Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/b5ea59-b5a9-4c48-ae02-1df65a07630f/1/hcbcAxUCi-Ju5haFzQa64A8M08Y.roa
File: hcbcAxUCi-Ju5haFzQa64A8M08Y.roa (raw, json)
Hash identifier: w6sKWc7Zra1vAWhazauPAfTSOL99qVQpLRSv96rYV3A=
Subject key identifier: 85:C6:DC:03:15:02:8B:E2:6E:E6:16:85:CD:06:BA:E0:0F:0C:D3:C6
Certificate issuer: /CN=e7eb26291b9e9ab5afc88ed76d3af81a907e5f9f
Certificate serial: 0185728CA40351DCCC3E8AD57D7280A400C6
Authority key identifier: E7:EB:26:29:1B:9E:9A:B5:AF:C8:8E:D7:6D:3A:F8:1A:90:7E:5F:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5-smKRuemrWvyI7XbTr4GpB-X58.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/b5ea59-b5a9-4c48-ae02-1df65a07630f/1/hcbcAxUCi-Ju5haFzQa64A8M08Y.roa
Signing time: Mon 02 Jan 2023 12:54:57 +0000
ROA not before: Mon 02 Jan 2023 12:54:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 22773
IP address blocks: 2a11:9c40::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:8c:a4:03:51:dc:cc:3e:8a:d5:7d:72:80:a4:00:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7eb26291b9e9ab5afc88ed76d3af81a907e5f9f
Validity
Not Before: Jan 2 12:54:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=85c6dc0315028be26ee61685cd06bae00f0cd3c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:f9:a5:9b:d1:f8:e5:30:84:cd:2f:f9:28:9f:
62:f3:98:de:c6:36:0e:af:54:58:bc:d6:ac:91:50:
f5:f2:1a:a0:cd:68:11:7f:d1:6a:81:4c:0e:1f:16:
00:9a:cd:80:1c:0d:a3:55:d8:f1:8c:c6:91:dd:b8:
dc:07:b6:d2:82:89:85:7b:c7:12:04:c0:67:e4:fb:
f2:2f:48:84:46:3e:fb:45:c7:40:80:76:21:ad:5a:
ec:43:66:8c:c3:d5:a8:9e:e2:2e:91:83:2e:47:71:
c3:82:0c:a4:22:eb:79:e7:37:6c:10:80:c7:96:e3:
07:02:69:64:dd:b1:15:7f:76:eb:de:d7:eb:cb:22:
6c:3f:d0:27:0e:fc:e4:14:fc:1b:07:4a:ec:25:5f:
db:3e:a1:f3:ba:b9:f8:06:0d:e0:16:ad:08:9a:b2:
f0:ac:d7:10:fc:d6:d9:ad:fa:aa:ab:ad:4a:55:03:
08:0a:4b:1e:fc:67:81:e8:56:81:42:6e:28:06:91:
20:3c:df:40:01:58:74:4c:df:4d:4f:09:72:64:80:
0c:2d:ec:81:38:af:65:5c:0e:03:12:76:b3:5a:08:
49:57:32:6e:e8:8f:75:cd:13:94:72:c4:35:e9:5d:
e4:17:7b:7d:db:65:1e:92:9b:0d:50:34:c7:1d:f1:
bb:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:C6:DC:03:15:02:8B:E2:6E:E6:16:85:CD:06:BA:E0:0F:0C:D3:C6
X509v3 Authority Key Identifier:
keyid:E7:EB:26:29:1B:9E:9A:B5:AF:C8:8E:D7:6D:3A:F8:1A:90:7E:5F:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5-smKRuemrWvyI7XbTr4GpB-X58.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/b5ea59-b5a9-4c48-ae02-1df65a07630f/1/hcbcAxUCi-Ju5haFzQa64A8M08Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/b5ea59-b5a9-4c48-ae02-1df65a07630f/1/5-smKRuemrWvyI7XbTr4GpB-X58.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:9c40::/29
Signature Algorithm: sha256WithRSAEncryption
aa:36:b9:e4:52:bc:27:8e:9b:fb:9c:8f:90:7d:0b:44:10:b1:
90:d6:9a:f1:51:ce:3a:20:e4:d7:52:38:ee:46:92:6b:6f:c3:
fd:ce:6d:3e:40:2b:22:ae:9a:6b:65:c5:b3:28:55:12:b5:18:
ca:8a:ad:de:18:6a:98:ab:4a:05:23:42:49:b5:fc:07:8e:56:
22:79:bb:1a:19:86:dd:aa:d2:7b:88:b6:4d:e8:3d:62:87:a2:
62:ca:74:2a:d8:59:53:23:e4:86:20:8d:dc:14:ee:b0:b5:bf:
ab:73:5f:81:4f:09:3b:6a:95:c4:b4:15:f4:04:07:70:13:21:
43:b9:66:d8:f1:5f:65:7e:d5:88:97:46:7c:31:97:2e:88:ee:
3d:44:f3:55:a4:32:92:05:23:84:c0:13:77:40:79:3c:ab:d5:
f6:38:7b:84:e0:27:1a:14:7c:5e:b9:d2:e6:c0:b9:c1:cb:3e:
d9:88:fe:1c:8a:8d:e4:88:ae:2b:d7:4f:4a:2e:4e:f8:4f:e5:
ec:cf:db:93:41:53:9f:0c:43:83:d5:46:2f:18:73:89:97:c2:
e4:e5:df:9d:0e:4f:e0:27:03:d4:61:62:35:ec:53:d1:79:f9:
5e:4f:12:90:02:a6:7f:91:d0:e5:6f:ff:ed:5a:91:9e:85:a0:
e5:d4:7b:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:37 2024 by rpki-client on console-fra.rpki-client.org