Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/af04a2-7166-440c-b67a-a7e2e4a57632/1/4gRIjRObaMxkpCpOW0AlImNIC38.roa
File: 4gRIjRObaMxkpCpOW0AlImNIC38.roa (raw, json)
Hash identifier: P4AI1PEMGOZD5+qbxByRM0lNj8UPJnSFacp6URlQot0=
Subject key identifier: E2:04:48:8D:13:9B:68:CC:64:A4:2A:4E:5B:40:25:22:63:48:0B:7F
Certificate issuer: /CN=0fa494fe13b01ccb922d58d99c773c28ec22df3b
Certificate serial: 01856D8AD55084627F83ABDF88EB45CABDCC
Authority key identifier: 0F:A4:94:FE:13:B0:1C:CB:92:2D:58:D9:9C:77:3C:28:EC:22:DF:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D6SU_hOwHMuSLVjZnHc8KOwi3zs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/af04a2-7166-440c-b67a-a7e2e4a57632/1/4gRIjRObaMxkpCpOW0AlImNIC38.roa
Signing time: Sun 01 Jan 2023 13:34:53 +0000
ROA not before: Sun 01 Jan 2023 13:34:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210072
IP address blocks: 2001:67c:afc::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:8a:d5:50:84:62:7f:83:ab:df:88:eb:45:ca:bd:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fa494fe13b01ccb922d58d99c773c28ec22df3b
Validity
Not Before: Jan 1 13:34:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e204488d139b68cc64a42a4e5b40252263480b7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:63:5e:f5:6a:9d:0e:1e:bc:6d:1d:82:c3:ad:
89:ab:23:b6:c4:ee:d3:80:33:df:bd:36:05:95:2c:
67:e5:c4:80:b3:49:1d:e4:5e:78:c0:7c:9a:71:0c:
bd:38:ee:c2:de:a1:3e:95:7c:9a:8a:08:f8:6b:34:
01:f8:85:62:41:9e:78:0a:a7:4c:83:e7:98:37:b1:
1a:63:21:d4:e7:cd:2a:ff:de:a9:66:94:6c:ab:25:
7f:37:9d:21:5c:97:36:60:2f:5d:30:ce:d7:85:64:
6f:4c:bb:9c:4b:81:3f:92:59:1d:ae:ad:1e:c5:40:
19:c0:0f:96:03:c3:33:1c:53:34:c3:69:5e:44:45:
f3:bc:00:7e:82:04:7e:27:b4:a7:a2:67:c3:9b:48:
06:a8:d2:8d:4d:f4:cd:79:9a:d7:df:9a:5b:77:64:
b3:4c:d2:3a:8b:70:7e:e6:6d:94:ac:30:dd:87:a8:
9e:f2:a0:21:f7:91:a5:82:4b:d4:ef:97:fa:cf:9e:
6b:8a:ba:39:5f:a0:48:b3:c5:c3:6f:9b:df:d7:44:
8b:7f:dc:b5:05:79:98:92:15:33:ed:26:87:24:d4:
b0:08:db:6a:0b:39:72:6d:ea:f5:2c:d8:83:55:66:
8b:ca:17:43:5e:8d:49:b9:44:ed:73:2e:00:03:d2:
07:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:04:48:8D:13:9B:68:CC:64:A4:2A:4E:5B:40:25:22:63:48:0B:7F
X509v3 Authority Key Identifier:
keyid:0F:A4:94:FE:13:B0:1C:CB:92:2D:58:D9:9C:77:3C:28:EC:22:DF:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D6SU_hOwHMuSLVjZnHc8KOwi3zs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/af04a2-7166-440c-b67a-a7e2e4a57632/1/4gRIjRObaMxkpCpOW0AlImNIC38.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/af04a2-7166-440c-b67a-a7e2e4a57632/1/D6SU_hOwHMuSLVjZnHc8KOwi3zs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:afc::/48
Signature Algorithm: sha256WithRSAEncryption
5b:c0:61:df:ee:cc:1c:a6:74:e4:ab:16:e3:f8:86:51:93:7c:
72:c6:43:99:38:eb:f2:9b:31:39:75:6a:d5:7a:ec:39:49:cc:
45:e3:e1:0c:62:98:65:7f:39:82:aa:98:f3:fb:db:76:a2:41:
99:d5:0e:8e:d2:e3:51:c5:b0:84:83:83:48:5f:96:0b:31:99:
7b:9b:89:fe:c5:7f:2b:b8:ee:15:1d:43:28:59:c1:b1:c4:3f:
0b:9d:10:07:ff:48:33:96:2e:23:9b:85:ad:61:ef:8b:e9:a3:
2f:e2:ff:7a:b9:67:2e:95:48:8c:c7:73:25:e0:5f:7d:66:fb:
56:2c:4c:9e:b8:a6:fc:60:52:56:1e:9e:3d:20:de:db:1e:59:
98:96:76:82:79:5a:45:74:f1:aa:af:4d:6d:89:f9:6c:80:c4:
71:ad:b3:e6:d9:9c:89:de:f8:79:67:2f:34:7f:8b:de:7f:2d:
4f:b2:a2:7d:72:fa:ef:d9:a5:46:f6:bb:50:2e:82:40:40:cc:
0b:d3:45:3a:9c:80:fe:2a:f3:50:ac:10:35:67:ea:cd:95:c3:
0f:2a:89:55:85:f7:90:a0:b1:5d:a0:3e:3b:4a:43:14:48:a8:
9d:38:30:bd:bc:de:51:60:e2:46:1b:8b:23:fc:63:04:fc:60:
89:19:25:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Dec 19 15:40:36 2023 by rpki-client on console-ams.rpki-client.org