Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/b47958-03d3-4201-8db8-ebfa5313b3f2/1/Pn2u-cr7qtMwkAX4dT4jP0G0sns.roa
File: Pn2u-cr7qtMwkAX4dT4jP0G0sns.roa (raw, json)
Hash identifier: vXhp+q0Ll8j3bcPATMC+TtmogcksHmYL6nR9HU2j/wg=
Subject key identifier: 3E:7D:AE:F9:CA:FB:AA:D3:30:90:05:F8:75:3E:23:3F:41:B4:B2:7B
Certificate issuer: /CN=6ef0a587acb330625e21158ec40b710af0e2167a
Certificate serial: 07DE3D59
Authority key identifier: 6E:F0:A5:87:AC:B3:30:62:5E:21:15:8E:C4:0B:71:0A:F0:E2:16:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bvClh6yzMGJeIRWOxAtxCvDiFno.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/b47958-03d3-4201-8db8-ebfa5313b3f2/1/Pn2u-cr7qtMwkAX4dT4jP0G0sns.roa
Signing time: Tue 15 Feb 2022 13:20:39 +0000
ROA not before: Tue 15 Feb 2022 13:20:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 396356
IP address blocks: 2a10:a9c0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132005209 (0x7de3d59)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ef0a587acb330625e21158ec40b710af0e2167a
Validity
Not Before: Feb 15 13:20:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3e7daef9cafbaad3309005f8753e233f41b4b27b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:6c:4e:04:39:df:45:f7:30:1d:fa:91:c2:f0:
7b:d4:96:4d:f6:4b:12:5a:28:f4:3c:49:43:42:ca:
31:e7:18:8c:77:78:94:f2:2d:af:eb:b3:7b:02:73:
46:f0:f7:1d:26:cc:b6:f2:c9:ae:ab:ba:f8:33:8a:
3a:a7:aa:1f:a0:66:a2:c2:94:1f:35:4d:d8:11:7b:
1c:38:71:5a:5f:64:3f:f6:ee:b6:11:94:30:56:c9:
df:ba:1e:07:6d:31:2f:80:a6:d3:99:d3:13:b4:83:
74:d5:bc:a0:7b:49:5e:8f:90:f6:47:e3:b2:f3:28:
81:37:a7:63:32:fa:13:1a:9b:16:c8:fb:28:b9:f0:
c4:85:03:d9:48:17:e1:fc:2a:6b:54:a1:8b:b2:33:
be:a5:91:01:7f:fc:dd:c4:1f:5b:ea:32:e3:b6:2d:
31:2f:e5:25:3d:d0:73:95:34:0b:da:bb:da:3e:aa:
4f:89:cc:db:d7:9b:47:96:7e:7d:a7:16:27:75:77:
d7:76:eb:eb:41:48:45:b0:0a:f7:42:4a:df:5d:38:
20:47:3a:98:98:9c:5a:d3:ba:9e:b0:bb:7e:7c:f9:
09:68:25:34:d0:6d:fa:1c:91:3f:4a:71:d8:b7:c8:
d7:22:c4:a1:1e:57:18:b0:7a:8f:9f:84:2e:c9:e4:
69:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:7D:AE:F9:CA:FB:AA:D3:30:90:05:F8:75:3E:23:3F:41:B4:B2:7B
X509v3 Authority Key Identifier:
keyid:6E:F0:A5:87:AC:B3:30:62:5E:21:15:8E:C4:0B:71:0A:F0:E2:16:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bvClh6yzMGJeIRWOxAtxCvDiFno.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/b47958-03d3-4201-8db8-ebfa5313b3f2/1/Pn2u-cr7qtMwkAX4dT4jP0G0sns.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/b47958-03d3-4201-8db8-ebfa5313b3f2/1/bvClh6yzMGJeIRWOxAtxCvDiFno.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:a9c0::/29
Signature Algorithm: sha256WithRSAEncryption
0b:2b:e3:dd:bb:49:fc:47:94:7e:17:bb:2e:6e:b9:96:0d:00:
a8:69:16:11:ae:1b:fe:61:76:0c:dd:e6:24:86:7a:9d:32:d1:
ad:c6:56:e7:fd:3e:15:67:39:ec:51:ca:53:f7:4f:17:b4:ca:
d7:32:7b:ac:07:6f:cb:9d:3e:0c:02:fb:93:1c:2c:c7:33:6e:
a2:90:bf:63:89:90:52:51:25:f4:91:1d:74:53:4b:1f:97:4c:
ca:1b:22:fd:19:a6:7d:a1:c4:d6:2a:c2:bb:60:f3:1a:74:eb:
0a:31:fd:0b:b7:82:f1:f5:f8:f3:19:b5:d2:f5:bb:b0:78:09:
da:fd:ad:14:01:a9:02:15:47:91:9d:77:4b:61:87:47:c8:2f:
94:ab:ff:59:19:76:bf:69:af:96:f7:81:a6:91:3c:31:0f:aa:
65:00:a9:ae:d0:29:d4:bb:b8:93:da:69:1a:90:aa:71:78:97:
95:ab:7a:82:5e:22:89:2b:43:67:9c:dd:5b:d8:e0:46:90:43:
99:82:10:16:ef:9b:48:f4:a0:c0:b2:02:05:c0:da:20:0c:e2:
e9:03:94:1d:ec:4e:f7:1b:04:03:59:bb:46:93:e9:2a:98:70:
c3:3f:8b:cd:d1:cd:06:47:0b:e3:bf:55:1b:53:ac:01:c0:70:
67:e0:d4:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:06 2024 by rpki-client on console-fra.rpki-client.org