Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/9ba681-3649-420f-8f24-67cdb2f0693d/1/ensZEbszUBHZaXbXaukMAVtNLQw.roa
File: ensZEbszUBHZaXbXaukMAVtNLQw.roa (raw, json)
Hash identifier: uBZaJnR9hunHfPUJfJUDrPwC1AYFXupp28uLz+atxik=
Subject key identifier: 7A:7B:19:11:BB:33:50:11:D9:69:76:D7:6A:E9:0C:01:5B:4D:2D:0C
Certificate issuer: /CN=425c6104aae83931281e004fad5d9f76232c0978
Certificate serial: 040BD5
Authority key identifier: 42:5C:61:04:AA:E8:39:31:28:1E:00:4F:AD:5D:9F:76:23:2C:09:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QlxhBKroOTEoHgBPrV2fdiMsCXg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/9ba681-3649-420f-8f24-67cdb2f0693d/1/ensZEbszUBHZaXbXaukMAVtNLQw.roa
Signing time: Wed 01 Jun 2022 17:53:21 +0000
ROA not before: Wed 01 Jun 2022 17:53:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209963
IP address blocks: 2a09:c800::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 265173 (0x40bd5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=425c6104aae83931281e004fad5d9f76232c0978
Validity
Not Before: Jun 1 17:53:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7a7b1911bb335011d96976d76ae90c015b4d2d0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:02:cc:ec:2d:9a:d0:c5:aa:48:dd:61:00:c6:
44:cd:b2:57:69:41:c3:12:46:f7:85:08:94:e1:e1:
4d:7c:b4:4c:c2:e1:18:43:36:fa:f1:d0:73:2d:fb:
0e:63:ac:83:07:7e:38:7d:3f:7a:a5:9b:ce:21:ae:
19:0b:86:7d:ee:e1:5f:f9:30:e5:e9:c9:64:1f:da:
20:7c:08:9d:fd:5b:ea:03:19:b7:7b:70:84:3f:6f:
d9:88:a7:1e:c6:9b:4c:af:57:3f:fd:72:0e:4f:e0:
20:7b:29:67:57:4f:99:31:fb:07:83:09:dc:70:58:
ce:43:dc:e6:f4:ca:34:cf:4c:54:c4:61:1e:58:4b:
d9:03:1f:49:0d:44:a0:be:88:18:9b:a6:df:4d:12:
59:22:f4:61:9a:60:f7:88:ce:1d:20:c6:e3:5f:0f:
4d:c9:bb:48:89:67:b6:3f:4b:5b:eb:03:85:35:3d:
5b:7b:7e:dd:1c:ff:5e:b5:30:fa:13:47:44:86:9a:
a7:96:c8:50:8f:36:5d:11:c2:30:ea:78:07:0f:e0:
1d:39:3f:07:d0:5d:ba:dd:6f:06:78:86:dc:43:82:
9b:74:d1:fc:24:fa:12:d6:9a:09:15:d4:49:60:e4:
86:74:e0:aa:64:cd:19:d6:70:bc:e7:8c:be:27:97:
c7:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:7B:19:11:BB:33:50:11:D9:69:76:D7:6A:E9:0C:01:5B:4D:2D:0C
X509v3 Authority Key Identifier:
keyid:42:5C:61:04:AA:E8:39:31:28:1E:00:4F:AD:5D:9F:76:23:2C:09:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QlxhBKroOTEoHgBPrV2fdiMsCXg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/9ba681-3649-420f-8f24-67cdb2f0693d/1/ensZEbszUBHZaXbXaukMAVtNLQw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/9ba681-3649-420f-8f24-67cdb2f0693d/1/QlxhBKroOTEoHgBPrV2fdiMsCXg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:c800::/29
Signature Algorithm: sha256WithRSAEncryption
1e:4e:b0:e0:a5:b8:cb:d6:c0:54:aa:06:a4:e6:84:27:95:d0:
7f:a2:d9:7e:65:a1:a6:c2:16:ee:10:c1:35:1e:66:17:db:82:
3e:0a:80:b1:e9:3e:68:32:f2:5f:61:a6:53:7e:c6:e2:cc:8a:
b4:73:01:14:c9:e5:65:48:a6:6b:89:7b:7a:db:38:a7:6e:ef:
70:9d:2a:fe:85:12:77:d1:63:04:f1:0b:77:b2:64:25:fb:ac:
92:b7:a1:f9:b7:ce:54:a7:6b:20:1a:62:60:a4:18:6d:e3:cd:
c9:4d:58:1d:e8:86:be:10:b9:45:eb:58:dd:0a:da:9c:ad:87:
b5:c6:52:40:50:e3:1d:63:8d:77:23:b8:f6:03:35:d5:79:82:
bb:0b:26:52:28:38:93:98:d8:8e:5a:f4:bf:a5:c4:19:e7:3f:
a7:b6:be:8d:82:96:c3:25:25:cb:98:1e:1f:28:18:97:2a:2e:
e5:32:05:e4:4f:25:49:ae:a0:6b:95:56:ad:95:89:8d:b7:d5:
fd:4c:f4:a9:94:38:9c:af:9b:2e:3e:28:72:0e:86:59:a1:cb:
a9:fd:83:2b:81:cc:64:a9:ce:13:a1:3d:45:8e:91:9a:79:67:
48:5c:e9:2e:76:88:34:19:20:e2:4d:5f:16:82:1e:2c:d4:c2:
c4:c8:bf:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:03 2024 by rpki-client on console-fra.rpki-client.org