Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/TnTQpCuUuxYSGgR68r3YSLKSi40.roa
File: TnTQpCuUuxYSGgR68r3YSLKSi40.roa (raw, json)
Hash identifier: J+N3L/amfRyJWY8IxkzPPjC1jN7D6fyNi1W0VCBziHI=
Subject key identifier: 4E:74:D0:A4:2B:94:BB:16:12:1A:04:7A:F2:BD:D8:48:B2:92:8B:8D
Certificate issuer: /CN=b05d28d16626bc5dcabf2e915435782b96e14071
Certificate serial: 018654A39932F4A4972FD6D2974E5F0A8892
Authority key identifier: B0:5D:28:D1:66:26:BC:5D:CA:BF:2E:91:54:35:78:2B:96:E1:40:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/TnTQpCuUuxYSGgR68r3YSLKSi40.roa
Signing time: Wed 15 Feb 2023 10:34:13 +0000
ROA not before: Wed 15 Feb 2023 10:34:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208240
IP address blocks: 2a07:3500:1060::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:54:a3:99:32:f4:a4:97:2f:d6:d2:97:4e:5f:0a:88:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b05d28d16626bc5dcabf2e915435782b96e14071
Validity
Not Before: Feb 15 10:34:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4e74d0a42b94bb16121a047af2bdd848b2928b8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:fe:df:4b:38:19:18:10:fe:77:c9:17:70:06:
e4:36:33:6f:03:f8:2a:87:7c:a1:84:08:84:73:7a:
20:6e:70:d9:f4:06:08:81:05:af:ce:56:24:1a:eb:
69:5a:cc:4d:09:6e:ef:2b:cc:ea:24:38:1f:b2:c1:
aa:54:e6:57:2b:c9:aa:f8:80:d8:6f:13:20:a8:3e:
5b:dc:cd:e8:dc:3f:ff:b2:99:43:3c:b3:61:dd:46:
3b:01:a5:0a:d6:bc:63:79:7d:f8:20:2f:a1:5a:ca:
3b:69:91:7d:2c:66:38:0b:70:93:38:f0:c2:0e:84:
33:39:ff:8a:9b:38:f4:79:bb:05:00:c5:26:f4:38:
72:28:9a:c4:50:a1:e0:89:e0:ad:bd:be:c7:b1:b5:
37:03:81:8d:67:d5:30:7b:5d:56:c7:aa:ad:fc:a0:
34:6a:c5:cc:71:6f:1f:cf:fc:71:0a:8a:05:bc:79:
ff:36:1b:c4:2a:85:34:6f:4e:17:37:51:aa:37:73:
92:10:d5:e1:6b:81:9d:c6:b5:c3:d0:25:55:ad:08:
13:7e:80:07:1f:4e:80:cd:4e:1b:90:47:b2:1c:ed:
66:10:c3:53:16:7d:06:8d:da:eb:98:e5:5c:0c:6b:
58:82:2a:57:7d:c2:14:d3:ec:4d:cc:23:32:cc:06:
52:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:74:D0:A4:2B:94:BB:16:12:1A:04:7A:F2:BD:D8:48:B2:92:8B:8D
X509v3 Authority Key Identifier:
keyid:B0:5D:28:D1:66:26:BC:5D:CA:BF:2E:91:54:35:78:2B:96:E1:40:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/TnTQpCuUuxYSGgR68r3YSLKSi40.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:3500:1060::/48
Signature Algorithm: sha256WithRSAEncryption
17:a0:d8:93:13:bf:27:de:15:aa:0c:1b:0d:85:cc:d8:ae:01:
01:d5:a1:59:36:60:89:fe:5b:06:3b:de:2d:b6:51:1c:2e:1a:
3f:47:21:5e:30:ea:d4:6e:d3:72:33:96:ba:df:d4:b2:11:ae:
42:2f:c1:9d:c9:d2:d1:b8:8e:f1:41:19:98:a0:e2:b3:01:47:
c8:de:26:5a:2b:b6:b0:0e:f3:00:a4:7d:0e:4a:d3:35:d6:af:
ef:75:50:2a:05:dc:61:72:d6:89:ea:3e:a4:e9:fb:5e:8c:bc:
ed:92:a1:68:84:31:53:a7:77:d9:88:03:db:45:e3:31:7b:16:
b9:dc:99:74:9e:81:8d:ad:f9:b2:4f:35:cb:8b:64:39:99:18:
35:da:c5:11:25:60:11:e7:a6:ac:c9:64:69:4e:e6:df:6a:5f:
c6:2b:65:63:e9:bc:5c:05:5e:cd:6f:bf:4f:68:59:65:c7:bb:
1e:35:9f:43:9b:16:df:ae:ec:d3:12:ee:7c:57:ae:ff:0e:ae:
07:ba:70:80:ed:c5:8b:43:bc:78:0a:a6:40:51:81:cd:e6:a9:
02:a7:04:aa:5c:d1:75:d5:24:d9:1a:0b:e4:57:c0:a2:22:c6:
23:62:92:c8:74:13:68:a9:3c:08:bb:6b:23:f4:a1:98:75:8b:
3c:1f:c1:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:31:24 2025 by rpki-client