Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/45abde-5b44-471a-93d9-5345f7e74083/1/oEGa2IUzESv0Wyth7bbkR-upKoQ.roa
File: oEGa2IUzESv0Wyth7bbkR-upKoQ.roa (raw, json)
Hash identifier: oiM2r6veFFTrJVXSKzg1OUPQk1UmHNeDQuGSJW1lan8=
Subject key identifier: A0:41:9A:D8:85:33:11:2B:F4:5B:2B:61:ED:B6:E4:47:EB:A9:2A:84
Certificate issuer: /CN=77c8d8bbf05797a75a49c5d70f5971ecdec6dd93
Certificate serial: 01856D4AE0AFF7427D63B4101106A1AB9007
Authority key identifier: 77:C8:D8:BB:F0:57:97:A7:5A:49:C5:D7:0F:59:71:EC:DE:C6:DD:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d8jYu_BXl6daScXXD1lx7N7G3ZM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/45abde-5b44-471a-93d9-5345f7e74083/1/oEGa2IUzESv0Wyth7bbkR-upKoQ.roa
Signing time: Sun 01 Jan 2023 12:25:01 +0000
ROA not before: Sun 01 Jan 2023 12:25:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210989
IP address blocks: 2a0d:1a40:7b00::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:4a:e0:af:f7:42:7d:63:b4:10:11:06:a1:ab:90:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77c8d8bbf05797a75a49c5d70f5971ecdec6dd93
Validity
Not Before: Jan 1 12:25:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a0419ad88533112bf45b2b61edb6e447eba92a84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:9f:9c:bd:f9:19:68:a5:08:32:88:23:e3:35:
47:a1:ab:d0:0c:1c:d3:f5:23:1b:8f:4d:da:45:bd:
24:b4:95:25:f5:08:83:26:12:11:9a:88:98:ca:93:
73:54:24:d9:e9:37:18:bc:00:0f:b9:e7:ff:d3:0b:
4a:1e:7e:0b:49:0f:6b:d1:e7:a7:db:f5:e5:75:82:
c4:9e:41:84:bc:42:41:3f:24:63:d7:0f:ce:c5:30:
c3:42:f7:fc:a8:78:8e:05:1f:15:0d:0c:e3:b2:4b:
79:93:90:8c:39:30:06:0b:37:fc:fe:5e:a3:7c:2b:
f9:a8:f1:c4:28:28:65:54:89:34:10:bf:7f:c4:78:
7d:f3:4f:38:85:e5:a8:a2:b4:b6:3d:06:32:75:0b:
8c:e6:48:a4:66:40:b0:e6:92:5d:4e:fb:83:d5:17:
27:a1:33:b7:4d:4a:56:ec:7c:89:fe:0a:cb:f6:b3:
1c:88:6a:83:93:a1:8f:10:99:9f:94:2d:61:fa:13:
0b:56:10:52:76:64:54:65:27:c7:04:ad:fd:2d:cd:
26:74:9c:04:73:96:41:8f:b4:ab:c9:ff:82:54:b6:
cd:a4:bf:14:38:32:70:36:eb:6a:77:2c:4d:4b:3c:
3c:dd:d8:9c:f2:de:b8:dd:59:5a:e5:d9:36:c2:be:
99:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:41:9A:D8:85:33:11:2B:F4:5B:2B:61:ED:B6:E4:47:EB:A9:2A:84
X509v3 Authority Key Identifier:
keyid:77:C8:D8:BB:F0:57:97:A7:5A:49:C5:D7:0F:59:71:EC:DE:C6:DD:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8jYu_BXl6daScXXD1lx7N7G3ZM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/45abde-5b44-471a-93d9-5345f7e74083/1/oEGa2IUzESv0Wyth7bbkR-upKoQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/45abde-5b44-471a-93d9-5345f7e74083/1/d8jYu_BXl6daScXXD1lx7N7G3ZM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:1a40:7b00::/44
Signature Algorithm: sha256WithRSAEncryption
09:99:18:cc:b2:1d:4a:63:0d:69:d0:32:28:bc:e7:f3:ef:29:
3a:31:0f:10:4f:d8:f9:4b:f0:6d:de:91:82:2f:ed:bb:61:bf:
58:86:f4:c3:08:ab:8a:ff:1c:b4:6f:a8:b2:fc:43:d0:17:fe:
ef:ef:32:4c:25:17:7b:64:d6:a4:26:13:62:5e:65:34:2c:49:
10:19:2c:e5:ca:cc:69:4c:6f:3e:2a:54:aa:a6:82:6e:d0:cf:
b9:07:b1:e3:7f:89:4a:fd:85:83:44:28:7b:f7:02:5a:58:89:
18:d9:c8:28:10:e2:db:b0:46:7c:b5:8b:7a:b9:4f:a9:a0:15:
c9:bf:4f:02:22:ec:e2:61:d2:03:4f:af:98:e9:78:a5:f5:ac:
10:de:f9:16:af:25:62:40:98:b8:f4:7a:53:de:f8:0f:66:7e:
e6:4a:b5:fa:a7:6a:1f:c1:b6:9a:b9:43:a9:62:cf:4a:15:9f:
d4:1b:04:b9:15:99:f2:e1:a2:af:09:8f:eb:84:b7:a7:cf:de:
ab:2f:67:93:59:a6:98:9d:61:8a:cd:ab:72:b7:fd:32:78:0c:
1e:99:d8:5a:fb:7c:df:be:cf:f6:d9:37:85:14:0e:ae:df:3b:
e5:7c:4b:23:a0:45:d4:fa:ea:cd:79:18:6c:cc:05:54:b1:93:
fd:9f:38:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:24 2024 by rpki-client on console-ams.rpki-client.org