Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/d107de-e2e5-4727-98ad-3821810344e6/1/MTajk7TX2-BwtJRUryAy3wSgQwc.roa
File: MTajk7TX2-BwtJRUryAy3wSgQwc.roa (raw, json)
Hash identifier: wh/E4k38CEt+ApDkJFlNWqr4LBWDuvMrmqXSKBsy084=
Subject key identifier: 31:36:A3:93:B4:D7:DB:E0:70:B4:94:54:AF:20:32:DF:04:A0:43:07
Certificate issuer: /CN=5df53645843e6d2883dc8f9c4f415c1eadbbf60a
Certificate serial: 01857331454A4A78B89D8040181588CC9265
Authority key identifier: 5D:F5:36:45:84:3E:6D:28:83:DC:8F:9C:4F:41:5C:1E:AD:BB:F6:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XfU2RYQ-bSiD3I-cT0FcHq279go.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/d107de-e2e5-4727-98ad-3821810344e6/1/MTajk7TX2-BwtJRUryAy3wSgQwc.roa
Signing time: Mon 02 Jan 2023 15:54:46 +0000
ROA not before: Mon 02 Jan 2023 15:54:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213327
IP address blocks: 2a10:4741:24::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:31:45:4a:4a:78:b8:9d:80:40:18:15:88:cc:92:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5df53645843e6d2883dc8f9c4f415c1eadbbf60a
Validity
Not Before: Jan 2 15:54:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3136a393b4d7dbe070b49454af2032df04a04307
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:58:29:36:ea:3b:84:7a:d1:73:be:f9:d1:c0:
80:fe:fa:4d:93:1a:05:c9:3a:65:f9:a4:17:27:3b:
21:3a:df:7e:65:0f:0c:07:d7:bf:3a:e4:24:e2:ed:
f4:91:b3:4e:c4:ac:79:4f:c9:09:08:a2:4c:d7:c5:
b2:2a:a8:75:89:75:11:a9:82:a6:31:62:72:fe:9a:
75:cb:d6:11:bb:f4:e0:8a:32:42:75:f7:b7:0b:2f:
e3:8c:fe:ce:f0:11:0c:63:48:60:23:1f:86:ca:e8:
18:02:eb:2b:aa:58:b9:c6:0a:bd:3b:97:47:b3:d9:
89:59:89:1c:a9:33:d2:94:7b:ac:b3:b7:80:14:42:
65:99:80:63:2e:54:4a:22:e0:a4:85:f8:6a:58:43:
5e:26:a5:08:ec:4f:27:cd:3c:1d:7f:14:e6:76:01:
05:11:30:94:44:d1:fb:bc:45:56:e2:32:8f:dd:b4:
78:6b:77:90:7e:f0:fa:2f:e7:56:ec:99:70:4d:5e:
20:46:00:2d:57:65:f3:c4:82:0c:27:23:b0:81:b1:
0e:7a:ae:d9:03:fc:f1:24:35:e1:12:6b:c1:76:e4:
ca:86:38:6c:ab:98:bc:21:3d:b5:ab:33:5d:31:46:
e1:3c:ad:07:31:03:05:68:31:b2:41:06:a7:db:5c:
65:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:36:A3:93:B4:D7:DB:E0:70:B4:94:54:AF:20:32:DF:04:A0:43:07
X509v3 Authority Key Identifier:
keyid:5D:F5:36:45:84:3E:6D:28:83:DC:8F:9C:4F:41:5C:1E:AD:BB:F6:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XfU2RYQ-bSiD3I-cT0FcHq279go.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/d107de-e2e5-4727-98ad-3821810344e6/1/MTajk7TX2-BwtJRUryAy3wSgQwc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/d107de-e2e5-4727-98ad-3821810344e6/1/XfU2RYQ-bSiD3I-cT0FcHq279go.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:4741:24::/48
Signature Algorithm: sha256WithRSAEncryption
8b:9a:b9:50:e5:fb:4b:45:6d:9b:9e:0b:94:d2:83:12:18:ff:
88:11:10:cf:82:d1:b5:f5:5e:26:ed:e9:4b:1b:fc:2d:60:03:
46:9e:54:31:1f:ca:a3:a0:f7:84:66:81:fa:62:40:3a:9d:a9:
be:81:50:bf:a8:2a:21:d4:47:aa:8c:c6:64:4c:e7:ff:15:7a:
1e:46:20:31:6c:8b:d5:c1:ba:58:75:c5:63:8a:ab:66:92:e1:
f9:b6:45:ca:75:fc:5d:fc:48:33:4b:39:33:95:72:c8:6c:88:
2d:91:28:66:1f:2c:1d:94:97:b2:da:36:3f:f0:ac:e8:ad:d5:
b8:f9:f5:8e:75:c7:de:ab:6a:57:fc:ae:6d:8f:f7:ba:6d:8e:
27:f8:84:d7:7d:89:0c:22:c4:b7:16:49:8e:85:b3:ec:a0:85:
a3:a9:9f:0d:7a:29:2b:5a:62:17:3f:92:f0:80:40:62:97:80:
28:e0:87:96:12:5a:a4:89:ef:12:a1:31:eb:11:5d:35:63:1b:
ab:96:3e:86:ef:da:fd:b5:f4:cc:a2:e0:2e:8b:bc:b2:3e:63:
be:94:5e:ca:c6:1a:29:e5:0e:71:d8:ab:ab:3a:d4:99:89:4a:
08:b5:e3:0b:13:c5:88:85:48:c8:85:c1:46:6e:d7:6e:66:79:
49:43:2e:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 24 13:01:39 2023 by rpki-client on console-fra.rpki-client.org