Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/37fd7b-1303-404f-a588-cbb3cd9fedfe/1/pHd0C3VphEL1eyjJGi8XrvuLzko.roa
File: pHd0C3VphEL1eyjJGi8XrvuLzko.roa (raw, json)
Hash identifier: t2lQDVpbW0XIV5m66Q78nhyFzfCuplRWq9eOtHgLRF8=
Subject key identifier: A4:77:74:0B:75:69:84:42:F5:7B:28:C9:1A:2F:17:AE:FB:8B:CE:4A
Certificate issuer: /CN=bc55b1ca3724255d60a0a1ef295727df08e3b14c
Certificate serial: 018B510B98404A1A9C53CC63C73DB1374B2D
Authority key identifier: BC:55:B1:CA:37:24:25:5D:60:A0:A1:EF:29:57:27:DF:08:E3:B1:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vFWxyjckJV1goKHvKVcn3wjjsUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/37fd7b-1303-404f-a588-cbb3cd9fedfe/1/pHd0C3VphEL1eyjJGi8XrvuLzko.roa
Signing time: Sat 21 Oct 2023 07:03:16 +0000
ROA not before: Sat 21 Oct 2023 07:03:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216349
IP address blocks: 2a10:a9c0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:51:0b:98:40:4a:1a:9c:53:cc:63:c7:3d:b1:37:4b:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc55b1ca3724255d60a0a1ef295727df08e3b14c
Validity
Not Before: Oct 21 07:03:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a477740b75698442f57b28c91a2f17aefb8bce4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:c8:e3:cd:86:3e:7e:48:c2:f8:10:35:a7:e5:
db:d2:bc:08:26:ef:3f:cf:df:c0:a8:86:78:fa:68:
92:a1:2a:00:f2:a2:cc:42:74:c2:60:ec:25:08:88:
39:4b:dc:b9:f8:83:f5:c8:8e:e5:8f:2b:54:63:dd:
3a:0f:1e:b3:5f:10:96:c5:59:db:bc:43:03:3d:97:
03:52:d8:70:05:66:81:dd:01:71:03:7d:9f:bd:fc:
71:38:d4:58:5b:3f:96:b0:a6:23:a8:6b:31:cc:1a:
ae:df:94:a4:14:a6:26:e2:16:44:00:4c:26:d3:fa:
53:0d:04:1e:3e:93:9d:93:81:75:75:82:f4:a5:41:
97:8c:df:e7:99:67:56:b1:df:1d:27:13:ce:f4:9b:
12:46:4d:16:ef:64:2c:d9:3b:37:64:7e:41:5d:41:
20:d0:38:ed:c8:3b:65:d6:59:6a:69:3e:98:b1:ea:
bd:17:04:3b:f0:45:61:ce:9a:1e:97:c1:93:60:38:
f8:a7:f7:6d:10:87:c8:e7:e6:9d:1a:c5:21:26:a6:
3d:c3:a7:2b:e7:87:42:5b:45:7d:04:98:04:fd:fd:
b2:c9:f8:6d:7d:62:86:03:2a:25:be:87:f8:3e:84:
8d:d6:07:86:8b:0c:46:07:bf:b7:e7:18:9b:c6:c5:
cc:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:77:74:0B:75:69:84:42:F5:7B:28:C9:1A:2F:17:AE:FB:8B:CE:4A
X509v3 Authority Key Identifier:
keyid:BC:55:B1:CA:37:24:25:5D:60:A0:A1:EF:29:57:27:DF:08:E3:B1:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vFWxyjckJV1goKHvKVcn3wjjsUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/37fd7b-1303-404f-a588-cbb3cd9fedfe/1/pHd0C3VphEL1eyjJGi8XrvuLzko.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/37fd7b-1303-404f-a588-cbb3cd9fedfe/1/vFWxyjckJV1goKHvKVcn3wjjsUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:a9c0::/29
Signature Algorithm: sha256WithRSAEncryption
7c:b0:48:e4:8f:a1:12:69:5d:93:b0:4f:31:5a:57:93:93:ba:
6e:42:c4:46:29:c5:e4:5d:fb:52:04:66:f3:0f:fd:18:df:13:
4b:7d:5d:f1:e4:17:5e:1a:bb:e2:28:95:11:98:c1:ba:3d:bb:
3e:df:4d:98:13:27:4c:b1:a1:b4:2a:be:22:6e:8d:ca:cf:51:
3d:32:85:db:3d:57:b6:1f:a5:ca:fc:2c:0a:7d:40:00:28:53:
50:94:74:fb:15:67:3e:a5:5f:a1:67:c3:a6:63:ae:32:f6:8c:
74:5d:b8:63:08:63:ac:02:d7:14:9b:c4:6a:5e:fa:36:8a:0f:
95:a4:b5:29:b3:4c:55:70:10:a9:c7:87:70:52:78:87:d0:38:
e4:e2:58:a1:31:43:ba:3f:81:d7:c6:e9:72:86:6b:ea:8f:3c:
1d:6f:dd:b0:b6:2e:d7:3f:52:d0:ae:f7:04:2a:5e:ca:56:d7:
6d:25:73:f0:85:e0:96:02:5c:73:44:21:60:2b:0f:76:ac:c8:
79:d4:29:97:e3:51:8e:26:d7:fd:0d:c1:14:58:6c:08:55:a6:
b3:a9:8a:18:54:3f:94:8f:9b:7a:1e:95:cd:eb:86:66:94:f9:
12:71:3f:61:c6:01:70:bd:b3:d1:3d:8c:3c:57:50:6c:0a:87:
06:9d:1c:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:47 2024 by rpki-client on console-fra.rpki-client.org