Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/d107de-e2e5-4727-98ad-3821810344e6/1/i0heKQYC68HogZJByIaL7PS3Exc.roa
File: i0heKQYC68HogZJByIaL7PS3Exc.roa (raw, json)
Hash identifier: /xhu4voN/cV7zme14HmZjNuupigQz3N00GEESd0+nwA=
Subject key identifier: 8B:48:5E:29:06:02:EB:C1:E8:81:92:41:C8:86:8B:EC:F4:B7:13:17
Certificate issuer: /CN=5df53645843e6d2883dc8f9c4f415c1eadbbf60a
Certificate serial: 0185733141F426752991037F001A00C05966
Authority key identifier: 5D:F5:36:45:84:3E:6D:28:83:DC:8F:9C:4F:41:5C:1E:AD:BB:F6:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XfU2RYQ-bSiD3I-cT0FcHq279go.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/d107de-e2e5-4727-98ad-3821810344e6/1/i0heKQYC68HogZJByIaL7PS3Exc.roa
Signing time: Mon 02 Jan 2023 15:54:46 +0000
ROA not before: Mon 02 Jan 2023 15:54:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208686
IP address blocks: 2a10:4741:27::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:31:41:f4:26:75:29:91:03:7f:00:1a:00:c0:59:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5df53645843e6d2883dc8f9c4f415c1eadbbf60a
Validity
Not Before: Jan 2 15:54:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8b485e290602ebc1e8819241c8868becf4b71317
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:81:06:e7:5d:3a:6a:8a:41:8d:3e:2c:b4:c3:
11:26:16:cc:c4:18:81:e3:b3:a3:73:fe:29:1c:c5:
85:c4:0e:68:b0:00:35:2b:73:8d:8e:7c:c1:48:e2:
c4:5f:31:7a:ef:21:7b:a4:da:69:78:e4:a3:97:20:
81:ac:5f:cc:d2:a0:e6:6a:59:68:77:16:b6:3c:3a:
3e:1d:53:aa:56:bd:82:bd:cd:18:93:75:4c:a3:f6:
2a:5a:01:c6:78:d9:0d:9d:9b:44:fa:c5:55:14:45:
78:70:c0:1a:f4:8e:8c:5d:82:4b:a9:9b:f9:43:52:
7c:b2:03:a2:49:e6:3c:49:31:fe:ac:9e:58:43:e6:
2a:b3:f8:55:ae:59:d7:24:20:f7:53:e4:5a:38:1d:
21:26:1f:40:24:28:38:a3:13:f5:89:62:98:f6:56:
0b:7d:36:ba:21:2d:6a:2d:cc:93:1f:fb:d0:01:fd:
79:8f:84:96:38:ca:62:db:f4:d0:87:be:ec:ee:04:
68:18:68:4b:46:2c:de:a8:61:2a:82:23:01:7d:be:
13:19:64:04:a9:a8:2c:ca:d0:eb:3d:d1:f6:31:95:
df:db:86:2a:a3:57:b6:ee:d8:94:60:cc:44:c4:7a:
a6:74:76:f0:09:7a:42:73:b9:26:96:2e:be:37:34:
07:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:48:5E:29:06:02:EB:C1:E8:81:92:41:C8:86:8B:EC:F4:B7:13:17
X509v3 Authority Key Identifier:
keyid:5D:F5:36:45:84:3E:6D:28:83:DC:8F:9C:4F:41:5C:1E:AD:BB:F6:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XfU2RYQ-bSiD3I-cT0FcHq279go.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/d107de-e2e5-4727-98ad-3821810344e6/1/i0heKQYC68HogZJByIaL7PS3Exc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/d107de-e2e5-4727-98ad-3821810344e6/1/XfU2RYQ-bSiD3I-cT0FcHq279go.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:4741:27::/48
Signature Algorithm: sha256WithRSAEncryption
52:af:5d:7a:3f:0e:d0:d5:b0:f0:00:df:28:6f:02:9f:61:9b:
f6:bf:50:02:62:80:fc:61:df:1b:36:0e:8c:c7:58:f7:6c:e6:
aa:73:d0:09:84:b7:f0:5b:f6:2f:8f:0e:91:95:e2:c5:ce:3a:
77:dc:20:17:b2:6b:53:bb:b8:7d:f4:91:b4:c8:a3:34:26:2b:
d2:fe:00:ac:6e:c4:1f:f8:ea:aa:c9:62:14:ac:4b:be:a7:ff:
86:e0:ba:f8:3c:d4:f8:d3:86:e9:72:a2:f6:4d:d1:48:b5:03:
f1:b0:09:e6:82:48:a6:69:0d:19:0b:f4:14:1a:e1:c2:21:94:
f8:74:e9:8c:dc:50:90:60:16:13:b3:c7:fd:27:2e:88:d4:98:
56:88:b8:ee:1f:d9:9f:f4:a9:29:91:26:79:2c:a1:68:a8:c3:
d6:2d:7d:09:46:27:b0:04:80:7b:43:c5:db:2e:90:1b:d7:62:
87:b2:f6:a1:d7:6f:26:57:46:03:ba:b9:f8:14:1f:25:3f:66:
92:8f:c2:db:cd:d5:47:f7:f6:9d:5a:e4:e5:60:49:10:6d:d9:
2d:bf:df:d0:6d:58:2b:0a:05:92:66:8e:76:58:07:4d:2f:c1:
c0:8b:ff:ff:d7:a4:85:fb:49:74:97:5e:18:a0:08:7b:62:ad:
a3:c5:65:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 24 13:01:39 2023 by rpki-client on console-fra.rpki-client.org