Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/45abde-5b44-471a-93d9-5345f7e74083/1/iIWNQLDKAnvtoFOMNqF46hEvBg8.roa
File: iIWNQLDKAnvtoFOMNqF46hEvBg8.roa (raw, json)
Hash identifier: YAr3BXPWYUOR+huAVkvN8z2d3R3fIcP9LAcSE9NeQpk=
Subject key identifier: 88:85:8D:40:B0:CA:02:7B:ED:A0:53:8C:36:A1:78:EA:11:2F:06:0F
Certificate issuer: /CN=77c8d8bbf05797a75a49c5d70f5971ecdec6dd93
Certificate serial: 01856D4ADA1F09BE750C85A16A7D7F2E79CD
Authority key identifier: 77:C8:D8:BB:F0:57:97:A7:5A:49:C5:D7:0F:59:71:EC:DE:C6:DD:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d8jYu_BXl6daScXXD1lx7N7G3ZM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/45abde-5b44-471a-93d9-5345f7e74083/1/iIWNQLDKAnvtoFOMNqF46hEvBg8.roa
Signing time: Sun 01 Jan 2023 12:24:59 +0000
ROA not before: Sun 01 Jan 2023 12:24:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202313
IP address blocks: 2a0d:1a40:fa0::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:4a:da:1f:09:be:75:0c:85:a1:6a:7d:7f:2e:79:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77c8d8bbf05797a75a49c5d70f5971ecdec6dd93
Validity
Not Before: Jan 1 12:24:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=88858d40b0ca027beda0538c36a178ea112f060f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:1c:ea:1b:0a:fb:f0:bf:2e:a7:a0:11:12:52:
8f:ce:b6:51:b0:94:20:4c:8b:3d:70:77:1b:66:fb:
a8:0a:0f:0d:9e:3e:59:5d:8b:31:69:b9:17:40:0d:
d3:99:9a:0d:9e:1e:6d:a6:82:e0:5f:62:b3:bc:28:
62:c8:0b:31:c5:3a:6d:c9:d8:41:6e:7b:85:71:78:
2c:19:4e:91:bc:bc:58:a5:bc:99:77:a9:fa:7b:06:
bc:34:39:35:6b:4b:bb:b8:c1:e3:a7:19:d7:be:d9:
8c:c4:c3:49:02:8e:87:5c:7a:ad:bb:7c:b5:22:97:
cf:24:98:e6:77:ee:65:2e:9e:26:aa:14:5e:45:43:
d8:c4:90:d5:16:40:62:b7:5f:d0:73:5c:9a:57:2b:
78:d1:04:96:03:6e:1a:49:ea:eb:61:77:5b:e2:62:
ed:89:52:a5:1c:59:62:2c:44:0a:30:7c:ba:8a:e9:
b2:5a:37:2f:9e:92:7a:05:01:e0:c2:fd:08:38:e1:
25:f6:f2:45:5f:15:8c:da:a2:a2:69:cd:67:d9:f8:
ca:3b:b1:f7:a8:d9:00:95:9a:45:65:e0:54:1b:ab:
e3:95:f4:0e:2f:12:85:73:8f:33:0b:d4:04:2d:59:
60:90:e1:d0:d3:df:7d:d0:ff:05:a0:9b:af:c0:1f:
57:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:85:8D:40:B0:CA:02:7B:ED:A0:53:8C:36:A1:78:EA:11:2F:06:0F
X509v3 Authority Key Identifier:
keyid:77:C8:D8:BB:F0:57:97:A7:5A:49:C5:D7:0F:59:71:EC:DE:C6:DD:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8jYu_BXl6daScXXD1lx7N7G3ZM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/45abde-5b44-471a-93d9-5345f7e74083/1/iIWNQLDKAnvtoFOMNqF46hEvBg8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/45abde-5b44-471a-93d9-5345f7e74083/1/d8jYu_BXl6daScXXD1lx7N7G3ZM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:1a40:fa0::/44
Signature Algorithm: sha256WithRSAEncryption
98:33:10:06:6f:ea:9f:5a:47:2c:eb:35:42:85:80:20:6d:6f:
62:b4:f3:23:e4:8e:fc:eb:97:13:f3:74:c4:f1:89:e3:91:46:
f8:fa:7f:81:e2:78:40:37:50:86:24:e5:2b:de:f0:9e:08:15:
4c:9e:d4:1c:61:ac:1a:83:d5:ef:d7:3a:44:69:e0:84:40:a5:
75:8b:b5:72:eb:5c:51:d3:47:99:bc:fc:e6:e8:b2:cb:73:88:
20:d1:92:54:5b:a8:3b:34:42:b4:6d:53:cd:60:a9:f9:c7:a6:
40:8c:e6:16:6c:fa:41:ec:ff:1b:75:e0:ed:e8:ff:e9:fb:43:
b7:94:b0:b0:6b:6e:31:65:41:37:1b:8a:32:fc:01:1f:26:08:
fb:55:7f:02:1b:c8:d7:29:91:af:70:c4:60:ee:52:56:82:84:
b1:11:35:db:64:49:55:f0:17:a7:2c:d4:bc:d2:63:9a:b4:68:
09:0d:9d:35:59:8b:5f:8c:87:e1:38:9c:48:e6:d4:e2:d1:c4:
14:c3:3f:7e:4f:2d:ea:4e:6e:4f:18:33:52:84:59:b0:91:c2:
41:82:83:78:65:83:18:65:92:36:01:fe:50:45:94:0d:62:30:
e3:ca:ee:b3:5f:d6:5a:a9:cb:21:8e:59:e3:1c:01:8e:fd:0d:
d7:0e:f1:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:24 2024 by rpki-client on console-ams.rpki-client.org