Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/abe772-b9fd-43b4-970a-60fc56497282/1/AaRG5kZHW7EI-ydeJxeq9tqj_kQ.roa
File: AaRG5kZHW7EI-ydeJxeq9tqj_kQ.roa (raw, json)
Hash identifier: rvG+ueTlrqBmnT0g761VzFi+EmZNPOwziLdKAf+pPfY=
Subject key identifier: 01:A4:46:E6:46:47:5B:B1:08:FB:27:5E:27:17:AA:F6:DA:A3:FE:44
Certificate issuer: /CN=4c47d6791c0ee8bd9a3beb0cf05de56fbb5543b9
Certificate serial: 0211D8C2
Authority key identifier: 4C:47:D6:79:1C:0E:E8:BD:9A:3B:EB:0C:F0:5D:E5:6F:BB:55:43:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TEfWeRwO6L2aO-sM8F3lb7tVQ7k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/abe772-b9fd-43b4-970a-60fc56497282/1/AaRG5kZHW7EI-ydeJxeq9tqj_kQ.roa
Signing time: Sat 01 Jan 2022 12:54:17 +0000
ROA not before: Sat 01 Jan 2022 12:54:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 63023
IP address blocks: 2a10:eac0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34724034 (0x211d8c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c47d6791c0ee8bd9a3beb0cf05de56fbb5543b9
Validity
Not Before: Jan 1 12:54:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=01a446e646475bb108fb275e2717aaf6daa3fe44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:f1:df:e3:a5:1f:6e:ec:3f:e4:a4:ee:df:50:
e5:52:1b:51:d4:ad:3c:6d:23:75:44:86:5e:6c:50:
e0:a9:31:59:ad:cd:d9:ce:6f:01:ef:12:0a:4c:0e:
36:80:59:9b:9e:c2:df:9c:58:26:0b:89:cb:54:0d:
0d:01:d2:e5:a3:d3:f1:90:f0:97:bc:65:cb:5b:b2:
b8:be:e2:c3:ca:0c:83:11:6a:92:37:09:b4:d3:63:
fb:3c:e7:0c:56:7b:ed:a2:b9:37:92:18:1c:4d:4b:
37:91:2a:07:37:55:4e:3e:b2:1d:20:b1:20:5a:fc:
b1:e4:77:84:41:aa:cf:37:92:8f:25:f4:a8:ab:c2:
c9:2a:c6:e4:38:5f:1f:cb:eb:86:69:c5:60:44:f8:
0e:bc:9b:11:e4:7e:86:69:70:a7:7b:5c:d6:ca:03:
7e:89:21:7f:7d:dd:b3:4a:34:4d:58:b5:83:b8:69:
78:eb:f2:41:4e:9f:9d:d4:e7:a0:af:d5:09:2b:2c:
be:a4:67:dc:d0:b4:6a:6d:87:32:88:ab:a0:db:bf:
64:1b:a6:c4:5c:f6:18:88:f4:0d:d1:fb:4c:1a:8f:
8a:b8:1f:65:c6:9a:0e:11:b7:4f:e4:10:74:48:e2:
9e:24:90:14:fe:ea:48:1c:85:d1:7f:69:4c:9c:d4:
0e:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:A4:46:E6:46:47:5B:B1:08:FB:27:5E:27:17:AA:F6:DA:A3:FE:44
X509v3 Authority Key Identifier:
keyid:4C:47:D6:79:1C:0E:E8:BD:9A:3B:EB:0C:F0:5D:E5:6F:BB:55:43:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TEfWeRwO6L2aO-sM8F3lb7tVQ7k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/abe772-b9fd-43b4-970a-60fc56497282/1/AaRG5kZHW7EI-ydeJxeq9tqj_kQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/abe772-b9fd-43b4-970a-60fc56497282/1/TEfWeRwO6L2aO-sM8F3lb7tVQ7k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:eac0::/29
Signature Algorithm: sha256WithRSAEncryption
38:b4:e6:b0:9f:54:59:82:f1:b3:fd:88:e7:bb:4b:e1:70:ba:
7c:1f:ab:66:c3:77:18:87:a6:70:5f:d5:f7:5c:74:d0:17:5e:
89:7e:c1:4a:ec:a7:2e:88:ba:cb:5a:b2:ab:b2:53:91:63:54:
1d:38:02:0b:ab:3b:96:93:90:4b:71:3f:5a:44:41:e7:49:78:
62:d9:55:88:59:6b:df:00:5a:9e:8d:ef:6e:5d:c4:cd:0b:d7:
bd:f0:42:81:97:35:a3:90:8d:12:dd:99:81:ed:33:fa:af:de:
b7:ef:cc:5e:ad:5b:57:7e:03:87:6e:5c:16:a0:3e:c2:c1:e2:
ec:b9:1b:70:c8:67:b0:99:39:5b:0e:a7:55:d6:48:a7:b2:3d:
a5:cd:31:5a:24:5f:4b:b0:3c:81:44:a4:28:70:69:f8:0a:8e:
52:41:67:8c:c3:98:c3:11:bc:5e:4c:8b:69:c5:e1:9f:c4:ad:
b4:1f:72:a1:62:90:53:d7:6c:64:52:c1:d5:c9:09:a7:41:2e:
51:b0:16:d3:34:33:1b:87:a7:f9:7f:0e:89:1d:be:be:4a:bf:
8a:31:d8:1a:c4:fc:d6:1f:55:fd:79:b0:14:a1:0a:29:74:62:
83:9e:ef:3c:e9:b9:b0:47:9a:6f:81:0c:87:4d:1d:8c:dc:cb:
69:87:1b:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:16 2024 by rpki-client on console-fra.rpki-client.org