Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/d52ddd-92e1-4d26-a6a1-2161c065e1ec/1/DU6aTQLGToe4sPoUmJeuDzeYk-Q.roa
File: DU6aTQLGToe4sPoUmJeuDzeYk-Q.roa (raw, json)
Hash identifier: 3dJVaVwIy0RdHTC3tG84YTQdDmxLMM2q04jSlKK9mbA=
Subject key identifier: 0D:4E:9A:4D:02:C6:4E:87:B8:B0:FA:14:98:97:AE:0F:37:98:93:E4
Certificate issuer: /CN=b722c90639714bb6c6a7b0b123f0d0662c70d5c1
Certificate serial: 04E0D8FA
Authority key identifier: B7:22:C9:06:39:71:4B:B6:C6:A7:B0:B1:23:F0:D0:66:2C:70:D5:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tyLJBjlxS7bGp7CxI_DQZixw1cE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/d52ddd-92e1-4d26-a6a1-2161c065e1ec/1/DU6aTQLGToe4sPoUmJeuDzeYk-Q.roa
Signing time: Fri 18 Mar 2022 18:54:49 +0000
ROA not before: Fri 18 Mar 2022 18:54:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 40970
IP address blocks: 2a07:ba80::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81844474 (0x4e0d8fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b722c90639714bb6c6a7b0b123f0d0662c70d5c1
Validity
Not Before: Mar 18 18:54:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0d4e9a4d02c64e87b8b0fa149897ae0f379893e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:e9:5f:76:65:58:60:0a:02:0d:af:f0:5c:15:
6c:52:91:98:21:94:91:49:66:71:0c:e5:fb:a7:7f:
3b:e6:ad:92:d1:59:32:ce:7f:83:dc:63:c1:74:ea:
7c:b1:84:ae:91:39:9f:5c:93:0d:90:83:74:39:c1:
97:79:75:d4:0c:24:24:af:c7:a6:e0:fa:d1:e2:2b:
35:99:08:79:3a:26:36:d4:01:59:f3:f5:c9:18:2c:
d4:0c:9b:04:bc:8a:09:a7:0a:d6:73:df:7b:08:cb:
83:3d:72:b1:f6:43:34:3a:5e:7e:c8:be:d4:53:d7:
d1:cd:ba:38:69:6b:b1:b4:f7:77:1f:a7:bd:71:e9:
c7:6d:2d:56:95:49:72:eb:39:9d:d7:c9:38:b5:ec:
00:e5:4b:01:0f:57:b0:3b:b4:33:ca:01:08:82:be:
64:db:29:32:85:a7:41:31:10:a9:10:96:86:6a:50:
14:ad:aa:2e:29:1d:b3:46:79:a8:c9:85:04:f6:69:
28:04:4d:b8:ea:af:5a:0d:b5:74:c6:7a:a6:1a:b0:
a6:65:0e:3f:90:19:86:62:11:86:0d:0b:48:6d:c3:
6b:08:f5:71:90:de:31:53:8d:c4:99:ca:d5:4c:2f:
84:7e:2c:52:23:f1:0b:b4:d1:03:02:4e:a2:25:2c:
a0:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:4E:9A:4D:02:C6:4E:87:B8:B0:FA:14:98:97:AE:0F:37:98:93:E4
X509v3 Authority Key Identifier:
keyid:B7:22:C9:06:39:71:4B:B6:C6:A7:B0:B1:23:F0:D0:66:2C:70:D5:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tyLJBjlxS7bGp7CxI_DQZixw1cE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/d52ddd-92e1-4d26-a6a1-2161c065e1ec/1/DU6aTQLGToe4sPoUmJeuDzeYk-Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/d52ddd-92e1-4d26-a6a1-2161c065e1ec/1/tyLJBjlxS7bGp7CxI_DQZixw1cE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:ba80::/29
Signature Algorithm: sha256WithRSAEncryption
58:58:3f:50:92:13:29:ae:99:0f:97:33:98:97:cb:09:57:4a:
ae:cf:70:5c:a1:ed:fb:64:51:0c:8c:54:32:45:36:89:d0:1e:
71:38:da:74:04:2a:99:ab:b9:35:07:76:71:53:3d:2b:d7:6d:
08:9b:ea:66:66:0f:f0:eb:da:ac:8c:ea:6e:12:92:b0:3e:be:
ff:13:e9:b6:0f:1a:0e:6f:e5:90:a5:17:ca:8d:14:ca:8a:0a:
54:3d:34:7f:d9:09:ce:1f:a9:0a:09:b0:e8:51:ee:9a:cc:d2:
bb:f3:f2:22:0f:4e:2e:80:db:4c:36:b8:00:31:de:0d:6d:8e:
da:50:14:19:ed:39:df:78:92:1b:63:fa:97:00:03:de:d6:2f:
88:4a:35:9d:67:d3:ae:fc:33:b7:b8:22:fc:75:72:48:ee:37:
75:87:85:82:bf:c0:5f:a8:09:96:3f:83:49:c6:0e:ec:84:b4:
3b:a2:0a:72:03:ac:d9:db:25:e0:1a:2a:5e:5c:0d:02:c5:f6:
1e:1b:a8:cb:b6:4c:64:65:cd:5e:79:ff:1b:18:4c:2d:fe:fe:
5f:5b:c9:a1:0b:5c:f3:6e:81:a3:20:44:92:ca:77:29:bb:ca:
0a:af:d2:3a:58:c8:da:4d:ed:7d:f4:94:83:29:1c:23:0c:8e:
ef:84:f6:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:22 2024 by rpki-client on console-fra.rpki-client.org