Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/40b689-3658-4f63-8921-be18563ca50e/1/mHJ0Wi8p7W-dzkkiBfFdJ0Lt-vg.roa
File: mHJ0Wi8p7W-dzkkiBfFdJ0Lt-vg.roa (raw, json)
Hash identifier: +89q3Wjwi9X80YYGem1fIaV9myFfRDAUsrYT5ZzHNak=
Subject key identifier: 98:72:74:5A:2F:29:ED:6F:9D:CE:49:22:05:F1:5D:27:42:ED:FA:F8
Certificate issuer: /CN=f45d87c133103f3ceaeb87e3a29e8e51da7b961f
Certificate serial: 018572A7EA0A9B8201FAF84750C4B269A13F
Authority key identifier: F4:5D:87:C1:33:10:3F:3C:EA:EB:87:E3:A2:9E:8E:51:DA:7B:96:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9F2HwTMQPzzq64fjop6OUdp7lh8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/40b689-3658-4f63-8921-be18563ca50e/1/mHJ0Wi8p7W-dzkkiBfFdJ0Lt-vg.roa
Signing time: Mon 02 Jan 2023 13:24:45 +0000
ROA not before: Mon 02 Jan 2023 13:24:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 2a0e:a780::/29 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:a7:ea:0a:9b:82:01:fa:f8:47:50:c4:b2:69:a1:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f45d87c133103f3ceaeb87e3a29e8e51da7b961f
Validity
Not Before: Jan 2 13:24:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9872745a2f29ed6f9dce492205f15d2742edfaf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:7f:f8:e8:da:ac:19:1c:28:f5:89:0f:28:6f:
9c:ed:7a:7f:7d:bc:7a:af:17:da:9c:4d:76:b8:47:
53:e5:b8:2c:d3:c8:16:6d:6c:31:6b:1f:6a:95:2f:
38:e0:47:3d:a7:ea:5e:67:29:67:10:59:1b:03:3b:
f8:bb:ce:cb:17:a8:d9:13:40:58:dc:3b:f0:8b:ec:
ae:ec:8e:cb:f6:18:75:2d:54:06:29:de:3a:52:17:
16:bd:dc:10:ac:5b:cd:d0:52:b3:30:d0:70:c7:bb:
8e:d5:a3:b7:b0:77:cd:03:b6:d8:fe:45:1b:1b:6e:
88:c6:4c:cb:30:4f:bb:3d:8e:98:ab:dd:c2:1d:c5:
82:08:5d:08:2c:5e:47:6a:e6:2e:e3:1e:27:4d:03:
b2:f1:4d:2a:1d:01:73:52:ea:7a:73:93:c9:1b:ba:
19:4f:bf:b4:7f:e6:bf:1b:b7:2d:f1:94:83:90:8f:
33:81:a3:8c:84:de:7f:eb:db:9b:60:29:5f:f3:ce:
98:3a:bd:36:1d:45:a3:86:d3:56:e9:5d:81:25:05:
1c:f6:0a:c9:23:86:dc:4e:f4:66:de:77:eb:bf:8d:
e3:6c:10:be:00:f4:12:58:02:cc:86:ca:40:82:c5:
60:8d:be:cf:1a:9f:08:88:a6:e9:65:9d:60:1b:99:
d4:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:72:74:5A:2F:29:ED:6F:9D:CE:49:22:05:F1:5D:27:42:ED:FA:F8
X509v3 Authority Key Identifier:
keyid:F4:5D:87:C1:33:10:3F:3C:EA:EB:87:E3:A2:9E:8E:51:DA:7B:96:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9F2HwTMQPzzq64fjop6OUdp7lh8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/40b689-3658-4f63-8921-be18563ca50e/1/mHJ0Wi8p7W-dzkkiBfFdJ0Lt-vg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/40b689-3658-4f63-8921-be18563ca50e/1/9F2HwTMQPzzq64fjop6OUdp7lh8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:a780::/29
Signature Algorithm: sha256WithRSAEncryption
41:8d:36:ee:2f:46:52:3b:03:49:b3:f1:e3:a6:2c:1c:85:39:
ba:90:67:27:30:be:b2:69:87:8a:33:88:53:75:52:79:98:61:
11:14:19:8f:5f:0a:ef:9a:38:75:45:24:e9:5f:0f:b3:2e:a3:
c5:5e:26:74:db:a5:51:0a:01:4c:41:84:4d:09:40:79:a5:28:
f8:42:60:66:c4:44:51:76:93:47:31:d9:42:10:e6:5f:92:e4:
52:43:78:ce:db:d3:7b:8a:6c:06:e6:a8:ef:42:79:07:14:01:
cb:b2:e9:db:7e:f1:34:5a:4b:9c:6f:0c:1e:49:e0:05:0a:0c:
4d:fd:0a:04:c5:f7:d9:c1:2e:30:6b:5a:c7:18:7f:f1:5e:2f:
8d:9f:fa:29:1f:b4:bf:3b:28:d1:21:8b:8d:15:e0:c3:f4:83:
26:9a:a2:39:83:0b:42:ff:aa:52:11:f1:26:66:c2:e7:a3:0b:
7d:3f:0d:11:d9:4b:56:2a:d6:34:3d:07:58:e4:21:65:b9:0b:
2d:04:ec:d9:48:f9:35:b8:cf:b4:15:a8:ae:98:d9:d6:5a:fe:
9d:18:71:bf:69:ac:de:50:b6:b4:b5:33:e6:f6:3c:38:f0:a9:
97:b4:1d:be:4b:58:16:23:97:f3:22:fe:72:8e:ff:7f:04:00:
c5:9d:e1:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:59 2023 by rpki-client on console-ams.rpki-client.org