Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/40b689-3658-4f63-8921-be18563ca50e/1/hW6YiQ4QK2EmNGyHGLYNog91v8k.roa
File: hW6YiQ4QK2EmNGyHGLYNog91v8k.roa (raw, json)
Hash identifier: Qr8Y19Y0cdtUUOQWZ1HT6x6MVmNQQx5PpgbPYCX84AI=
Subject key identifier: 85:6E:98:89:0E:10:2B:61:26:34:6C:87:18:B6:0D:A2:0F:75:BF:C9
Certificate issuer: /CN=f45d87c133103f3ceaeb87e3a29e8e51da7b961f
Certificate serial: 085283E3
Authority key identifier: F4:5D:87:C1:33:10:3F:3C:EA:EB:87:E3:A2:9E:8E:51:DA:7B:96:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9F2HwTMQPzzq64fjop6OUdp7lh8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/40b689-3658-4f63-8921-be18563ca50e/1/hW6YiQ4QK2EmNGyHGLYNog91v8k.roa
Signing time: Sat 01 Jan 2022 09:55:02 +0000
ROA not before: Sat 01 Jan 2022 09:55:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 2a0e:a780::/29 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139625443 (0x85283e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f45d87c133103f3ceaeb87e3a29e8e51da7b961f
Validity
Not Before: Jan 1 09:55:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=856e98890e102b6126346c8718b60da20f75bfc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:8a:4b:82:d0:0d:0b:7c:30:28:48:1d:44:ab:
ae:a1:7c:b5:9a:b8:4b:db:3e:a3:f4:d6:33:cd:80:
0b:ff:d8:4c:be:af:ee:0e:ca:7e:02:ad:72:65:ed:
00:58:32:c5:3d:53:4d:0c:69:83:2b:f7:f3:b5:0d:
fb:f6:81:9d:20:ba:39:72:73:0b:a8:3c:ab:aa:a9:
98:0b:31:d3:9d:df:9e:d8:cf:46:4b:a7:b5:3c:90:
c8:91:e3:a9:78:e9:0c:5b:89:40:20:68:ca:08:ad:
79:ba:16:11:0c:ac:c2:e1:34:b0:e4:43:75:7e:7b:
cd:ed:da:c4:9a:b7:24:04:30:38:42:22:2c:ad:f2:
20:a0:db:6a:88:76:f0:79:e8:a1:4f:3b:87:ab:7b:
56:72:35:33:93:14:40:6b:b0:d0:68:c7:e7:7c:54:
98:8b:56:9d:ce:28:12:3a:7d:f3:b2:86:32:f8:e6:
ba:57:a9:ca:20:bc:98:d0:f6:4a:6e:59:cb:f2:e2:
fb:e0:7f:87:47:bd:0a:47:11:6c:6b:24:d2:23:4e:
60:60:2d:56:66:63:e1:b0:dc:15:23:e6:49:d5:94:
78:b1:bb:11:24:a9:c4:e9:8e:69:5b:6c:5d:c2:e3:
0c:11:a4:63:92:08:16:0a:7e:6e:aa:f8:58:70:dd:
ec:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:6E:98:89:0E:10:2B:61:26:34:6C:87:18:B6:0D:A2:0F:75:BF:C9
X509v3 Authority Key Identifier:
keyid:F4:5D:87:C1:33:10:3F:3C:EA:EB:87:E3:A2:9E:8E:51:DA:7B:96:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9F2HwTMQPzzq64fjop6OUdp7lh8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/40b689-3658-4f63-8921-be18563ca50e/1/hW6YiQ4QK2EmNGyHGLYNog91v8k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/40b689-3658-4f63-8921-be18563ca50e/1/9F2HwTMQPzzq64fjop6OUdp7lh8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:a780::/29
Signature Algorithm: sha256WithRSAEncryption
9a:c0:fb:00:85:eb:71:03:6e:b6:2c:c2:ec:2c:2c:82:f9:e1:
b3:42:de:04:f0:cd:97:6f:bc:5f:92:74:22:12:27:11:68:03:
12:35:4b:3a:2a:f9:dd:d4:d1:1f:5c:0a:f7:23:e2:50:d7:6f:
2f:d2:a0:11:97:1d:00:44:e3:bb:5d:1c:94:b3:3e:3a:43:9e:
26:ef:e2:dc:b0:00:de:6a:b5:32:76:9f:37:c5:8b:27:ac:be:
29:8b:04:e0:07:a0:e2:d5:25:08:ea:d4:6d:b3:ea:b7:9b:ca:
7e:10:7e:a4:c2:db:61:5e:f9:aa:14:05:55:f2:f3:a8:51:1f:
58:ca:d1:73:62:48:4a:cd:89:e5:5e:e1:a5:85:e0:7e:09:d2:
ca:71:69:75:70:c8:44:6c:62:c7:e6:0d:48:aa:53:7a:63:a4:
17:01:1a:93:b8:e9:cc:14:5d:9b:93:f7:fe:1e:ee:30:6b:a9:
12:9f:97:d6:84:b1:4b:8c:08:ae:c6:4f:d2:cd:11:fa:81:60:
3b:52:6d:2b:84:c8:8b:ef:a6:ac:91:a2:c2:7a:6e:af:0c:c4:
3d:f0:24:1d:fb:4a:25:bc:1e:9d:d2:49:9c:60:8e:2a:37:30:
89:46:0f:6f:4c:e7:0a:a1:f8:93:c7:08:cf:4e:ae:bc:3a:bf:
a7:b0:a1:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:54 2024 by rpki-client on console-fra.rpki-client.org