Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/358688-d937-432d-b6be-328189791759/1/H6advh5_9ZcR3RNbxD06QXR-p1U.roa
File: H6advh5_9ZcR3RNbxD06QXR-p1U.roa (raw, json)
Hash identifier: EyeUdtOzYuU3/KqaohS+gwnX1GZ3Cf7wmMOcubH6EuI=
Subject key identifier: 1F:A6:9D:BE:1E:7F:F5:97:11:DD:13:5B:C4:3D:3A:41:74:7E:A7:55
Certificate issuer: /CN=da1389de8483bd142d3fc7b3f7ca3e755d18c09c
Certificate serial: 01856C0A384D30920D456BE0EB2AD37333C2
Authority key identifier: DA:13:89:DE:84:83:BD:14:2D:3F:C7:B3:F7:CA:3E:75:5D:18:C0:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2hOJ3oSDvRQtP8ez98o-dV0YwJw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/358688-d937-432d-b6be-328189791759/1/H6advh5_9ZcR3RNbxD06QXR-p1U.roa
Signing time: Sun 01 Jan 2023 06:34:47 +0000
ROA not before: Sun 01 Jan 2023 06:34:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 2a09:2340::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:0a:38:4d:30:92:0d:45:6b:e0:eb:2a:d3:73:33:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da1389de8483bd142d3fc7b3f7ca3e755d18c09c
Validity
Not Before: Jan 1 06:34:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1fa69dbe1e7ff59711dd135bc43d3a41747ea755
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:09:01:19:47:77:d4:00:0d:39:7c:62:a1:77:
8e:e6:0f:77:46:1c:90:bb:0b:45:3f:fe:42:00:1a:
d3:cf:3b:af:2e:0a:27:be:3d:62:b5:32:04:4b:ce:
1f:b9:af:ce:52:9c:d7:ea:e9:83:70:89:8e:ce:e1:
94:e4:0f:7d:d3:8e:dc:93:81:2a:e7:7b:b0:b0:0b:
fc:54:84:e8:4b:23:32:95:c0:bf:33:36:e0:0f:6d:
7d:bc:88:81:2f:ac:a3:86:9a:c4:2d:cd:78:1d:52:
2a:d5:0c:50:dd:85:32:0f:8c:09:d9:af:06:33:3e:
33:9a:0b:c5:f2:8a:14:50:34:f3:59:8a:da:06:69:
e8:68:df:b1:63:72:0c:40:76:70:24:11:38:e1:93:
a2:76:37:38:03:39:29:62:eb:aa:d2:a7:95:2e:51:
30:6c:ce:04:a8:ff:5f:e9:bb:af:aa:e1:79:fe:1b:
7a:ca:90:bb:f3:62:38:da:41:f5:19:16:f0:1a:89:
be:26:1e:c9:0e:09:6c:df:38:13:a3:46:ca:df:25:
4e:a2:5e:77:df:81:0a:c5:98:d2:d8:d0:77:a5:17:
cc:cf:bd:80:78:2a:5f:de:2f:03:5c:76:f3:30:da:
99:38:fb:25:d6:9d:c8:59:83:b7:30:48:4e:0a:81:
65:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:A6:9D:BE:1E:7F:F5:97:11:DD:13:5B:C4:3D:3A:41:74:7E:A7:55
X509v3 Authority Key Identifier:
keyid:DA:13:89:DE:84:83:BD:14:2D:3F:C7:B3:F7:CA:3E:75:5D:18:C0:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2hOJ3oSDvRQtP8ez98o-dV0YwJw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/358688-d937-432d-b6be-328189791759/1/H6advh5_9ZcR3RNbxD06QXR-p1U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/358688-d937-432d-b6be-328189791759/1/2hOJ3oSDvRQtP8ez98o-dV0YwJw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:2340::/29
Signature Algorithm: sha256WithRSAEncryption
a6:c1:56:3e:77:8f:f0:36:66:24:b0:82:76:bb:63:d0:71:5d:
91:d5:6c:d5:41:a4:77:de:8d:ea:f3:c7:86:e0:15:f1:78:7b:
a6:a4:99:8e:85:5d:07:db:c1:2f:2e:b1:2f:c0:d1:bc:59:2f:
c7:ff:4c:94:ee:29:2f:2a:f7:88:ce:44:c3:5c:05:18:b7:b0:
f8:9c:11:10:17:ac:80:3d:17:38:96:70:fd:2d:a3:11:b8:ba:
01:2c:af:0b:f6:80:2f:70:a1:20:68:b2:bd:70:e6:06:19:7d:
95:75:eb:bd:57:ff:96:f6:b4:35:55:01:47:78:5a:d7:13:b2:
b7:ff:a3:cd:6a:97:c5:23:d9:ea:9a:55:d5:a2:fa:8c:cc:ac:
5d:88:ed:19:7f:a7:c6:f4:c2:61:f7:91:8d:ee:3e:32:62:51:
84:e2:dc:19:fd:12:ff:6e:c3:c5:5e:07:8a:e3:b2:e0:2d:d4:
33:b3:9a:9d:7d:ba:ad:9d:1b:c2:99:86:6c:fc:e1:59:26:c3:
e0:e1:94:d0:0b:80:d3:86:8d:ef:ac:47:ff:46:b1:65:52:ae:
e2:a1:93:76:db:b8:85:39:f0:77:2e:27:b3:80:58:79:48:7e:
4a:9a:ae:08:8d:1f:0a:08:e6:66:4f:4d:7a:7b:1d:5c:25:4f:
94:d5:ce:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 28 17:19:24 2023 by rpki-client on console-ams.rpki-client.org