Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/d107de-e2e5-4727-98ad-3821810344e6/1/lRCTVxuqjzW6VChocoafd78yWtE.roa
File: lRCTVxuqjzW6VChocoafd78yWtE.roa (raw, json)
Hash identifier: ZyYX4tyE5NPiY+hiZL/sx0eHc1gAVT1nP1Zp7WByqMc=
Subject key identifier: 95:10:93:57:1B:AA:8F:35:BA:54:28:68:72:86:9F:77:BF:32:5A:D1
Certificate issuer: /CN=5df53645843e6d2883dc8f9c4f415c1eadbbf60a
Certificate serial: 0185733142457594DF9CF69FFBD58BB505C7
Authority key identifier: 5D:F5:36:45:84:3E:6D:28:83:DC:8F:9C:4F:41:5C:1E:AD:BB:F6:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XfU2RYQ-bSiD3I-cT0FcHq279go.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/d107de-e2e5-4727-98ad-3821810344e6/1/lRCTVxuqjzW6VChocoafd78yWtE.roa
Signing time: Mon 02 Jan 2023 15:54:46 +0000
ROA not before: Mon 02 Jan 2023 15:54:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208768
IP address blocks: 2a10:4741:22::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:31:42:45:75:94:df:9c:f6:9f:fb:d5:8b:b5:05:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5df53645843e6d2883dc8f9c4f415c1eadbbf60a
Validity
Not Before: Jan 2 15:54:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=951093571baa8f35ba54286872869f77bf325ad1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:58:e1:ab:42:c9:08:d6:ec:9a:28:d4:53:af:
ec:f3:c2:89:c8:17:7c:a8:63:7a:f8:c3:54:45:92:
88:24:7d:8a:79:94:d2:8a:84:48:5a:19:fd:cc:ac:
b9:db:1d:22:19:fd:9a:53:09:e2:f7:c6:ab:d9:5b:
b2:a3:46:4f:7c:21:d9:da:49:08:63:f8:f2:0f:23:
3b:a8:29:2c:90:8b:4a:22:b8:91:c5:de:5f:24:cb:
b4:a1:32:97:95:9c:87:9c:6d:95:d8:90:b9:b0:cb:
1a:37:b1:a4:c9:14:ac:ba:fd:8f:04:05:e3:e5:a0:
60:44:02:ce:a2:8d:50:a4:43:b0:5a:f8:70:b4:88:
77:8d:83:5d:00:fd:86:30:b8:ff:ed:07:68:a9:95:
60:e4:25:d7:bc:e7:8f:56:34:bc:26:24:c2:52:ab:
23:f2:80:db:69:19:57:cb:6c:d3:11:dd:ee:35:c4:
a3:55:be:4f:f8:a0:f9:ab:0a:5a:23:6c:d1:11:c0:
fd:ea:32:a2:0b:07:e0:9d:17:ee:f6:53:ed:a1:d7:
a5:3c:f0:5e:a2:d1:64:72:ff:dc:b2:bd:2c:e9:b9:
11:ce:f3:eb:08:e8:9c:05:48:98:1c:e5:62:f5:68:
94:0b:35:d0:b0:91:d5:a1:15:28:40:92:05:4c:f4:
25:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:10:93:57:1B:AA:8F:35:BA:54:28:68:72:86:9F:77:BF:32:5A:D1
X509v3 Authority Key Identifier:
keyid:5D:F5:36:45:84:3E:6D:28:83:DC:8F:9C:4F:41:5C:1E:AD:BB:F6:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XfU2RYQ-bSiD3I-cT0FcHq279go.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/d107de-e2e5-4727-98ad-3821810344e6/1/lRCTVxuqjzW6VChocoafd78yWtE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/d107de-e2e5-4727-98ad-3821810344e6/1/XfU2RYQ-bSiD3I-cT0FcHq279go.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:4741:22::/48
Signature Algorithm: sha256WithRSAEncryption
3a:8f:3d:47:1c:d7:1d:05:3a:99:f4:d2:31:10:27:e2:9e:7f:
5d:58:82:12:b3:08:1c:ad:49:fb:32:c5:f0:0b:a3:ba:87:6f:
32:d8:dd:1f:a7:79:98:a1:7f:15:4a:2c:3a:8c:92:fe:66:82:
ab:b5:4c:e5:c9:00:7a:33:b8:21:44:cb:72:6c:cc:df:96:57:
5f:1b:6e:90:5e:32:27:61:a4:30:8b:c1:98:52:2e:44:af:8d:
8b:20:81:28:48:29:60:a3:ab:d5:f6:94:fc:08:48:68:e7:a7:
0b:5c:48:48:e8:81:3d:2c:68:19:0a:b9:34:06:0d:9f:59:85:
23:54:8a:81:6c:a7:09:12:bb:d4:b7:5d:66:23:58:97:42:98:
ef:f5:aa:ff:85:ab:f4:91:21:8a:89:f0:f7:59:a2:69:81:18:
60:eb:8d:a4:b4:1f:e6:19:c0:4b:f1:23:fc:9b:e1:bc:1a:79:
b1:29:a2:3e:f9:ad:3a:47:c7:4d:2a:44:67:2f:17:db:9f:fb:
87:3f:dd:2f:a5:fc:59:43:4e:a4:7c:b5:1d:30:82:da:3c:4b:
81:d6:68:ab:b0:a1:ac:bf:2a:f8:bf:b9:7c:94:f2:d4:df:1d:
f2:8d:f2:ef:05:81:4a:bf:2c:a7:18:18:4c:19:1d:62:0c:dc:
3e:76:61:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 24 13:01:39 2023 by rpki-client on console-fra.rpki-client.org