Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/353bfa-abdb-444a-8154-4fc54b0baa78/1/sbA86HJPD6VJTrEdl_NGBV-gBBM.roa
File: sbA86HJPD6VJTrEdl_NGBV-gBBM.roa (raw, json)
Hash identifier: lm89IcCWW2guB98/Fg+OX85oN+swdcJ1bofZubjahjc=
Subject key identifier: B1:B0:3C:E8:72:4F:0F:A5:49:4E:B1:1D:97:F3:46:05:5F:A0:04:13
Certificate issuer: /CN=5ef104fc4b0b5c08272e3ae783b8cd777ba2aa90
Certificate serial: 01828C60AB4B84A3ADFF8A72F43277386E1A
Authority key identifier: 5E:F1:04:FC:4B:0B:5C:08:27:2E:3A:E7:83:B8:CD:77:7B:A2:AA:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XvEE_EsLXAgnLjrng7jNd3uiqpA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/353bfa-abdb-444a-8154-4fc54b0baa78/1/sbA86HJPD6VJTrEdl_NGBV-gBBM.roa
Signing time: Thu 11 Aug 2022 10:08:41 +0000
ROA not before: Thu 11 Aug 2022 10:08:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 2a11:a584::/32 maxlen: 32
2a11:a582::/32 maxlen: 32
2a11:a580::/32 maxlen: 32
2a11:a586::/32 maxlen: 32
2a11:a585::/32 maxlen: 32
2a11:a583::/32 maxlen: 32
2a11:a587::/32 maxlen: 32
2a11:a581::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:8c:60:ab:4b:84:a3:ad:ff:8a:72:f4:32:77:38:6e:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ef104fc4b0b5c08272e3ae783b8cd777ba2aa90
Validity
Not Before: Aug 11 10:08:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b1b03ce8724f0fa5494eb11d97f346055fa00413
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:32:08:b1:77:fd:50:b0:45:59:cc:40:ad:0c:
e1:80:c0:cf:c0:c7:40:93:21:1a:9d:18:65:1a:4b:
6b:69:49:01:d1:bd:e5:b6:18:1f:7e:5f:33:19:75:
ec:f4:b6:eb:23:77:d6:cd:e8:9f:0f:5a:58:68:3d:
45:9a:96:ed:d4:89:8c:50:68:6f:1b:76:50:3b:c1:
fd:88:96:5f:43:ae:27:26:a9:8e:b7:48:1e:6a:f1:
8b:21:77:ad:43:80:ce:0d:f5:55:7d:b0:49:ba:9f:
44:97:c0:57:48:f2:f9:9c:d8:b9:09:c2:c3:1d:e0:
a2:0c:2e:29:aa:06:aa:6b:3a:ff:c8:78:b8:0a:90:
d9:fc:ed:e2:f0:b3:c5:d5:48:bc:30:3a:5c:77:fa:
0f:a6:2a:d1:4b:66:0e:74:75:77:b4:65:34:a4:16:
6e:a2:33:8a:88:86:62:c8:16:36:bb:e3:b2:68:2d:
42:29:43:86:43:df:54:1c:be:6d:b9:48:79:d5:41:
c6:d8:a6:b4:0f:87:fa:dc:bd:5e:1a:22:69:cc:8b:
dc:bb:e3:42:29:8f:4a:1a:e4:9b:63:3e:41:22:1a:
7b:fb:e7:35:6b:74:25:08:c3:5a:6f:a7:83:95:12:
1f:d8:10:af:6a:44:26:a9:8d:b5:96:1f:7b:c0:6b:
ee:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:B0:3C:E8:72:4F:0F:A5:49:4E:B1:1D:97:F3:46:05:5F:A0:04:13
X509v3 Authority Key Identifier:
keyid:5E:F1:04:FC:4B:0B:5C:08:27:2E:3A:E7:83:B8:CD:77:7B:A2:AA:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XvEE_EsLXAgnLjrng7jNd3uiqpA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/353bfa-abdb-444a-8154-4fc54b0baa78/1/sbA86HJPD6VJTrEdl_NGBV-gBBM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/353bfa-abdb-444a-8154-4fc54b0baa78/1/XvEE_EsLXAgnLjrng7jNd3uiqpA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:a580::/29
Signature Algorithm: sha256WithRSAEncryption
1a:12:6b:c4:5b:45:de:f5:66:79:7e:cd:08:b0:ae:b9:0d:80:
ea:6d:a0:ed:6b:0c:fa:a0:5a:22:11:da:62:1d:48:90:e0:cc:
48:56:06:b7:c4:dc:25:ac:1a:4d:45:f5:da:49:ef:f2:9a:48:
8d:46:c1:5d:e7:62:e1:f9:cd:62:87:cf:3d:6c:b8:4b:18:58:
bd:e7:77:36:48:63:79:3a:ea:ec:95:c4:bc:25:fc:a0:c8:bb:
1e:3e:3f:ba:0d:42:2c:fb:87:2f:9c:31:9a:85:2c:2a:76:68:
a7:ae:58:7f:0b:30:96:8b:2f:8d:a7:fa:2a:c3:a1:35:97:ca:
a2:bf:26:5a:18:b8:b5:75:ad:07:96:4a:ac:5d:32:59:18:53:
c1:c6:92:e3:16:f6:c6:38:08:62:18:3c:3a:43:48:5b:af:70:
c7:6f:bb:5c:46:2b:53:9c:b2:a7:4d:ad:c7:a2:67:42:3b:7e:
30:16:45:97:f1:5b:68:ff:63:d8:66:ff:3e:d1:78:e6:4a:17:
f2:01:92:56:72:15:a8:bd:bd:c7:8c:1f:0e:ab:f5:bd:fa:1a:
36:01:84:55:80:8b:ab:43:77:2d:33:27:92:ae:dc:0f:95:6c:
b8:86:21:3f:f7:bf:fd:e3:26:0f:4b:aa:67:38:33:21:1b:83:
a0:2f:98:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:03 2024 by rpki-client on console-ams.rpki-client.org