Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/67d5c8-0233-4d21-bd74-f4cb2c05929f/1/ybmCGYrELBGOfShI5Uu-SFqWVAU.roa
File: ybmCGYrELBGOfShI5Uu-SFqWVAU.roa (raw, json)
Hash identifier: j5PkcMIv3qpJYbk7eRL7cSXO4aA5ig/wIkVDtFkIxhc=
Subject key identifier: C9:B9:82:19:8A:C4:2C:11:8E:7D:28:48:E5:4B:BE:48:5A:96:54:05
Certificate issuer: /CN=0de110c435d6e68631ca1f5b9b844ac7aa275720
Certificate serial: 0185704BE16C77C68CCD98CF06E25A2F69BA
Authority key identifier: 0D:E1:10:C4:35:D6:E6:86:31:CA:1F:5B:9B:84:4A:C7:AA:27:57:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DeEQxDXW5oYxyh9bm4RKx6onVyA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/67d5c8-0233-4d21-bd74-f4cb2c05929f/1/ybmCGYrELBGOfShI5Uu-SFqWVAU.roa
Signing time: Mon 02 Jan 2023 02:24:59 +0000
ROA not before: Mon 02 Jan 2023 02:24:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204790
IP address blocks: 2a11:c300::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:4b:e1:6c:77:c6:8c:cd:98:cf:06:e2:5a:2f:69:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0de110c435d6e68631ca1f5b9b844ac7aa275720
Validity
Not Before: Jan 2 02:24:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c9b982198ac42c118e7d2848e54bbe485a965405
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:6a:8e:f8:f3:91:f7:44:2c:31:3b:f8:a2:70:
ff:f2:88:a9:25:86:df:a8:f8:ee:92:97:d7:5c:40:
6c:7d:01:ab:fc:a7:37:f0:74:11:b0:3f:d7:9c:83:
c6:7b:71:a1:65:ef:90:73:b5:ad:ac:78:59:d3:d9:
bb:15:16:bf:04:5a:b2:d1:59:cf:86:82:dc:db:36:
50:88:eb:ef:0e:7e:a8:a2:24:c5:9e:f7:78:17:c3:
05:3c:54:eb:07:04:4e:22:cf:3e:10:57:e5:21:51:
54:a5:fc:7b:ed:39:d6:2e:04:36:92:dc:39:95:a3:
7e:08:68:50:d1:a4:ae:a9:2e:60:44:ae:88:ee:6e:
68:df:31:7d:5b:5e:9f:12:77:31:4c:76:f1:8b:91:
29:3d:61:d8:90:02:76:c3:5f:39:0e:ec:97:55:fd:
94:31:04:a3:a1:65:0b:70:31:01:df:41:df:78:ce:
ec:8d:f3:12:72:1f:6a:5e:f9:ed:f3:51:54:6e:dd:
06:b1:68:0e:ad:99:be:0a:74:a1:80:13:75:7d:b2:
95:4f:03:63:fe:e5:2a:52:0a:72:72:b0:b4:8b:5e:
41:8f:73:08:c4:59:24:0a:f0:9e:87:78:3d:cf:83:
44:39:7a:2c:3c:08:e1:a6:5e:1d:87:0b:47:19:93:
6f:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:B9:82:19:8A:C4:2C:11:8E:7D:28:48:E5:4B:BE:48:5A:96:54:05
X509v3 Authority Key Identifier:
keyid:0D:E1:10:C4:35:D6:E6:86:31:CA:1F:5B:9B:84:4A:C7:AA:27:57:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DeEQxDXW5oYxyh9bm4RKx6onVyA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/67d5c8-0233-4d21-bd74-f4cb2c05929f/1/ybmCGYrELBGOfShI5Uu-SFqWVAU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/67d5c8-0233-4d21-bd74-f4cb2c05929f/1/DeEQxDXW5oYxyh9bm4RKx6onVyA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:c300::/29
Signature Algorithm: sha256WithRSAEncryption
60:fc:ce:60:4d:16:d8:cf:ee:3d:06:09:8f:8b:82:20:92:37:
ff:0e:4a:30:9a:54:1b:ab:0c:b0:9e:7b:94:d7:a7:b5:c8:b5:
e4:a8:4f:3b:61:16:6c:bd:e4:34:42:b6:f0:b0:5a:9f:78:64:
64:6c:6c:57:85:b3:d8:0a:a5:c6:27:ae:d7:a2:24:8b:7f:02:
7d:f1:6f:b8:f7:4b:50:f8:05:04:7e:b0:c0:4b:2f:f6:20:81:
96:27:91:ea:40:3c:f7:66:7e:55:c4:f0:87:25:26:30:25:8e:
3c:8a:d7:3f:2e:a1:0c:8a:98:55:fd:4a:d6:c4:28:36:95:f3:
dc:68:ed:7c:e4:aa:2a:a8:1e:a6:1b:75:9e:9c:bf:ac:bb:d2:
9f:da:81:b7:a9:1c:0e:f2:79:b4:7c:4c:bc:5a:d7:b0:68:92:
e4:bd:01:9f:97:60:90:fe:e3:91:43:aa:6f:ce:ff:0a:46:40:
3a:b8:5e:de:c9:e2:e9:ff:95:7d:b5:31:53:cf:c1:fb:9f:39:
66:dd:6a:77:f3:71:85:e3:04:3f:48:4c:3d:d5:06:0c:07:f1:
c8:82:65:92:d0:fd:dc:52:05:e1:0a:17:59:b0:9b:fd:28:e3:
e8:e3:11:8d:62:70:16:d1:c1:72:3f:d2:86:32:bf:96:55:21:
20:c9:47:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:28 2024 by rpki-client on console-fra.rpki-client.org