Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/307681-55ae-453a-83fd-1349c4922dd9/1/IpHQ8Nk2u2W4GuCfIjwVeWpD0OQ.roa
File: IpHQ8Nk2u2W4GuCfIjwVeWpD0OQ.roa (raw, json)
Hash identifier: STIGbcojFHfQaAHgQKC7R7NGu/R0bmUZdZkyytzhDr0=
Subject key identifier: 22:91:D0:F0:D9:36:BB:65:B8:1A:E0:9F:22:3C:15:79:6A:43:D0:E4
Certificate issuer: /CN=b0311619a6764dbf55b5c27f11506a3be2dfcbbd
Certificate serial: 083FEBDB
Authority key identifier: B0:31:16:19:A6:76:4D:BF:55:B5:C2:7F:11:50:6A:3B:E2:DF:CB:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sDEWGaZ2Tb9VtcJ_EVBqO-Lfy70.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/307681-55ae-453a-83fd-1349c4922dd9/1/IpHQ8Nk2u2W4GuCfIjwVeWpD0OQ.roa
Signing time: Sat 01 Jan 2022 11:57:41 +0000
ROA not before: Sat 01 Jan 2022 11:57:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56453
IP address blocks: 2a0d:7100:c::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138406875 (0x83febdb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0311619a6764dbf55b5c27f11506a3be2dfcbbd
Validity
Not Before: Jan 1 11:57:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2291d0f0d936bb65b81ae09f223c15796a43d0e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:96:1e:b2:bd:2a:23:44:0c:ba:28:45:bf:eb:
5d:0f:9d:5a:df:b1:17:7b:aa:b8:ac:96:05:ed:60:
c3:e4:93:1e:29:2b:29:1a:be:11:52:38:78:19:6d:
02:bd:9a:08:3f:e6:16:03:52:22:b0:f2:dc:19:c0:
b4:b1:3b:66:d2:1d:e2:a0:66:6a:f7:0e:64:95:76:
75:86:6f:47:9c:be:3a:e4:ea:2e:44:f1:76:86:ba:
e2:ad:64:66:68:2d:71:8d:67:53:3b:d9:3e:96:80:
69:d7:1f:d2:da:4a:ce:77:3a:5f:63:a9:5a:48:dc:
40:dd:30:89:e7:2b:4f:ce:a7:30:86:7c:65:88:e6:
7a:6f:15:5d:61:b8:e2:0b:bc:a8:e2:80:a9:96:9a:
df:e3:8e:1f:fd:51:1a:81:ac:29:36:50:d6:a4:90:
7b:bb:89:96:7d:3c:5c:72:39:d8:ff:c3:34:cb:ea:
09:8d:84:88:75:dc:54:e4:32:ba:e8:64:c8:3d:f9:
7c:d6:de:a8:c7:4e:c4:7b:62:72:d4:6b:0b:56:d4:
56:2b:62:98:86:92:a3:3f:68:ab:95:e8:fc:bb:05:
34:a2:cc:39:85:79:8b:d8:bc:f0:ea:4f:6b:8a:1f:
19:b6:7e:af:47:af:cb:4e:a0:d5:b6:63:fd:bc:79:
bf:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:91:D0:F0:D9:36:BB:65:B8:1A:E0:9F:22:3C:15:79:6A:43:D0:E4
X509v3 Authority Key Identifier:
keyid:B0:31:16:19:A6:76:4D:BF:55:B5:C2:7F:11:50:6A:3B:E2:DF:CB:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sDEWGaZ2Tb9VtcJ_EVBqO-Lfy70.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/307681-55ae-453a-83fd-1349c4922dd9/1/IpHQ8Nk2u2W4GuCfIjwVeWpD0OQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/307681-55ae-453a-83fd-1349c4922dd9/1/sDEWGaZ2Tb9VtcJ_EVBqO-Lfy70.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:7100:c::/48
Signature Algorithm: sha256WithRSAEncryption
92:0c:3c:a1:c7:68:83:10:0d:a7:a9:ba:07:ae:6e:34:a2:84:
76:62:5d:ac:1d:93:68:a4:ac:11:ec:3a:ec:cd:a9:ca:1d:24:
42:67:4b:23:91:54:49:3b:18:97:06:69:c8:33:38:31:c2:6a:
83:4a:e8:06:5a:98:61:21:13:f4:89:6b:4a:75:97:1c:26:92:
8e:cf:1d:a1:67:68:75:98:42:45:52:08:e4:bd:f1:da:9c:26:
37:74:ed:f3:be:1d:20:3e:9a:e3:94:32:40:6b:1a:77:72:86:
88:16:0b:10:c8:b8:7e:08:7d:11:f9:28:09:bc:28:d5:7a:ba:
60:98:24:04:52:16:45:c8:38:75:0d:eb:4b:cb:88:f3:ea:cf:
c7:e6:49:1d:97:ef:51:5d:8f:e2:ca:42:d0:af:ed:33:31:a8:
f7:5b:65:e4:4c:fc:bf:f6:40:6b:7b:b5:9a:26:d1:b0:bf:91:
88:7b:cf:03:92:02:6f:3e:4f:73:d7:42:58:9c:60:75:61:24:
8c:bb:9f:66:9a:df:d9:65:66:10:b6:2c:58:ff:4c:be:55:e0:
99:95:a5:f0:4c:62:9b:73:dc:53:44:1a:5c:f8:c5:1f:83:71:
81:22:a9:23:d4:40:79:ae:ef:6c:65:44:de:27:57:af:2c:4f:
0a:18:9e:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:34 2024 by rpki-client on console-fra.rpki-client.org