Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/1e9e81-e97c-4a5d-a54c-0fba1420c4c9/1/qzXaAsRWJu6H2WoixGTZ0WFQkyk.roa
File: qzXaAsRWJu6H2WoixGTZ0WFQkyk.roa (raw, json)
Hash identifier: DfFaZMeAP+7sSOKy66VK9HfEzQvzeJZebv6/1uWj9MI=
Subject key identifier: AB:35:DA:02:C4:56:26:EE:87:D9:6A:22:C4:64:D9:D1:61:50:93:29
Certificate issuer: /CN=fa7fff0c206730c495ce44c01cd77c949a0e3e67
Certificate serial: 09FCA7F6
Authority key identifier: FA:7F:FF:0C:20:67:30:C4:95:CE:44:C0:1C:D7:7C:94:9A:0E:3E:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-n__DCBnMMSVzkTAHNd8lJoOPmc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/1e9e81-e97c-4a5d-a54c-0fba1420c4c9/1/qzXaAsRWJu6H2WoixGTZ0WFQkyk.roa
Signing time: Tue 01 Feb 2022 07:19:40 +0000
ROA not before: Tue 01 Feb 2022 07:19:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48205
IP address blocks: 2a0b:5b00::/29 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 167553014 (0x9fca7f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa7fff0c206730c495ce44c01cd77c949a0e3e67
Validity
Not Before: Feb 1 07:19:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ab35da02c45626ee87d96a22c464d9d161509329
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:a6:d4:e7:dd:2c:12:a2:d3:b6:8c:eb:2e:e0:
b7:71:cb:dc:6d:6c:22:ab:5c:9a:c5:b8:67:70:2a:
56:03:ef:59:f8:b2:0b:c3:3b:dc:35:3f:9a:8f:ef:
bb:46:55:0b:1b:7e:27:82:f1:36:ac:5a:5c:83:25:
d0:7a:fd:3a:b3:2d:cc:db:b1:b9:d6:fd:54:e9:01:
1a:98:d2:11:21:04:aa:3b:a8:39:ae:32:00:70:5b:
00:2d:45:c5:92:9b:ea:7a:a3:3f:1c:bf:8e:9f:46:
24:ea:5d:e3:ce:5f:54:34:15:c3:f9:55:89:37:3c:
1e:98:fa:88:0f:09:44:0e:80:a2:fd:ad:f3:40:90:
77:a6:a7:c5:ef:09:61:c9:24:fc:73:58:3a:a2:6e:
d8:4e:8c:af:5b:cd:3c:b2:5e:ad:0d:a6:90:f7:ab:
c3:e7:e3:cc:84:02:21:64:91:86:82:a5:3f:da:dd:
5e:77:cc:ba:39:b3:63:14:c7:59:ed:68:a0:9c:4b:
83:5b:54:ec:79:2d:d0:19:cf:62:f1:4a:a6:93:e0:
54:e5:75:b5:4f:fe:28:b7:f5:90:09:13:d6:c4:9f:
a6:9f:97:a8:85:95:c3:89:4e:63:2b:65:ea:6a:34:
ca:5a:83:7a:7d:17:c3:8b:21:c5:13:31:af:e0:65:
78:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:35:DA:02:C4:56:26:EE:87:D9:6A:22:C4:64:D9:D1:61:50:93:29
X509v3 Authority Key Identifier:
keyid:FA:7F:FF:0C:20:67:30:C4:95:CE:44:C0:1C:D7:7C:94:9A:0E:3E:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-n__DCBnMMSVzkTAHNd8lJoOPmc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/1e9e81-e97c-4a5d-a54c-0fba1420c4c9/1/qzXaAsRWJu6H2WoixGTZ0WFQkyk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/1e9e81-e97c-4a5d-a54c-0fba1420c4c9/1/1-n__DCBnMMSVzkTAHNd8lJoOPmc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:5b00::/29
Signature Algorithm: sha256WithRSAEncryption
2b:37:6f:37:b7:ea:4b:53:b8:f5:37:01:b1:8b:de:0f:83:c2:
db:87:2c:07:ab:be:fe:f9:13:09:fe:c3:a7:6a:bd:83:ab:2f:
e8:c5:4d:d4:f5:f6:4d:e1:70:34:50:04:d7:c2:c8:31:37:17:
15:b6:68:b7:9b:dc:f4:be:ba:11:b5:6d:5b:3b:1e:fb:6a:17:
cb:da:5e:8a:3e:44:25:db:da:52:4b:e5:f0:07:c3:1a:ea:c4:
e5:e2:d9:91:fd:b7:8f:66:66:0f:ed:ca:f3:ec:95:a5:41:64:
a4:cb:4b:79:ee:91:5f:52:a5:94:36:52:ce:6a:9d:a0:b8:4e:
84:a6:1b:7f:3a:c1:fb:08:e7:39:7f:3e:7d:f3:63:9a:7d:8e:
80:e2:50:31:8f:65:17:71:b6:0a:a3:2a:a8:a9:c3:f9:6d:44:
38:e8:4e:42:d2:d6:49:7f:8e:20:f6:de:50:cc:2d:12:d9:5e:
61:bb:2d:a3:3e:aa:fa:eb:04:02:25:0d:ca:19:6f:d9:22:3b:
33:a6:a8:7a:01:08:8a:ad:5d:8e:83:22:eb:95:9f:86:9b:6e:
bc:f7:a8:95:7e:d5:27:a6:a8:0e:55:c9:97:6d:ff:99:14:bd:
b5:87:fa:35:fc:3e:6f:77:9a:13:4a:5f:a0:5f:28:95:1e:c4:
99:ad:a5:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:15 2024 by rpki-client on console-ams.rpki-client.org