Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/8df9d9-b420-41da-b3aa-afdea12fb965/1/WRlxvnbOStFd2iM7kqPgb-jPW48.roa
File: WRlxvnbOStFd2iM7kqPgb-jPW48.roa (raw, json)
Hash identifier: /d17e3rabD9G1+4OUOjVZjccfr2uRMsMrn15HPeN16M=
Subject key identifier: 59:19:71:BE:76:CE:4A:D1:5D:DA:23:3B:92:A3:E0:6F:E8:CF:5B:8F
Certificate issuer: /CN=530493a3dc3c0b7e30c7771e2be20f811ebc47e0
Certificate serial: 018570829DFAF5E162B1EB75ADA555E6577E
Authority key identifier: 53:04:93:A3:DC:3C:0B:7E:30:C7:77:1E:2B:E2:0F:81:1E:BC:47:E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UwSTo9w8C34wx3ceK-IPgR68R-A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/8df9d9-b420-41da-b3aa-afdea12fb965/1/WRlxvnbOStFd2iM7kqPgb-jPW48.roa
Signing time: Mon 02 Jan 2023 03:24:46 +0000
ROA not before: Mon 02 Jan 2023 03:24:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 22773
IP address blocks: 2a11:70c0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:82:9d:fa:f5:e1:62:b1:eb:75:ad:a5:55:e6:57:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=530493a3dc3c0b7e30c7771e2be20f811ebc47e0
Validity
Not Before: Jan 2 03:24:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=591971be76ce4ad15dda233b92a3e06fe8cf5b8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:29:78:8d:dc:3e:0b:15:61:9f:6c:ef:5c:9b:
dd:63:38:88:b2:e1:98:03:75:1c:86:0d:43:2f:ba:
fe:a8:dd:79:cd:87:83:3d:0c:f7:15:c6:7f:44:bd:
92:16:b6:43:d5:11:5c:0f:47:48:84:6e:5f:27:6f:
af:19:b6:c3:18:fa:11:10:22:75:08:d7:a0:4e:4c:
c8:90:75:5c:c0:dd:69:bd:9e:c2:7d:e8:8f:fd:d0:
b9:6c:83:91:6b:4f:30:a7:ae:92:06:59:b3:cd:f4:
a4:0c:b3:af:44:58:dc:39:61:da:7a:23:59:3a:75:
0a:f2:a3:28:05:fc:70:82:08:b3:af:c3:86:2c:e9:
38:de:1f:9a:df:0f:a7:6f:e8:60:c6:d6:a6:8a:67:
7d:24:19:0f:af:6a:4c:b0:74:f4:f1:e2:27:0c:a3:
58:4d:4a:4a:1a:a7:db:b1:cb:ba:f8:82:d8:46:e7:
ff:eb:b8:bd:db:2b:5f:08:2a:22:98:f4:e5:56:06:
3b:e6:44:a1:10:d3:f5:2b:60:52:c4:ca:b9:fd:46:
6f:de:79:83:be:98:bf:9d:43:b9:37:f1:30:fc:01:
07:a7:ed:be:17:1f:7b:15:d5:3f:e6:ae:89:4e:45:
11:3f:4c:37:87:fd:04:3b:3b:1d:ad:06:a9:a1:fb:
4b:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:19:71:BE:76:CE:4A:D1:5D:DA:23:3B:92:A3:E0:6F:E8:CF:5B:8F
X509v3 Authority Key Identifier:
keyid:53:04:93:A3:DC:3C:0B:7E:30:C7:77:1E:2B:E2:0F:81:1E:BC:47:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UwSTo9w8C34wx3ceK-IPgR68R-A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/8df9d9-b420-41da-b3aa-afdea12fb965/1/WRlxvnbOStFd2iM7kqPgb-jPW48.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/8df9d9-b420-41da-b3aa-afdea12fb965/1/UwSTo9w8C34wx3ceK-IPgR68R-A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:70c0::/29
Signature Algorithm: sha256WithRSAEncryption
47:1d:8b:2f:f2:3a:86:e3:71:ae:6e:f9:06:d9:d6:23:1d:ec:
01:d4:ed:20:eb:17:1f:d0:19:37:13:b4:54:e3:62:af:45:f4:
64:59:6a:0b:aa:87:59:23:e2:31:53:f6:92:3b:6a:71:8b:e5:
66:13:d5:a7:31:e5:96:b4:3e:41:cb:69:bc:e6:83:74:e9:71:
dc:65:e5:4e:99:be:75:9c:79:f8:e1:96:b8:32:11:1e:a9:3c:
df:61:38:87:df:ee:e5:4f:96:68:1f:50:d5:28:67:39:25:51:
be:9a:a3:37:01:3f:cb:7d:07:ac:21:c6:c3:5e:2d:14:dd:87:
f0:4d:94:28:01:64:a6:2f:05:49:02:7d:d6:b9:82:0c:22:8d:
30:b3:cc:46:c5:f1:cc:11:62:75:98:93:23:cc:cd:a6:d5:99:
17:36:9c:db:40:44:36:df:7c:47:c8:06:c8:f1:41:7f:94:bd:
f4:95:85:be:82:79:9d:b8:3b:50:59:71:34:8e:71:a7:d1:83:
cd:cd:b4:be:6a:59:58:ea:56:36:f8:4b:26:c7:d1:cd:2b:21:
cf:5b:2a:ed:bf:35:f2:77:d4:18:e8:3c:6f:3c:52:05:a9:36:
e7:b5:99:59:61:24:dd:6e:5e:d4:ec:04:94:81:04:41:a7:60:
ce:cc:bf:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 17 10:51:06 2023 by rpki-client on console-ams.rpki-client.org