Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/37fd7b-1303-404f-a588-cbb3cd9fedfe/1/69NiW93mBM02W9ZBGp8G3BwK0mc.roa
File: 69NiW93mBM02W9ZBGp8G3BwK0mc.roa (raw, json)
Hash identifier: c4uZLtVn5KQITFQ6xDrB3BM3hxoNv+xNEgah9a0Qm3Q=
Subject key identifier: EB:D3:62:5B:DD:E6:04:CD:36:5B:D6:41:1A:9F:06:DC:1C:0A:D2:67
Certificate issuer: /CN=bc55b1ca3724255d60a0a1ef295727df08e3b14c
Certificate serial: 018A711546D7247ACD47D25D0407BD79E392
Authority key identifier: BC:55:B1:CA:37:24:25:5D:60:A0:A1:EF:29:57:27:DF:08:E3:B1:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vFWxyjckJV1goKHvKVcn3wjjsUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/37fd7b-1303-404f-a588-cbb3cd9fedfe/1/69NiW93mBM02W9ZBGp8G3BwK0mc.roa
Signing time: Thu 07 Sep 2023 19:18:54 +0000
ROA not before: Thu 07 Sep 2023 19:18:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212144
IP address blocks: 2a0f:e3c0::/30 maxlen: 30
2a0f:89c0::/29 maxlen: 29
2a0f:e3c4::/31 maxlen: 31
2a07:f240::/30 maxlen: 32
2a0f:63c0::/29 maxlen: 29
2a0f:9bc0::/29 maxlen: 30
2a0b:a4c0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:71:15:46:d7:24:7a:cd:47:d2:5d:04:07:bd:79:e3:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc55b1ca3724255d60a0a1ef295727df08e3b14c
Validity
Not Before: Sep 7 19:18:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ebd3625bdde604cd365bd6411a9f06dc1c0ad267
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:d5:47:e9:8c:8e:00:5e:58:b9:70:3e:33:f2:
bb:1d:a8:d6:90:46:7b:e3:58:10:f7:2f:4c:eb:c5:
3d:45:50:1c:03:b9:c9:f5:ba:be:09:26:b0:8b:60:
19:b5:34:4a:a5:49:84:5c:fa:49:56:40:5a:68:a1:
fc:08:9c:9e:4c:b8:75:9f:49:0b:34:0a:85:29:db:
89:96:a2:65:ea:3e:f2:26:b1:65:05:c7:bf:fc:6d:
a6:eb:85:65:04:3a:ae:fd:c9:d3:c6:eb:4a:1c:4f:
23:8c:16:99:fd:97:61:00:6c:f7:63:5c:cf:3c:aa:
0b:ce:87:a7:e1:79:a1:5d:bd:51:37:8a:96:c7:fe:
1a:6d:b1:07:e3:1b:4c:60:4d:e7:91:68:bb:21:7e:
dd:ee:59:3c:31:70:da:9d:4d:dc:b7:21:9a:e4:f3:
03:00:df:4d:0a:8e:88:d6:39:07:c5:08:50:e1:11:
69:46:66:d1:68:9a:3a:be:de:21:d6:05:18:48:77:
9e:7e:f3:e1:04:e6:5c:ab:7c:e8:54:a3:ad:ca:e2:
5a:ae:b5:24:bc:34:74:ec:8c:7a:d0:6e:a9:b6:45:
8c:eb:04:a4:f7:2e:73:f6:6b:63:ca:8a:55:34:01:
09:e0:ce:e3:47:a7:5e:de:6c:57:39:8e:99:e3:8d:
40:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:D3:62:5B:DD:E6:04:CD:36:5B:D6:41:1A:9F:06:DC:1C:0A:D2:67
X509v3 Authority Key Identifier:
keyid:BC:55:B1:CA:37:24:25:5D:60:A0:A1:EF:29:57:27:DF:08:E3:B1:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vFWxyjckJV1goKHvKVcn3wjjsUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/37fd7b-1303-404f-a588-cbb3cd9fedfe/1/69NiW93mBM02W9ZBGp8G3BwK0mc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/37fd7b-1303-404f-a588-cbb3cd9fedfe/1/vFWxyjckJV1goKHvKVcn3wjjsUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:f240::/30
2a0b:a4c0::/29
2a0f:63c0::/29
2a0f:89c0::/29
2a0f:9bc0::/29
2a0f:e3c0::-2a0f:e3c5:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
2a:8c:f9:e7:34:34:c0:23:72:8f:e3:af:0c:e6:d8:52:a3:f8:
7d:20:af:c4:aa:91:d2:7d:24:3c:ff:7b:f0:b3:fb:3c:b8:80:
9c:30:04:f9:18:41:3d:d0:ae:e4:46:7b:9f:5f:04:68:8e:70:
cf:93:50:bd:db:58:a4:8e:20:67:22:70:a5:a9:56:36:25:01:
87:25:5c:d8:c8:78:a0:e8:74:ee:ac:9b:82:44:29:3f:25:68:
60:32:6d:bd:cf:46:a4:6a:a7:12:a2:cb:f6:fd:b0:93:cc:22:
11:8e:aa:bc:b2:93:27:6d:5e:44:6d:0e:50:d3:56:03:93:76:
0f:95:20:58:7e:c9:2c:15:61:a7:89:ae:7e:70:9b:19:8a:50:
19:a1:0f:94:ff:2f:59:69:43:ff:05:c5:b2:46:28:78:29:84:
ea:8a:ed:bd:87:30:fb:3e:60:02:ba:e8:00:6e:7a:fa:5c:dd:
7e:64:67:64:ad:c0:47:65:a6:70:51:d7:b1:24:9a:10:f1:f5:
ef:a6:a3:4e:5f:69:11:ce:33:99:42:d5:c4:cf:72:0f:fa:e4:
5c:7a:e5:7e:2a:24:78:8c:3b:e9:35:b8:cc:90:7b:99:71:a6:
95:4e:b2:4c:6c:e4:55:93:e1:c2:f6:52:f0:d9:3a:a9:43:61:
83:d8:fc:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:47 2024 by rpki-client on console-fra.rpki-client.org