Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/beba9b-b316-4cde-b17e-1f9ad861d074/1/yaej5_9hGeYiiAxpKHSoVJjkBO0.roa
File: yaej5_9hGeYiiAxpKHSoVJjkBO0.roa (raw, json)
Hash identifier: eDz2VY+ncQm8VP19EPNgrOlLvcm26cuNcWkJXb0Tg4A=
Subject key identifier: C9:A7:A3:E7:FF:61:19:E6:22:88:0C:69:28:74:A8:54:98:E4:04:ED
Certificate issuer: /CN=2aa1c6ccd085ee10fabf991e262b0b9432f6a6f9
Certificate serial: 018CC3B706F82566F6CE4B017C53DE298A2F
Authority key identifier: 2A:A1:C6:CC:D0:85:EE:10:FA:BF:99:1E:26:2B:0B:94:32:F6:A6:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KqHGzNCF7hD6v5keJisLlDL2pvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/beba9b-b316-4cde-b17e-1f9ad861d074/1/yaej5_9hGeYiiAxpKHSoVJjkBO0.roa
Signing time: Mon 01 Jan 2024 06:30:01 +0000
ROA not before: Mon 01 Jan 2024 06:30:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208437
IP address blocks: 2001:67c:1848::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b7:06:f8:25:66:f6:ce:4b:01:7c:53:de:29:8a:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2aa1c6ccd085ee10fabf991e262b0b9432f6a6f9
Validity
Not Before: Jan 1 06:30:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c9a7a3e7ff6119e622880c692874a85498e404ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:5a:6b:c7:30:57:b0:06:41:70:74:36:4e:89:
42:ce:44:46:73:7f:8a:a8:7a:15:ca:2a:6d:83:7e:
49:75:83:03:b9:02:c5:af:ca:61:1b:7b:e0:78:95:
40:73:c8:95:34:f9:4e:7c:31:e8:c8:86:80:d4:20:
59:51:ac:3c:c6:4d:a2:79:12:2a:89:34:fa:fc:dc:
c8:c0:fe:b0:3b:87:74:47:00:ed:eb:55:f5:25:52:
7b:cc:37:4b:cc:7e:54:e3:87:db:b3:34:47:2c:b3:
2c:c0:68:d8:b4:6c:1e:bf:c3:e4:71:57:6f:dd:cf:
7d:18:21:53:22:c6:35:72:09:75:6e:aa:67:17:d9:
80:6a:85:e5:ec:80:03:64:d2:c7:25:e5:ce:93:df:
f6:8d:3a:59:3a:7a:1a:ba:a3:d8:d5:b9:a3:69:59:
44:32:85:c0:f8:77:59:ef:2b:e8:2d:08:5b:4c:ef:
a3:fb:2f:e1:e2:5b:9f:02:41:62:e3:31:ed:f7:89:
10:0b:4c:75:91:7a:af:9a:e5:02:e7:bd:0d:8f:30:
54:1e:91:5a:3d:2b:95:a9:1c:ba:91:70:9f:0f:94:
f0:5d:e8:eb:c4:f5:95:30:a3:af:5f:b0:fd:d4:c0:
9f:6c:e3:f9:61:52:9c:09:34:61:32:98:13:55:f7:
bb:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:A7:A3:E7:FF:61:19:E6:22:88:0C:69:28:74:A8:54:98:E4:04:ED
X509v3 Authority Key Identifier:
keyid:2A:A1:C6:CC:D0:85:EE:10:FA:BF:99:1E:26:2B:0B:94:32:F6:A6:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KqHGzNCF7hD6v5keJisLlDL2pvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/beba9b-b316-4cde-b17e-1f9ad861d074/1/yaej5_9hGeYiiAxpKHSoVJjkBO0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/beba9b-b316-4cde-b17e-1f9ad861d074/1/KqHGzNCF7hD6v5keJisLlDL2pvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:1848::/48
Signature Algorithm: sha256WithRSAEncryption
7b:80:97:6d:8a:cf:2e:a1:19:4d:50:9e:81:cc:73:68:34:2b:
bb:9b:9c:7b:81:99:9a:43:cf:35:6a:f4:be:0d:95:01:8c:65:
13:ef:75:14:9e:74:18:2a:8f:f6:22:68:42:43:8f:e5:07:fb:
88:a1:40:48:55:14:c1:39:f0:44:3a:01:26:3b:bf:12:89:22:
17:ff:13:5e:3e:f4:1f:06:f2:80:79:3f:68:86:dc:d7:f2:4b:
00:00:81:ec:b8:e0:ff:3c:67:31:d2:f1:59:3e:84:a8:9f:96:
5b:24:1b:2c:29:76:af:14:ab:c1:10:2f:53:1c:9c:5a:8c:83:
ff:22:86:cd:50:d5:cb:1e:29:a7:ba:56:31:f2:90:34:b4:77:
80:17:e6:36:38:cd:01:b4:1f:11:8f:76:a8:b1:f8:bb:90:df:
3a:ab:ec:4d:8c:f6:3d:e3:e1:ef:f5:ce:fb:52:6a:33:35:d5:
2a:9f:3f:e4:fb:bf:23:f8:1e:0e:90:0a:b7:54:da:9b:a4:82:
48:8b:0a:86:b3:08:bd:38:e6:85:56:29:2a:38:ed:1c:b5:e8:
6b:2c:c3:36:ba:c8:e4:29:cc:6c:44:a0:bc:9d:c6:36:57:04:
ad:93:06:39:ac:f7:98:32:05:b9:93:a5:fc:8f:53:e6:e5:d9:
3b:15:f2:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 16 10:45:14 2024 by rpki-client on console-ams.rpki-client.org