Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/353bfa-abdb-444a-8154-4fc54b0baa78/1/sCdOXTwHOJnURIdI6BCeG5HizfE.roa
File: sCdOXTwHOJnURIdI6BCeG5HizfE.roa (raw, json)
Hash identifier: rvvlEr40pBLtKh5JZ4WEkG8A0Mb32G/uo7Xntks9vcU=
Subject key identifier: B0:27:4E:5D:3C:07:38:99:D4:44:87:48:E8:10:9E:1B:91:E2:CD:F1
Certificate issuer: /CN=5ef104fc4b0b5c08272e3ae783b8cd777ba2aa90
Certificate serial: 018A45A82E8C13E3090C5AB3328E0D389A13
Authority key identifier: 5E:F1:04:FC:4B:0B:5C:08:27:2E:3A:E7:83:B8:CD:77:7B:A2:AA:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XvEE_EsLXAgnLjrng7jNd3uiqpA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/353bfa-abdb-444a-8154-4fc54b0baa78/1/sCdOXTwHOJnURIdI6BCeG5HizfE.roa
Signing time: Wed 30 Aug 2023 08:56:04 +0000
ROA not before: Wed 30 Aug 2023 08:56:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 55256
IP address blocks: 2a11:a580::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:45:a8:2e:8c:13:e3:09:0c:5a:b3:32:8e:0d:38:9a:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ef104fc4b0b5c08272e3ae783b8cd777ba2aa90
Validity
Not Before: Aug 30 08:56:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b0274e5d3c073899d4448748e8109e1b91e2cdf1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:db:62:16:92:60:a4:89:d4:d1:37:3a:ea:a5:
26:60:ec:87:f0:55:f4:b1:0d:a1:b5:05:eb:2c:16:
f4:5e:2e:a0:fa:60:1b:c7:6a:84:0f:14:11:71:5c:
90:ee:57:92:d2:37:e7:c8:ef:d5:4d:c1:16:f0:e1:
37:1e:bb:15:3f:36:12:8f:59:a4:1e:bb:b2:da:56:
e9:10:03:ff:ef:a3:0b:38:4a:a6:40:c9:13:e5:da:
1a:23:74:ee:64:94:30:97:cd:1c:17:69:12:4d:b4:
50:8e:67:79:7f:8c:84:93:f8:77:ce:20:db:02:bd:
6d:b3:8a:47:bf:71:93:0c:fd:f4:69:40:a5:35:3c:
37:96:6a:47:09:98:3a:6a:82:28:6f:cb:eb:04:ea:
08:e6:c4:fe:d9:a6:19:b7:74:82:c6:48:e6:18:56:
cf:ca:a5:d8:53:78:09:7d:50:a7:1d:ab:d9:32:e7:
b2:58:b5:fa:33:95:91:21:54:8c:43:1f:1a:b4:c7:
0a:bb:d2:c1:73:86:55:39:40:36:81:0c:01:f0:69:
13:44:00:a5:0a:18:eb:33:69:0a:88:d5:08:19:25:
3e:63:95:cd:36:20:c9:94:0b:68:7d:df:3f:d7:1e:
66:fa:6e:0d:ff:04:e8:9d:d7:24:dd:3e:46:8d:6b:
4e:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:27:4E:5D:3C:07:38:99:D4:44:87:48:E8:10:9E:1B:91:E2:CD:F1
X509v3 Authority Key Identifier:
keyid:5E:F1:04:FC:4B:0B:5C:08:27:2E:3A:E7:83:B8:CD:77:7B:A2:AA:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XvEE_EsLXAgnLjrng7jNd3uiqpA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/353bfa-abdb-444a-8154-4fc54b0baa78/1/sCdOXTwHOJnURIdI6BCeG5HizfE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/353bfa-abdb-444a-8154-4fc54b0baa78/1/XvEE_EsLXAgnLjrng7jNd3uiqpA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:a580::/32
Signature Algorithm: sha256WithRSAEncryption
66:46:60:dc:25:bf:be:91:d7:b3:0a:b3:45:97:dc:92:c9:94:
37:05:68:d3:45:26:dd:b1:03:f0:b5:d0:73:e3:33:23:75:59:
ba:8a:02:4e:f9:05:ba:0a:62:03:01:11:d9:24:b6:04:e3:ff:
de:77:9d:e7:6b:e8:22:8a:48:a7:d1:b5:89:6a:ad:b2:57:12:
8b:b4:1d:f4:67:75:d9:36:6c:ec:40:66:c8:06:42:49:a2:34:
d0:db:d1:82:4d:15:19:19:5d:ca:3c:bb:20:6c:ad:ba:bc:32:
47:aa:37:50:92:d1:da:a0:70:17:30:4f:ac:dc:4b:fc:9d:f5:
cf:93:8e:0a:af:38:0b:2d:0f:93:b7:2e:1c:ed:3b:d2:57:65:
5e:d9:a1:56:2a:c3:13:12:e7:e4:71:d4:1e:eb:64:b1:63:bd:
91:38:7c:03:bc:4d:eb:fa:58:0d:82:55:40:76:cb:11:13:0b:
03:c9:95:54:74:e7:77:5a:74:90:d1:38:da:87:a1:48:1e:da:
70:02:44:db:3f:3f:ad:7c:f9:97:e5:ec:29:50:18:d0:d3:b9:
1f:dd:5b:31:5a:97:5a:fe:ec:b3:2d:b6:bc:48:0e:76:b1:15:
6e:93:d7:0e:4d:f8:53:1d:a4:c2:46:bb:d2:f6:aa:2d:96:6a:
10:31:cd:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:04 2024 by rpki-client on console-fra.rpki-client.org