Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/af04a2-7166-440c-b67a-a7e2e4a57632/1/bStRq76XpXDq3aAN_8ouvTUXLCk.roa
File: bStRq76XpXDq3aAN_8ouvTUXLCk.roa (raw, json)
Hash identifier: GIIszQkTJA+xU5XM2O3wjpqAl9xsTrr6lha4+hTwkNM=
Subject key identifier: 6D:2B:51:AB:BE:97:A5:70:EA:DD:A0:0D:FF:CA:2E:BD:35:17:2C:29
Certificate issuer: /CN=0fa494fe13b01ccb922d58d99c773c28ec22df3b
Certificate serial: 0184D37C5F8A5FB6574336EEFCE9A4DCB2B1
Authority key identifier: 0F:A4:94:FE:13:B0:1C:CB:92:2D:58:D9:9C:77:3C:28:EC:22:DF:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D6SU_hOwHMuSLVjZnHc8KOwi3zs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/af04a2-7166-440c-b67a-a7e2e4a57632/1/bStRq76XpXDq3aAN_8ouvTUXLCk.roa
Signing time: Fri 02 Dec 2022 15:37:34 +0000
ROA not before: Fri 02 Dec 2022 15:37:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210072
IP address blocks: 2001:67c:afc::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:d3:7c:5f:8a:5f:b6:57:43:36:ee:fc:e9:a4:dc:b2:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fa494fe13b01ccb922d58d99c773c28ec22df3b
Validity
Not Before: Dec 2 15:37:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6d2b51abbe97a570eadda00dffca2ebd35172c29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:1e:5d:55:1b:2b:ec:8f:17:10:0a:7c:f5:c6:
a1:1e:ba:cc:50:99:1e:16:7f:30:dd:ad:4d:43:f1:
9e:0d:de:c2:a8:e0:e8:9b:30:97:1a:73:f4:3f:c7:
3f:76:8b:b7:fd:8d:06:84:ca:eb:23:36:c3:ca:ef:
c9:e0:92:63:b4:cd:0f:b8:55:39:9c:25:3c:42:95:
5d:10:6b:ae:24:52:6c:f7:f7:42:e6:f9:36:9d:a2:
d7:43:22:7d:bb:96:c0:53:a4:8c:c7:f4:3a:a4:8c:
70:5e:70:a5:44:76:6c:92:54:a4:2c:44:db:fe:4e:
31:ec:25:19:9e:41:8a:18:8a:0b:9c:00:9a:8c:50:
47:90:c0:b2:3c:63:e5:f9:d9:e9:00:16:2a:77:ef:
1c:7e:ea:e5:58:65:73:d2:7f:15:17:e2:47:98:0f:
09:f9:3c:bd:70:b6:57:2f:7e:dc:da:d2:6d:fe:2f:
cd:3f:d4:5f:7d:e3:49:be:9e:bc:56:ab:3e:d1:c9:
16:cf:25:85:a8:54:c2:9d:8d:65:a7:81:75:0f:93:
73:ba:ab:b1:36:a0:21:2b:3c:18:2a:ee:d0:07:aa:
57:08:5b:97:41:98:a7:e2:c9:26:d9:aa:d0:52:07:
d3:3f:11:de:e7:42:f0:98:ac:9b:0f:35:21:0e:44:
da:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:2B:51:AB:BE:97:A5:70:EA:DD:A0:0D:FF:CA:2E:BD:35:17:2C:29
X509v3 Authority Key Identifier:
keyid:0F:A4:94:FE:13:B0:1C:CB:92:2D:58:D9:9C:77:3C:28:EC:22:DF:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D6SU_hOwHMuSLVjZnHc8KOwi3zs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/af04a2-7166-440c-b67a-a7e2e4a57632/1/bStRq76XpXDq3aAN_8ouvTUXLCk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/af04a2-7166-440c-b67a-a7e2e4a57632/1/D6SU_hOwHMuSLVjZnHc8KOwi3zs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:afc::/48
Signature Algorithm: sha256WithRSAEncryption
17:9d:79:2f:49:22:e8:fd:4c:06:23:89:5c:5f:0c:f8:67:3d:
b6:6f:9b:00:bc:a5:f9:44:60:8b:e8:94:56:7a:50:c1:3f:17:
51:a8:b0:e8:34:48:75:53:d9:e6:37:d1:7f:45:e3:96:c4:3a:
b3:a9:ed:df:4c:e2:dc:7b:9f:09:8e:7e:58:3f:63:76:a1:f4:
a9:23:59:97:6c:dc:dc:a1:70:f9:3c:6d:a2:67:7b:6c:ba:44:
b3:71:59:c0:df:29:38:81:bc:bb:83:87:7e:a1:ac:b3:22:90:
bb:af:69:b5:a2:6d:8f:e1:dc:2f:8c:91:15:f1:33:90:1b:d8:
97:98:23:e9:1b:8a:f7:34:be:74:b1:20:30:9f:29:45:d4:59:
e3:5a:8c:fc:a5:2b:aa:38:ba:8f:53:94:9b:3c:b4:5d:e4:b5:
0a:2b:b4:15:58:a8:b0:70:bc:22:05:4e:06:cf:e9:87:9d:05:
fc:8a:07:8d:10:76:cd:7a:4a:9e:00:97:46:4d:5d:e9:ce:77:
d1:8e:7e:06:0b:46:bc:ee:46:8d:b5:99:5a:dd:7f:7a:c1:1c:
0b:4d:e4:6b:e6:80:b9:e6:b6:dc:20:e1:31:cd:70:c4:b0:8c:
49:9c:c0:14:c9:b1:e8:ae:ba:a9:71:a5:08:47:61:af:52:eb:
07:09:48:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:44 2024 by rpki-client on console-ams.rpki-client.org