Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/5f063f-100d-4310-a046-3f6568b59589/1/cyCGw5uFhbuq2xvWJXyAY8E88bw.roa
File: cyCGw5uFhbuq2xvWJXyAY8E88bw.roa (raw, json)
Hash identifier: D/0chXsKgGymmWy/HqaXmtPXwUQz6tnQv82PazyZsrk=
Subject key identifier: 73:20:86:C3:9B:85:85:BB:AA:DB:1B:D6:25:7C:80:63:C1:3C:F1:BC
Certificate issuer: /CN=97ac47b51244ef49c52378aecd29c58cfb72089b
Certificate serial: 01857230F3FF522F2D7CE25A0A9A92768302
Authority key identifier: 97:AC:47:B5:12:44:EF:49:C5:23:78:AE:CD:29:C5:8C:FB:72:08:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l6xHtRJE70nFI3iuzSnFjPtyCJs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/5f063f-100d-4310-a046-3f6568b59589/1/cyCGw5uFhbuq2xvWJXyAY8E88bw.roa
Signing time: Mon 02 Jan 2023 11:14:48 +0000
ROA not before: Mon 02 Jan 2023 11:14:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207267
IP address blocks: 2a09:ca06::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:30:f3:ff:52:2f:2d:7c:e2:5a:0a:9a:92:76:83:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97ac47b51244ef49c52378aecd29c58cfb72089b
Validity
Not Before: Jan 2 11:14:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=732086c39b8585bbaadb1bd6257c8063c13cf1bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:5f:f3:b6:7d:ee:ef:be:1b:2a:43:1b:c5:74:
b7:35:7e:76:18:fe:cf:cc:a1:53:24:95:8f:6f:cf:
ea:c2:98:d0:d1:a0:03:1a:f7:3d:50:55:24:52:17:
fe:af:83:1b:a0:45:cd:13:d1:d4:3a:d0:6b:d6:62:
30:3e:90:39:82:fb:41:70:f4:ef:27:ab:f1:24:63:
a3:e6:f9:b4:31:08:d2:fa:ed:b6:dd:6d:7f:89:eb:
7f:a1:70:9e:30:b0:68:5a:6c:43:24:01:05:93:09:
d2:76:69:3b:80:3c:3d:e1:f8:38:82:b5:d5:2a:eb:
8b:6b:25:4d:c5:35:eb:3a:8e:5a:0d:7c:3d:ab:92:
78:51:d8:ff:f6:a6:13:35:41:ce:cb:76:7f:88:b8:
34:14:a4:c8:04:4f:8a:77:8f:aa:8e:c9:9f:b2:24:
f7:45:e6:ec:1a:1c:fd:8a:36:5e:1c:37:1a:c1:70:
ab:a5:f3:fa:10:01:c2:b7:3b:62:17:6f:29:82:e0:
84:4c:d2:b8:d8:12:ac:18:1b:1d:cb:31:c1:e3:83:
8e:1e:c3:85:fc:87:8b:c8:d9:9c:94:c7:21:5d:70:
48:a2:62:e6:b4:d6:07:99:90:fa:fe:f6:3b:ed:3d:
93:ba:bc:b8:ad:fc:53:e3:f9:e1:a6:a1:10:97:b8:
94:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:20:86:C3:9B:85:85:BB:AA:DB:1B:D6:25:7C:80:63:C1:3C:F1:BC
X509v3 Authority Key Identifier:
keyid:97:AC:47:B5:12:44:EF:49:C5:23:78:AE:CD:29:C5:8C:FB:72:08:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l6xHtRJE70nFI3iuzSnFjPtyCJs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/5f063f-100d-4310-a046-3f6568b59589/1/cyCGw5uFhbuq2xvWJXyAY8E88bw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/5f063f-100d-4310-a046-3f6568b59589/1/l6xHtRJE70nFI3iuzSnFjPtyCJs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:ca06::/44
Signature Algorithm: sha256WithRSAEncryption
78:ef:43:53:ce:7b:b5:66:98:e1:7f:7f:c4:52:c4:50:82:44:
fc:9d:ff:56:d7:8d:c1:f7:a0:bf:1a:02:35:47:78:38:f0:93:
74:a2:69:bd:bb:17:10:3d:46:0e:e8:0f:9b:4d:83:ab:fd:e2:
e6:86:b3:80:13:ad:a6:72:95:64:06:f3:05:ec:8a:93:53:e5:
e0:b5:23:f3:73:30:b0:87:e9:e5:4b:9f:e1:36:d5:04:9a:a2:
2a:95:f5:f6:6d:30:72:9c:56:3e:4d:fc:cd:99:ef:50:c6:d7:
97:fd:51:22:b7:53:b1:21:21:71:a2:24:03:46:35:48:f9:59:
0e:f9:3a:11:5b:00:4f:b7:1f:cd:2b:d8:c9:fd:26:c6:70:35:
cc:62:3a:fe:50:3e:8f:cd:08:01:70:9d:ab:38:93:17:91:3e:
92:3c:8c:fe:44:d5:5e:a4:95:be:a6:61:70:c7:a6:9e:4d:f0:
6f:d8:ff:22:d2:d8:8c:02:e4:4f:4d:cb:36:87:36:2b:04:1c:
5e:62:12:9a:8a:a3:88:2b:25:5f:ff:d7:eb:f7:bd:63:e9:76:
6a:1e:8f:6b:ea:c3:15:1f:9c:d7:b5:a1:bd:1d:c9:68:a1:98:
81:14:43:5f:bd:1c:b7:75:01:08:01:c1:44:41:24:ac:a8:ce:
43:4d:46:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:03 2024 by rpki-client on console-fra.rpki-client.org