Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/a9e9a8-eabe-4cb0-b7ca-839dd1e5dd1a/1/2U5XIDX9Snl6TEACLyuDMZcMUfM.roa
File: 2U5XIDX9Snl6TEACLyuDMZcMUfM.roa (raw, json)
Hash identifier: 4wJH/N1ta98FMMf7VAr2Ulm/zcJbR8d/k9C5ekbwdsY=
Subject key identifier: D9:4E:57:20:35:FD:4A:79:7A:4C:40:02:2F:2B:83:31:97:0C:51:F3
Certificate issuer: /CN=a750097953aa14e77350776b62fc37be3f38f402
Certificate serial: 01870D818C7C4AD24A03535F6EEBB5AFBE75
Authority key identifier: A7:50:09:79:53:AA:14:E7:73:50:77:6B:62:FC:37:BE:3F:38:F4:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p1AJeVOqFOdzUHdrYvw3vj849AI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/a9e9a8-eabe-4cb0-b7ca-839dd1e5dd1a/1/2U5XIDX9Snl6TEACLyuDMZcMUfM.roa
Signing time: Thu 23 Mar 2023 08:06:46 +0000
ROA not before: Thu 23 Mar 2023 08:06:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25198
IP address blocks: 2a10:cbc0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:0d:81:8c:7c:4a:d2:4a:03:53:5f:6e:eb:b5:af:be:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a750097953aa14e77350776b62fc37be3f38f402
Validity
Not Before: Mar 23 08:06:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d94e572035fd4a797a4c40022f2b8331970c51f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:5b:77:3c:9b:26:85:01:bf:74:28:45:a7:0e:
75:cf:57:92:1d:db:21:10:fd:73:55:c8:8f:bf:ff:
32:da:5d:b9:a6:07:5e:f2:66:f2:de:20:08:ce:3e:
60:b0:5c:0b:9d:8e:0a:35:32:23:ca:5b:22:6f:29:
1f:9f:1c:3d:13:a9:f0:98:af:6f:14:d4:58:9d:73:
6b:d6:23:b2:46:82:9a:91:bb:4a:0e:22:2e:17:53:
83:44:65:86:55:f5:40:3e:3f:a4:70:47:c9:e4:38:
5a:fa:ce:1b:61:13:b3:04:25:00:de:6a:eb:02:16:
36:4a:b3:83:33:eb:31:84:ea:85:d2:11:9b:84:cd:
67:02:ed:09:7c:ae:fb:e1:3a:08:44:77:cc:9e:de:
ce:68:60:f6:69:6d:12:f0:6d:10:f6:2e:2e:33:e9:
6b:2c:96:de:9c:01:36:78:e0:96:9f:df:66:39:a3:
78:26:53:f3:02:6f:e0:32:7f:ad:93:d3:f8:3c:e9:
3b:de:2f:27:ea:b1:8c:cc:13:aa:e9:6b:3b:01:53:
b1:9a:ac:29:56:53:cf:1e:dd:fb:e6:6b:ef:be:41:
6b:80:13:a3:bf:b2:17:aa:35:67:18:7a:ed:a1:61:
a5:73:35:82:ce:e2:bc:68:bc:e4:45:45:00:5f:3d:
0c:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:4E:57:20:35:FD:4A:79:7A:4C:40:02:2F:2B:83:31:97:0C:51:F3
X509v3 Authority Key Identifier:
keyid:A7:50:09:79:53:AA:14:E7:73:50:77:6B:62:FC:37:BE:3F:38:F4:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p1AJeVOqFOdzUHdrYvw3vj849AI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/a9e9a8-eabe-4cb0-b7ca-839dd1e5dd1a/1/2U5XIDX9Snl6TEACLyuDMZcMUfM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/a9e9a8-eabe-4cb0-b7ca-839dd1e5dd1a/1/p1AJeVOqFOdzUHdrYvw3vj849AI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:cbc0::/29
Signature Algorithm: sha256WithRSAEncryption
08:2a:e4:5b:ad:75:62:f3:01:04:da:2b:40:76:0a:bd:7e:bd:
84:19:e9:49:92:54:c4:d9:c2:ff:77:5f:a7:6d:44:5c:11:c4:
19:fa:d4:ac:ff:da:74:d2:bf:67:13:fa:99:59:8b:1e:bf:37:
57:15:dc:2a:f0:a1:e6:27:f4:09:01:1c:25:79:d9:00:da:dd:
68:cf:d9:a7:20:eb:d4:e3:d0:5a:8c:d9:27:96:b2:5c:58:96:
5c:83:d2:99:67:47:14:7e:04:82:d2:15:00:24:bc:ae:f8:f5:
58:ce:db:a2:e5:1d:70:b0:74:37:ff:fa:f3:d8:64:4f:b0:98:
f8:89:eb:ab:b3:f0:b5:c8:e8:fc:61:ac:09:a4:35:1a:c0:93:
20:d4:6d:07:0c:80:0b:28:5c:67:bb:a6:57:85:5d:d2:ad:77:
4e:8a:ad:6d:1b:8d:ae:b3:f5:2c:9c:eb:0b:ec:5c:75:03:a2:
08:8d:db:12:43:96:9c:2a:f2:58:eb:6d:e0:bf:36:7b:43:7a:
e2:cd:58:9b:54:1a:a2:1d:8f:32:d7:5a:00:dc:48:c0:59:5d:
4c:ad:74:95:5e:e7:8c:0d:04:d4:32:b2:3c:61:6f:b1:cd:64:
25:f4:34:93:68:07:94:7e:da:d5:89:cc:de:f0:65:e4:55:d5:
67:7e:7f:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:27 2024 by rpki-client on console-ams.rpki-client.org