Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/d107de-e2e5-4727-98ad-3821810344e6/1/364XfRm5Qp2acLnn7kV5mPUT6jc.roa
File: 364XfRm5Qp2acLnn7kV5mPUT6jc.roa (raw, json)
Hash identifier: X4pWNSaiTyxYlV6iQTA+Qq30gI0jesVBhUyP54lFDYk=
Subject key identifier: DF:AE:17:7D:19:B9:42:9D:9A:70:B9:E7:EE:45:79:98:F5:13:EA:37
Certificate issuer: /CN=5df53645843e6d2883dc8f9c4f415c1eadbbf60a
Certificate serial: 018573314164E1DA6AFE4D7868CDECBC440D
Authority key identifier: 5D:F5:36:45:84:3E:6D:28:83:DC:8F:9C:4F:41:5C:1E:AD:BB:F6:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XfU2RYQ-bSiD3I-cT0FcHq279go.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/d107de-e2e5-4727-98ad-3821810344e6/1/364XfRm5Qp2acLnn7kV5mPUT6jc.roa
Signing time: Mon 02 Jan 2023 15:54:45 +0000
ROA not before: Mon 02 Jan 2023 15:54:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208588
IP address blocks: 2a10:4741:28::/48 maxlen: 48
2a10:4741:26::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:31:41:64:e1:da:6a:fe:4d:78:68:cd:ec:bc:44:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5df53645843e6d2883dc8f9c4f415c1eadbbf60a
Validity
Not Before: Jan 2 15:54:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dfae177d19b9429d9a70b9e7ee457998f513ea37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:80:f0:82:20:15:aa:31:78:8e:14:a3:f0:3c:
0b:a0:50:34:16:54:da:10:e2:00:4e:44:aa:05:4c:
34:76:9f:57:bd:36:93:05:9f:b9:eb:eb:9f:e6:d4:
fb:2e:09:8f:c5:77:b3:1b:a1:26:33:5b:8e:f4:45:
2a:4e:8f:36:2a:b6:93:76:03:04:d0:36:64:43:81:
b0:40:ec:a2:6c:d2:8b:29:1c:95:26:a6:07:83:45:
57:51:89:bd:00:00:6b:00:e1:82:e6:2a:42:5e:69:
dc:b0:a1:d1:07:df:ae:0b:83:91:78:cc:fc:ed:e4:
a7:d0:fe:76:63:40:18:dd:a5:7b:94:35:88:13:8b:
e7:5f:17:63:72:e9:f9:ef:df:f4:ba:0e:4b:f5:31:
6a:e3:3b:53:d3:bc:72:fa:fc:3a:80:6b:90:24:2f:
63:2e:38:60:93:d5:f6:02:b0:f3:db:8f:68:b7:f6:
f9:06:e5:d1:6e:50:1d:bb:3b:c0:0a:f4:5a:4d:5b:
38:76:56:f7:46:a4:d4:1c:80:8f:b3:4c:7e:b5:d8:
bb:f5:10:2d:85:2f:49:d6:26:df:b5:62:3e:99:60:
d9:b6:21:92:16:1d:65:ab:6a:6f:c9:86:09:65:e2:
54:c3:12:b2:a7:af:83:38:99:e6:0b:a2:b8:20:b3:
10:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:AE:17:7D:19:B9:42:9D:9A:70:B9:E7:EE:45:79:98:F5:13:EA:37
X509v3 Authority Key Identifier:
keyid:5D:F5:36:45:84:3E:6D:28:83:DC:8F:9C:4F:41:5C:1E:AD:BB:F6:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XfU2RYQ-bSiD3I-cT0FcHq279go.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/d107de-e2e5-4727-98ad-3821810344e6/1/364XfRm5Qp2acLnn7kV5mPUT6jc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/d107de-e2e5-4727-98ad-3821810344e6/1/XfU2RYQ-bSiD3I-cT0FcHq279go.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:4741:26::/48
2a10:4741:28::/48
Signature Algorithm: sha256WithRSAEncryption
c8:87:03:43:b8:a2:96:95:de:2e:c2:be:30:7f:a3:04:17:3c:
16:77:f4:17:dd:55:02:0e:cd:95:c8:d1:00:07:38:ae:bf:4c:
2f:e0:ea:33:f2:cd:e7:dd:e9:08:2f:85:76:72:66:5e:6d:0b:
49:6e:90:d6:08:ac:2a:a0:83:fe:d6:ab:69:d1:dd:d7:ac:77:
84:08:02:04:84:8f:36:a1:be:e2:94:04:ff:28:fe:2f:c5:a5:
f2:d3:f7:6b:c9:18:bf:0c:18:9b:61:e9:df:61:65:9d:39:91:
78:f6:14:f2:e1:0c:2e:45:d2:8c:ac:9a:a1:bc:dc:a1:f1:c1:
40:e9:06:ed:44:cf:76:e9:ba:cd:e5:69:bf:4f:42:ea:50:82:
b4:25:68:90:52:58:0e:d8:47:a1:5a:16:38:4b:4b:4a:6c:94:
91:bd:4c:e9:5f:2b:19:b3:76:47:0b:5f:68:8b:b8:d9:5d:1e:
86:27:6c:32:cb:ba:e1:6a:f5:28:ba:19:d8:d9:02:75:2d:ca:
00:b7:5c:29:36:8c:a8:f0:3a:07:5b:b6:7a:5f:02:ac:ac:fd:
51:0e:3a:6b:64:47:f4:7a:40:4a:17:26:eb:1a:e0:fa:d1:03:
a6:76:8f:39:00:fb:ac:72:ac:17:cd:73:85:c7:51:2b:16:9e:
e6:17:94:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 24 13:01:39 2023 by rpki-client on console-fra.rpki-client.org