Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/7d00d1-aa30-46c4-af57-39bf891c19be/1/5tS9JqO5bJsTD5YqdDOngpmj0CI.roa
File: 5tS9JqO5bJsTD5YqdDOngpmj0CI.roa (raw, json)
Hash identifier: Sm9Rx0k5HJJ7O44Ootq+zN6Oz8QQD/F+cPM7IubdqeA=
Subject key identifier: E6:D4:BD:26:A3:B9:6C:9B:13:0F:96:2A:74:33:A7:82:99:A3:D0:22
Certificate issuer: /CN=aaa5b6ec96e7cb62488ed512dafc547e3e333461
Certificate serial: 01856BB7D3C6EE55DB6D4ADB6ED4493BE380
Authority key identifier: AA:A5:B6:EC:96:E7:CB:62:48:8E:D5:12:DA:FC:54:7E:3E:33:34:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qqW27Jbny2JIjtUS2vxUfj4zNGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/7d00d1-aa30-46c4-af57-39bf891c19be/1/5tS9JqO5bJsTD5YqdDOngpmj0CI.roa
Signing time: Sun 01 Jan 2023 05:04:47 +0000
ROA not before: Sun 01 Jan 2023 05:04:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48083
IP address blocks: 94.127.96.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:b7:d3:c6:ee:55:db:6d:4a:db:6e:d4:49:3b:e3:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aaa5b6ec96e7cb62488ed512dafc547e3e333461
Validity
Not Before: Jan 1 05:04:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e6d4bd26a3b96c9b130f962a7433a78299a3d022
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:c3:3f:b7:e5:9c:48:80:9b:24:8b:0f:ea:98:
9d:fd:0b:fb:83:8d:e0:5a:de:bb:1f:7e:e4:2d:73:
55:0e:d4:51:df:21:c0:58:50:b5:eb:cb:2b:13:3f:
b5:01:23:33:88:09:c0:6b:4d:16:8e:90:89:66:78:
9c:8a:d6:c8:41:ed:dd:77:4a:85:c4:e9:38:bb:89:
e7:d0:82:4f:96:3f:9e:55:f6:de:55:cc:33:00:33:
dc:18:d0:03:1f:49:bf:b1:e8:f6:ad:5e:d8:60:e4:
d5:db:3a:2e:f5:41:6c:e2:c2:17:d5:7e:f8:18:5c:
bd:29:cb:87:15:bc:4e:34:b4:65:1e:00:0e:68:cb:
80:19:e7:83:18:41:5c:1c:ae:70:a5:55:7d:ad:c9:
5c:4e:93:26:03:ac:a0:4c:75:a4:7f:5a:e1:83:fd:
0a:55:09:ac:e9:82:e6:8a:45:de:61:f6:95:95:e4:
bc:e3:9c:20:ab:6f:31:63:c4:89:33:09:83:1e:62:
8f:6f:81:c9:90:f0:b2:a9:29:b9:73:82:72:d4:7d:
fd:fd:e6:10:3b:01:29:e8:6c:ce:b4:3a:6e:50:a7:
34:9a:e0:f7:68:03:92:2d:e0:bc:79:e8:80:7e:d7:
f4:d5:82:4d:cc:20:6e:7c:d5:70:90:d2:4c:4c:20:
5e:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:D4:BD:26:A3:B9:6C:9B:13:0F:96:2A:74:33:A7:82:99:A3:D0:22
X509v3 Authority Key Identifier:
keyid:AA:A5:B6:EC:96:E7:CB:62:48:8E:D5:12:DA:FC:54:7E:3E:33:34:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qqW27Jbny2JIjtUS2vxUfj4zNGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/7d00d1-aa30-46c4-af57-39bf891c19be/1/5tS9JqO5bJsTD5YqdDOngpmj0CI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/7d00d1-aa30-46c4-af57-39bf891c19be/1/qqW27Jbny2JIjtUS2vxUfj4zNGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.127.96.0/21
Signature Algorithm: sha256WithRSAEncryption
26:7c:a4:30:ff:55:f8:cf:ef:b9:8d:a4:29:ad:48:69:cb:58:
72:98:98:11:49:85:fb:6d:9d:c8:15:58:c4:b6:e0:e4:c5:fa:
04:44:c1:d5:c7:95:07:f8:80:bb:f6:14:db:01:d7:a0:fe:54:
2e:9f:e0:3e:d8:9c:32:58:5e:6d:ca:38:5c:5a:ac:7f:6a:0c:
a7:bc:fb:7b:83:63:9a:96:0a:5f:ef:aa:81:48:fe:c4:b4:5e:
5c:b8:09:50:8c:00:81:91:dd:75:e3:ed:db:dc:b7:ba:9e:c6:
2f:72:c0:ec:72:f3:13:12:aa:f6:66:cb:6c:48:04:2d:be:03:
30:f3:63:7f:38:22:84:30:55:be:5c:0f:34:51:d9:12:03:c2:
e4:a8:98:52:e6:2f:a5:67:82:e2:85:3c:15:54:c1:76:64:a0:
83:28:85:f6:bb:00:f7:21:bc:30:80:9a:da:92:41:c5:c3:2f:
8d:52:2b:bc:c9:42:7c:57:ec:ec:48:01:d7:27:54:2c:2c:c1:
07:71:fc:51:f8:af:61:1a:33:cb:20:f1:e0:f3:ca:15:6c:35:
e1:18:9f:71:cf:ed:33:76:ab:42:05:3d:d3:c4:b9:15:1e:33:
d2:d4:52:60:96:91:5e:5c:03:c4:11:60:db:0f:82:63:2a:2e:
6d:eb:73:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:30 2024 by rpki-client on console-ams.rpki-client.org