Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/743f51-8454-436f-988c-505b4b834b26/1/yvA1pXqez4tQB-dHjehn0giZyuE.roa
File: yvA1pXqez4tQB-dHjehn0giZyuE.roa (raw, json)
Hash identifier: yZ4s4+KhRd/KRLipWGvAV0dULOAoGAlPD63kZjKOX/U=
Subject key identifier: CA:F0:35:A5:7A:9E:CF:8B:50:07:E7:47:8D:E8:67:D2:08:99:CA:E1
Certificate issuer: /CN=ca8d3afd322395565b0ed519a583f5eff8a4945f
Certificate serial: 018A845ACBDC2E7BE4B4159DC5C1B136E182
Authority key identifier: CA:8D:3A:FD:32:23:95:56:5B:0E:D5:19:A5:83:F5:EF:F8:A4:94:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yo06_TIjlVZbDtUZpYP17_iklF8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/743f51-8454-436f-988c-505b4b834b26/1/yvA1pXqez4tQB-dHjehn0giZyuE.roa
Signing time: Mon 11 Sep 2023 13:07:37 +0000
ROA not before: Mon 11 Sep 2023 13:07:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198089
IP address blocks: 2a0a:1fc0::/29 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:84:5a:cb:dc:2e:7b:e4:b4:15:9d:c5:c1:b1:36:e1:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca8d3afd322395565b0ed519a583f5eff8a4945f
Validity
Not Before: Sep 11 13:07:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=caf035a57a9ecf8b5007e7478de867d20899cae1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:60:e3:4e:f2:cd:2d:77:a8:93:ed:11:4f:bf:
10:e2:20:4c:c8:7c:4d:04:00:d9:a9:87:d1:ad:04:
7b:13:f7:f8:8f:96:d8:2f:60:3c:34:43:4c:9b:da:
04:59:3b:cb:a9:a2:43:e3:13:f8:cf:f0:c6:3c:96:
a3:92:bb:ea:de:e7:b7:c5:62:2c:5b:8d:3f:c2:fe:
cb:b9:f2:d9:ff:6c:ad:3f:11:bf:1e:fe:51:22:0e:
0d:c0:9b:a0:63:9e:53:55:4c:8c:37:b0:79:a0:a6:
20:60:b7:f1:86:f2:51:a2:32:8d:df:81:c0:49:83:
14:b4:ea:d7:89:e5:e9:53:5b:59:3a:e8:32:8d:4b:
1a:aa:f1:0d:58:19:14:55:f3:c1:f1:80:09:b2:e8:
f7:fb:2f:19:66:80:9e:2d:4b:e6:24:40:12:5a:7f:
ec:e3:74:4b:4b:90:63:98:12:22:0a:35:32:1b:ec:
f2:66:e4:e0:79:6c:13:7f:ba:dd:a1:3e:9c:b8:bd:
17:55:a4:aa:d7:3c:56:3c:7a:7d:b5:21:b3:08:6c:
67:ad:68:e7:20:cb:a6:4c:e4:15:91:bc:0f:92:9d:
5c:08:17:37:46:90:68:e6:93:b7:c7:ef:0f:ea:1b:
7a:69:b9:13:74:bf:dc:44:27:13:74:97:ae:50:72:
38:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:F0:35:A5:7A:9E:CF:8B:50:07:E7:47:8D:E8:67:D2:08:99:CA:E1
X509v3 Authority Key Identifier:
keyid:CA:8D:3A:FD:32:23:95:56:5B:0E:D5:19:A5:83:F5:EF:F8:A4:94:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yo06_TIjlVZbDtUZpYP17_iklF8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/743f51-8454-436f-988c-505b4b834b26/1/yvA1pXqez4tQB-dHjehn0giZyuE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/743f51-8454-436f-988c-505b4b834b26/1/yo06_TIjlVZbDtUZpYP17_iklF8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:1fc0::/29
Signature Algorithm: sha256WithRSAEncryption
13:96:63:b4:19:9d:0a:ce:03:c7:d0:26:cc:af:63:33:98:ec:
25:a0:7d:0c:a9:c9:6b:3d:68:dd:7b:bb:75:4b:db:4f:e1:86:
68:a9:94:f0:bc:2b:11:ad:a4:2a:42:e1:cc:02:15:f0:f3:ca:
2c:d9:a8:aa:55:e9:50:f0:cf:ef:b1:95:3a:99:05:f1:a8:84:
16:82:89:96:c3:4b:a1:b2:c6:5e:81:8d:65:26:99:9c:71:a0:
5a:08:48:97:05:d1:58:9d:d6:bc:61:c2:73:2a:60:a1:e5:35:
b0:17:85:3e:94:fd:79:20:58:0f:c4:f0:2f:fb:12:d8:da:53:
cf:11:dd:c4:83:5d:42:e4:d5:34:d3:bb:81:2f:90:1c:7a:3f:
32:21:4e:cc:06:f3:75:a8:e4:da:ee:bb:45:52:34:48:db:7e:
58:4d:ba:9f:3a:de:51:9e:b0:f5:c2:6f:05:0c:5b:73:23:fe:
bc:88:04:f6:ff:eb:f9:01:ae:ea:a2:f6:f3:2b:7c:33:70:30:
68:d6:3d:ff:b0:cc:65:a0:0e:38:30:60:92:3f:ce:fb:f1:30:
9a:a1:10:ea:e2:89:a2:e1:45:1a:d1:c2:c2:40:30:71:5a:4c:
39:b1:74:8c:a0:7e:d4:76:a9:bf:f6:7f:15:2e:0a:86:fa:eb:
1c:54:da:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 26 07:38:22 2023 by rpki-client on console-fra.rpki-client.org