Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/4550ec-16a0-4e42-9794-2f351739ad15/1/sVq6NCtHmZwwuvP_-aLaxY_w8UE.roa
File: sVq6NCtHmZwwuvP_-aLaxY_w8UE.roa (raw, json)
Hash identifier: QT3abBjWsrU0xMda/8j+FSUIOW5IhfVUf03T8mJSH40=
Subject key identifier: B1:5A:BA:34:2B:47:99:9C:30:BA:F3:FF:F9:A2:DA:C5:8F:F0:F1:41
Certificate issuer: /CN=07e444d42853df4a8be332908ee18dcdcf3b7109
Certificate serial: 018705F1D5DEBA4D4A7C04ED2A5294B5FCDD
Authority key identifier: 07:E4:44:D4:28:53:DF:4A:8B:E3:32:90:8E:E1:8D:CD:CF:3B:71:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B-RE1ChT30qL4zKQjuGNzc87cQk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/4550ec-16a0-4e42-9794-2f351739ad15/1/sVq6NCtHmZwwuvP_-aLaxY_w8UE.roa
Signing time: Tue 21 Mar 2023 20:52:27 +0000
ROA not before: Tue 21 Mar 2023 20:52:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52000
IP address blocks: 2a11:7e02::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:05:f1:d5:de:ba:4d:4a:7c:04:ed:2a:52:94:b5:fc:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07e444d42853df4a8be332908ee18dcdcf3b7109
Validity
Not Before: Mar 21 20:52:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b15aba342b47999c30baf3fff9a2dac58ff0f141
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:28:72:8f:01:dc:c5:78:a6:80:93:9a:5f:74:
b3:fb:d8:50:33:df:73:41:86:56:2b:d6:f3:9c:a9:
17:b9:ea:08:df:4a:4a:46:8b:b7:0b:25:d7:a7:6a:
cd:35:83:e2:9e:24:7f:f3:74:f1:1c:8d:ce:fb:80:
f9:fe:e4:0a:9b:37:69:e2:5c:24:e3:df:eb:47:34:
5e:6b:cf:ee:bf:f1:4c:73:90:06:d7:0c:8b:3e:50:
94:db:d4:03:71:e0:f0:00:38:10:a4:1b:6f:cd:f2:
c0:a1:d4:0f:55:e2:f0:aa:d2:3d:ae:2a:80:e2:51:
ca:ec:dc:63:58:e6:af:5e:84:ec:c8:b8:0c:29:1d:
92:0d:e0:d9:7b:da:44:0b:b0:2b:ce:57:fc:28:de:
7e:b0:b9:a7:e3:bf:fd:10:3d:52:e0:c8:95:11:b1:
c0:53:60:2b:74:12:c8:d0:cf:ad:7e:20:2f:d3:5e:
38:7e:bb:52:56:bc:e1:58:3f:a2:98:f1:ae:b0:fd:
bb:d9:9d:08:56:13:ae:2e:fd:44:50:c9:58:ff:1c:
04:43:27:e6:55:20:2b:7b:d5:d2:57:fa:90:ba:25:
42:0c:20:f9:51:21:a1:30:8e:26:bc:55:02:f2:73:
4f:c2:38:0e:59:f2:31:cb:7a:8c:b8:e5:aa:77:fc:
78:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:5A:BA:34:2B:47:99:9C:30:BA:F3:FF:F9:A2:DA:C5:8F:F0:F1:41
X509v3 Authority Key Identifier:
keyid:07:E4:44:D4:28:53:DF:4A:8B:E3:32:90:8E:E1:8D:CD:CF:3B:71:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B-RE1ChT30qL4zKQjuGNzc87cQk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/4550ec-16a0-4e42-9794-2f351739ad15/1/sVq6NCtHmZwwuvP_-aLaxY_w8UE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/4550ec-16a0-4e42-9794-2f351739ad15/1/B-RE1ChT30qL4zKQjuGNzc87cQk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:7e02::/32
Signature Algorithm: sha256WithRSAEncryption
13:1a:53:13:41:ae:62:19:3f:80:87:10:90:65:4d:aa:c7:2a:
fe:95:0e:4b:ee:31:50:4f:35:f6:52:40:75:b2:46:09:d9:72:
19:c4:4e:85:2f:93:f8:1d:bb:4a:17:a0:94:a2:4f:20:c4:7f:
64:50:ae:29:7e:53:4a:1e:24:fc:61:b9:d5:c4:03:2c:8b:1f:
c4:7f:d4:62:b2:ae:a7:22:9e:42:f0:01:aa:00:2a:bb:a6:7d:
89:01:6d:b1:b2:90:54:52:2d:26:22:3a:4d:5c:52:72:ab:50:
b1:01:f9:70:1d:75:7e:69:0c:16:e4:53:f1:77:d4:b8:46:1b:
dd:e7:e9:0e:9b:35:8e:56:0f:4e:95:45:2d:00:cf:14:81:12:
77:ec:f8:44:ce:52:bc:06:86:8d:f9:e7:77:3d:1f:b5:af:49:
df:aa:63:6a:a1:29:8d:7d:bc:6c:49:0b:44:4f:65:c9:fe:1e:
c0:55:b5:44:14:2f:4f:44:0d:d4:9c:f6:73:fa:32:d0:52:cd:
92:2a:e2:9c:f9:f9:25:84:27:02:11:d1:23:3c:bf:2e:0e:33:
b6:f7:f2:5e:be:97:a7:c4:0a:72:75:83:46:b1:c2:09:1e:59:
fd:f4:cc:1b:bf:8d:bd:3c:60:f6:c8:c2:0c:73:bb:b8:a8:94:
68:65:4a:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 7 14:19:32 2023 by rpki-client on console-fra.rpki-client.org