Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/4998c3-f4da-4014-92e1-8f9e05b497e6/1/1-XMmlvn1TOWqc8YM5uXSjW33MRQ.roa
File: 1-XMmlvn1TOWqc8YM5uXSjW33MRQ.roa (raw, json)
Hash identifier: ulLjL/kYxTxfG/XDmjEl8TopTCk80/+haqOhwlPNP2Q=
Subject key identifier: F9:73:26:96:F9:F5:4C:E5:AA:73:C6:0C:E6:E5:D2:8D:6D:F7:31:14
Certificate issuer: /CN=1a673c305e41bb15cf3323498765a26dce2797ed
Certificate serial: D3C925
Authority key identifier: 1A:67:3C:30:5E:41:BB:15:CF:33:23:49:87:65:A2:6D:CE:27:97:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gmc8MF5BuxXPMyNJh2Wibc4nl-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/4998c3-f4da-4014-92e1-8f9e05b497e6/1/1-XMmlvn1TOWqc8YM5uXSjW33MRQ.roa
Signing time: Sat 01 Jan 2022 01:55:21 +0000
ROA not before: Sat 01 Jan 2022 01:55:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204790
IP address blocks: 2a11:db00::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13879589 (0xd3c925)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a673c305e41bb15cf3323498765a26dce2797ed
Validity
Not Before: Jan 1 01:55:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f9732696f9f54ce5aa73c60ce6e5d28d6df73114
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:60:bd:f0:9c:4a:3f:f2:c7:13:4e:fe:7e:b3:
4b:22:a5:7c:76:c0:86:51:dd:e1:72:bf:4b:ef:d3:
42:06:46:85:d1:31:0a:0d:14:f9:73:50:04:f5:67:
fc:9b:eb:66:1f:f1:e3:1d:2f:a2:6f:ca:ee:4d:8f:
b0:d5:6f:cb:ef:d3:83:65:fd:c3:88:1a:c0:26:6d:
21:18:14:7a:b5:5d:a4:bd:d6:c5:0d:86:c7:16:27:
a9:41:15:3d:74:e3:2b:41:14:6c:8e:74:6e:be:09:
d4:7d:16:d9:9c:2c:77:b9:fa:83:45:4b:22:1c:70:
a4:e9:cc:9e:c2:b8:56:e6:7b:e3:26:21:88:bb:39:
bf:5d:8f:df:be:75:32:ff:72:28:9b:86:67:86:13:
25:09:a1:ab:65:cf:8e:f8:7d:3b:46:7a:96:fd:96:
6a:c7:f5:69:45:df:83:00:73:1f:95:24:21:20:70:
21:a9:c3:86:cd:8d:0d:f9:9f:c8:4b:90:e1:0b:03:
d2:12:8b:c5:03:00:5d:e3:f3:46:ce:c8:48:21:5c:
2c:b6:36:60:7e:3d:14:04:da:46:01:b1:77:3b:14:
2a:4f:84:5c:d5:5b:9e:ea:46:26:42:7c:71:5d:2d:
68:4d:02:e2:a2:fd:ef:b4:8f:84:2d:ce:34:8a:0a:
cc:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:73:26:96:F9:F5:4C:E5:AA:73:C6:0C:E6:E5:D2:8D:6D:F7:31:14
X509v3 Authority Key Identifier:
keyid:1A:67:3C:30:5E:41:BB:15:CF:33:23:49:87:65:A2:6D:CE:27:97:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gmc8MF5BuxXPMyNJh2Wibc4nl-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/4998c3-f4da-4014-92e1-8f9e05b497e6/1/1-XMmlvn1TOWqc8YM5uXSjW33MRQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/4998c3-f4da-4014-92e1-8f9e05b497e6/1/Gmc8MF5BuxXPMyNJh2Wibc4nl-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:db00::/29
Signature Algorithm: sha256WithRSAEncryption
70:12:78:94:53:3d:9a:00:3a:44:e4:c4:2a:4a:4c:d3:5a:1c:
c6:c4:31:b5:43:7e:2a:b6:e0:fa:80:10:28:1d:3f:1e:2e:34:
9f:67:a3:24:3f:20:37:c1:81:e9:f3:52:55:8e:ce:be:a5:18:
43:3d:ed:88:8a:a6:60:98:04:b2:36:1f:82:55:bc:d8:0b:41:
3f:79:2e:66:60:58:82:e5:42:82:2a:a8:b8:6b:f7:6e:59:e0:
9a:bd:b9:e9:ba:91:c7:cc:55:19:1a:0d:fc:85:2d:fc:a9:0e:
9b:82:10:a1:22:be:d7:61:63:21:df:a3:d0:cb:a8:0d:4e:bc:
7e:5a:4d:96:0a:a5:c5:61:47:a8:8a:1a:7b:1f:61:1d:30:8a:
cd:55:2f:15:9e:69:c4:05:6c:7f:45:3b:e4:83:b3:82:e2:4a:
87:bc:f5:ad:01:15:ab:e1:d2:0d:27:1e:6b:71:52:24:e7:fd:
da:d7:e5:d3:16:00:bd:4e:63:fb:c8:f5:af:c3:89:a3:f4:55:
98:89:d5:0a:c9:c7:6c:79:31:88:54:97:85:e4:81:9c:86:22:
2c:eb:36:55:ca:34:d4:5b:47:dc:14:72:b2:7b:8b:0c:a1:59:
ec:3a:d1:ef:5e:04:80:9f:39:e6:96:e4:4a:a0:20:30:ce:54:
3c:c4:bb:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:33 2023 by rpki-client on console-fra.rpki-client.org