Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/a9e9a8-eabe-4cb0-b7ca-839dd1e5dd1a/1/9Pjh7_VqAIhubYFvpMxTq1o4u3E.roa
File: 9Pjh7_VqAIhubYFvpMxTq1o4u3E.roa (raw, json)
Hash identifier: Hi+0H3h7hn0NWgfxZhzbTPCbU68G8lmw61QsOZl05DQ=
Subject key identifier: F4:F8:E1:EF:F5:6A:00:88:6E:6D:81:6F:A4:CC:53:AB:5A:38:BB:71
Certificate issuer: /CN=a750097953aa14e77350776b62fc37be3f38f402
Certificate serial: 0186210A4FAE3B8B4B60C03509A5AB347467
Authority key identifier: A7:50:09:79:53:AA:14:E7:73:50:77:6B:62:FC:37:BE:3F:38:F4:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p1AJeVOqFOdzUHdrYvw3vj849AI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/a9e9a8-eabe-4cb0-b7ca-839dd1e5dd1a/1/9Pjh7_VqAIhubYFvpMxTq1o4u3E.roa
Signing time: Sun 05 Feb 2023 10:06:09 +0000
ROA not before: Sun 05 Feb 2023 10:06:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208553
IP address blocks: 2a10:cbc0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:21:0a:4f:ae:3b:8b:4b:60:c0:35:09:a5:ab:34:74:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a750097953aa14e77350776b62fc37be3f38f402
Validity
Not Before: Feb 5 10:06:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f4f8e1eff56a00886e6d816fa4cc53ab5a38bb71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:f3:a2:b9:70:55:72:b7:ca:25:fb:95:ec:5f:
c5:87:62:ac:1e:99:51:38:4e:1f:dc:b7:08:70:ae:
d1:7b:8c:0e:2b:09:23:83:fb:f8:2c:7d:7b:0d:aa:
21:d6:ce:0e:87:a3:f4:99:be:f9:b5:97:43:fd:c8:
b8:1b:cf:4b:e7:d7:c7:73:d1:39:8a:4e:ce:68:40:
1f:75:60:39:07:fb:3c:92:59:af:8a:3c:78:8f:ae:
a0:28:e1:37:5a:7e:d4:a9:7a:5c:3f:95:03:09:12:
94:89:a1:17:19:ee:cc:36:1b:b6:3a:d0:3b:d9:fb:
34:0b:14:53:42:df:a7:05:9f:c7:78:21:53:41:c2:
cb:af:71:d4:fd:2d:f9:c7:f0:fe:8f:86:8e:06:a5:
f3:78:93:f0:1b:a9:90:88:1f:4b:0f:25:20:1c:89:
84:03:01:64:02:77:3d:21:95:02:f1:ff:de:1f:dd:
dc:50:56:a4:12:0a:78:4f:bd:84:1c:4f:a4:d2:31:
56:4d:7b:7a:14:5c:48:c4:8d:2e:67:00:70:3f:32:
fd:6f:de:c3:ca:a3:47:04:a8:c3:24:3f:dc:67:1d:
21:12:e9:50:ae:66:60:ea:b9:96:3c:87:27:23:e3:
bd:2b:cd:2f:df:d0:18:4a:b6:ff:3a:7f:4a:28:63:
e6:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:F8:E1:EF:F5:6A:00:88:6E:6D:81:6F:A4:CC:53:AB:5A:38:BB:71
X509v3 Authority Key Identifier:
keyid:A7:50:09:79:53:AA:14:E7:73:50:77:6B:62:FC:37:BE:3F:38:F4:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p1AJeVOqFOdzUHdrYvw3vj849AI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/a9e9a8-eabe-4cb0-b7ca-839dd1e5dd1a/1/9Pjh7_VqAIhubYFvpMxTq1o4u3E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/a9e9a8-eabe-4cb0-b7ca-839dd1e5dd1a/1/p1AJeVOqFOdzUHdrYvw3vj849AI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:cbc0::/29
Signature Algorithm: sha256WithRSAEncryption
4c:6c:11:63:6f:af:b7:09:b1:b3:eb:72:67:65:29:00:a2:95:
58:37:db:64:50:8b:9b:aa:34:95:4a:f4:8a:83:8f:33:c9:cd:
f8:7e:8e:fb:65:3e:f3:99:8f:e5:01:45:82:3a:35:08:87:f3:
5c:c9:32:f9:32:c1:5d:dd:a9:47:3d:3f:07:18:6e:08:8c:43:
ce:73:e7:f7:4f:eb:14:2c:39:94:4d:c5:6a:18:4f:79:6e:54:
43:a2:f1:02:48:3b:bd:06:8b:dd:38:f5:e0:58:a2:d3:9f:78:
6a:f5:87:09:3d:11:7e:4b:32:95:6a:07:8d:6e:c4:b1:53:06:
42:f5:a4:f9:39:10:3c:32:ff:41:4c:c3:94:b8:96:df:61:8e:
c8:5d:e0:9b:c5:f6:ec:33:bb:66:65:0d:b8:3e:99:3e:b1:cc:
7b:8f:95:17:91:7a:0e:1c:f5:67:0e:3f:60:45:af:12:e1:f7:
77:fd:54:72:e4:49:96:1e:3b:3c:81:25:19:1e:14:be:b0:7f:
3e:04:7b:e3:20:09:d2:af:95:29:e6:1c:47:05:7e:fe:64:15:
ea:f1:0c:9a:e0:a5:65:2e:84:8b:fb:f6:2c:73:e6:c4:47:d2:
26:aa:e1:f7:16:be:27:d6:b2:8e:e1:c6:e0:33:fc:44:6f:89:
df:e2:13:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:57 2024 by rpki-client on console-fra.rpki-client.org