce1f10df231ead88
Validity
Not Before: Jan 1 13:55:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=245039ae698f1032f273141119363d1322561068
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:dc:aa:43:94:b0:6a:2c:6f:7b:5f:d5:d8:df:
7b:a7:aa:cb:de:e0:56:07:89:cd:43:31:04:a2:63:
00:d5:7f:38:c6:f5:9b:cc:ae:ef:6f:7b:6b:be:95:
f1:ed:00:92:77:f8:cb:b2:7b:d6:05:81:0c:e3:cc:
ea:bd:36:27:3e:64:4b:a8:a3:c9:ab:01:c9:b5:f6:
4e:40:84:aa:de:5d:b5:31:77:4e:65:ed:ab:f7:62:
93:86:a8:5f:0b:ed:38:e2:9d:a8:fc:31:2f:d3:64:
46:61:7e:2c:82:07:02:a5:92:c5:29:60:f7:ff:56:
c7:8f:1c:fd:57:5c:cd:84:5f:f4:4d:85:77:c5:96:
1c:6c:18:c7:f9:75:ef:3d:81:16:72:ff:8f:b8:3d:
9a:9f:b7:9d:51:5b:9f:47:ec:49:ee:3b:de:55:12:
c6:5c:97:41:c3:bd:71:7a:93:b3:21:72:92:38:65:
bb:0e:39:1e:23:74:b0:cb:bc:94:1a:c2:62:90:32:
55:09:8f:ae:5b:ae:84:cd:32:83:c7:7b:76:90:86:
b7:70:4e:b5:15:98:63:cf:05:fe:38:8f:55:96:66:
44:49:e3:9a:1c:8e:33:35:86:26:1d:50:06:55:83:
10:97:40:be:47:bb:70:88:a4:09:26:41:30:5d:ba:
bf:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:50:39:AE:69:8F:10:32:F2:73:14:11:19:36:3D:13:22:56:10:68
X509v3 Authority Key Identifier:
keyid:6B:B3:AE:11:A3:A6:A5:EE:1E:32:EA:6C:CE:1F:10:DF:23:1E:AD:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7OuEaOmpe4eMupszh8Q3yMerYg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/cc11e8-d51b-4679-9c6c-1ef197d6dc69/1/JFA5rmmPEDLycxQRGTY9EyJWEGg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/cc11e8-d51b-4679-9c6c-1ef197d6dc69/1/a7OuEaOmpe4eMupszh8Q3yMerYg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:85c1:27::/48
Signature Algorithm: sha256WithRSAEncryption
78:dd:07:9e:15:4a:f7:79:66:bb:b7:8c:29:1c:b6:44:53:5f:
e5:4f:0e:9b:c5:eb:0f:6e:5d:ba:72:c5:1f:e5:70:df:6e:87:
a6:f1:36:e2:f8:22:eb:2c:ee:a4:6e:fd:c8:27:7f:3b:a2:11:
82:ca:7b:9d:2f:74:c7:58:4b:5a:43:1f:77:05:98:98:2b:c4:
15:ba:42:18:dc:f5:35:6d:d5:36:e9:72:53:44:a0:18:8e:ae:
d2:35:59:1a:b9:7d:23:09:c8:a2:c0:ff:dc:ce:ff:bb:dd:34:
c2:8f:74:c0:2c:30:06:ca:1c:ac:20:c2:41:9d:b7:8c:0f:f2:
e0:d0:94:e2:75:30:14:f5:79:c4:b3:7e:0d:f4:da:b6:04:c6:
3c:aa:dd:33:63:a6:36:71:b8:bc:87:af:42:c4:8d:b9:99:29:
ce:c1:48:a0:04:16:7c:fa:c0:75:8d:2e:ca:65:9c:80:ca:31:
fb:36:f8:98:2e:fe:89:c4:1d:9e:f5:43:3c:d9:e6:6f:a8:da:
f6:60:c7:16:3c:6c:9e:fe:ff:ad:dd:c2:81:ce:d1:a9:bb:cd:
c4:3e:43:5b:6c:e3:09:14:4d:68:94:a2:67:c3:1c:10:ac:a0:
90:d5:06:53:a4:9c:7e:7f:d5:9f:95:b3:9c:83:48:18:07:ee:
35:46:1e:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:14 2024 by rpki-client on console-ams.rpki-client.org