Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/cc11e8-d51b-4679-9c6c-1ef197d6dc69/1/khagWVo3v_inSmhMkDZdvLXvB0U.roa
File: khagWVo3v_inSmhMkDZdvLXvB0U.roa (raw, json)
Hash identifier: zVscW7pOIfiwTXUDSkjovv6ABlZ1odSpWEd5aEw4j70=
Subject key identifier: 92:16:A0:59:5A:37:BF:F8:A7:4A:68:4C:90:36:5D:BC:B5:EF:07:45
Certificate issuer: /CN=6bb3ae11a3a6a5ee1e32ea6cce1f10df231ead88
Certificate serial: 01856D9D45A05D0D5AEA97E820279A16F12A
Authority key identifier: 6B:B3:AE:11:A3:A6:A5:EE:1E:32:EA:6C:CE:1F:10:DF:23:1E:AD:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a7OuEaOmpe4eMupszh8Q3yMerYg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/cc11e8-d51b-4679-9c6c-1ef197d6dc69/1/khagWVo3v_inSmhMkDZdvLXvB0U.roa
Signing time: Sun 01 Jan 2023 13:55:01 +0000
ROA not before: Sun 01 Jan 2023 13:55:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205398
IP address blocks: 2a0f:85c1:260::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:9d:45:a0:5d:0d:5a:ea:97:e8:20:27:9a:16:f1:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6bb3ae11a3a6a5ee1e32ea6cce1f10df231ead88
Validity
Not Before: Jan 1 13:55:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9216a0595a37bff8a74a684c90365dbcb5ef0745
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:53:49:ee:8a:1d:4e:4d:a1:15:f6:67:74:92:
ea:dd:9b:48:53:2f:2f:61:ac:e8:cb:c2:73:55:b5:
20:1f:82:22:62:7c:c1:a5:c4:68:43:f1:74:38:38:
0d:b6:34:62:8e:8f:28:e3:93:9e:14:41:08:01:5f:
0d:86:3b:55:06:62:8b:52:1f:cd:62:b0:96:de:5b:
c9:e0:4e:67:eb:b9:1f:41:51:6d:a2:32:08:79:a9:
d6:14:e2:fe:3f:ee:b1:0e:f9:5a:97:99:8d:31:74:
19:04:5c:f3:c9:ba:62:67:c0:cf:b3:07:a7:92:8c:
70:61:f3:03:d0:c9:72:fc:26:a7:4c:0d:7c:70:f4:
88:66:74:5b:44:74:fa:31:57:4f:91:9c:7f:03:68:
e9:23:a9:1b:cd:00:b1:e0:c0:48:7e:77:b3:b7:85:
87:ae:b4:99:1a:23:ab:c1:be:0f:43:af:52:67:6e:
10:50:37:05:a4:74:6b:b5:dc:70:ac:c7:80:16:85:
ed:48:ca:53:4f:c6:af:a9:c0:31:50:4d:f9:4f:fd:
d0:b1:df:d5:d3:50:57:34:88:f4:61:6c:d9:2f:3e:
21:bd:c9:d0:7c:43:01:72:2c:7f:2d:40:e6:32:3f:
5e:32:da:ec:67:8e:1e:cf:fc:38:8c:a9:4d:17:1d:
9e:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:16:A0:59:5A:37:BF:F8:A7:4A:68:4C:90:36:5D:BC:B5:EF:07:45
X509v3 Authority Key Identifier:
keyid:6B:B3:AE:11:A3:A6:A5:EE:1E:32:EA:6C:CE:1F:10:DF:23:1E:AD:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7OuEaOmpe4eMupszh8Q3yMerYg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/cc11e8-d51b-4679-9c6c-1ef197d6dc69/1/khagWVo3v_inSmhMkDZdvLXvB0U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/cc11e8-d51b-4679-9c6c-1ef197d6dc69/1/a7OuEaOmpe4eMupszh8Q3yMerYg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:85c1:260::/44
Signature Algorithm: sha256WithRSAEncryption
4a:25:f6:16:8f:bc:8a:2b:1b:08:b1:74:73:d7:bc:64:eb:0a:
3e:d5:63:96:c2:52:e1:ca:e7:51:7d:c0:20:15:82:b2:36:39:
b0:81:3f:fa:e7:e3:8a:62:06:66:cc:82:af:41:84:17:14:38:
86:ff:68:72:e0:b7:1b:35:2a:c4:73:59:3b:7c:ae:a3:18:f3:
d8:5a:90:b1:df:c6:09:aa:03:15:7d:57:4a:b6:5d:8c:94:ee:
32:57:b9:55:d5:ad:2f:37:a2:5c:84:69:26:1d:51:8e:9b:1d:
a3:5a:c1:18:8f:74:0b:ef:e0:0c:36:3a:0d:c9:57:28:54:b5:
d9:df:53:99:2f:6f:06:72:86:d7:55:10:d3:68:3c:d7:d3:35:
ef:7e:55:b5:73:4b:32:58:70:b9:a3:c1:1a:bc:6e:62:7e:d4:
da:f5:6f:4f:d6:7c:b4:e3:a6:c3:66:b2:35:34:d9:ab:91:e4:
97:1a:46:19:db:51:f6:9e:8f:0e:65:84:19:97:23:79:8f:6d:
55:c9:8b:54:17:8c:be:97:92:15:76:c4:24:86:2b:c8:8b:72:
ae:e3:9f:f7:0b:dd:3d:5d:65:b8:87:33:f8:37:77:b4:df:75:
50:25:a8:37:58:97:f3:91:a4:f8:7d:a5:aa:80:a1:55:07:85:
7b:41:1f:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:14 2024 by rpki-client on console-ams.rpki-client.org