Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/dccf7b-a7fd-4238-b1f5-fbaf7d1dac8c/1/bxOe0uAFfTYQRNEcY8Xhd3kvPzc.roa
File: bxOe0uAFfTYQRNEcY8Xhd3kvPzc.roa (raw, json)
Hash identifier: QyJWIiaGyaNi0wNdTPJxE0/oTVj4nm5k6K4OiDcbABU=
Subject key identifier: 6F:13:9E:D2:E0:05:7D:36:10:44:D1:1C:63:C5:E1:77:79:2F:3F:37
Certificate issuer: /CN=91afcc05df02f27470df8381140b95aaec1f35bd
Certificate serial: 0185A63453C348832A70C8BA7D8FC041B605
Authority key identifier: 91:AF:CC:05:DF:02:F2:74:70:DF:83:81:14:0B:95:AA:EC:1F:35:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ka_MBd8C8nRw34OBFAuVquwfNb0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/dccf7b-a7fd-4238-b1f5-fbaf7d1dac8c/1/bxOe0uAFfTYQRNEcY8Xhd3kvPzc.roa
Signing time: Thu 12 Jan 2023 13:38:45 +0000
ROA not before: Thu 12 Jan 2023 13:38:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9009
IP address blocks: 2a12:e900::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:a6:34:53:c3:48:83:2a:70:c8:ba:7d:8f:c0:41:b6:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91afcc05df02f27470df8381140b95aaec1f35bd
Validity
Not Before: Jan 12 13:38:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6f139ed2e0057d361044d11c63c5e177792f3f37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:44:e7:a2:d2:b2:71:ad:b9:9e:ae:84:5a:0f:
f5:0a:db:5d:14:b2:d0:97:40:a1:46:64:e1:8a:cb:
19:0b:40:2c:ee:3c:b4:d7:8e:35:31:25:d2:f6:20:
28:05:56:f0:2e:a4:44:ff:f1:c0:4a:55:4f:eb:d9:
64:fd:c9:8c:03:a8:e8:f4:32:c5:54:eb:7c:db:84:
7d:ea:53:f7:d5:cb:5e:81:7e:74:bf:f2:eb:9a:dc:
b7:3a:39:c6:50:c6:ff:2c:78:26:f0:b4:5e:c8:fa:
44:f8:78:1e:a6:ae:d5:f7:00:d7:94:cd:b7:97:61:
2d:60:7c:8d:1c:bc:72:d4:c7:b6:1a:3d:c5:12:08:
0c:fc:9b:9e:fe:e1:96:64:cd:ce:94:40:2b:72:1b:
b2:24:b6:30:17:3e:45:d9:b5:e2:73:0c:af:6a:52:
83:a0:ab:2b:11:1a:5c:66:f4:94:8b:df:01:7b:2b:
a8:c0:09:35:7c:1c:51:d7:72:5e:ab:52:3e:65:1c:
52:9c:35:15:23:c4:6c:89:61:e7:d0:b6:c8:16:50:
60:0a:6a:c7:59:21:e5:e5:f0:4f:ea:69:64:33:55:
07:de:71:fb:af:8f:0c:cc:28:3d:eb:2a:33:dd:e0:
a4:47:ce:6d:ce:a9:69:fa:0b:5c:ca:d8:56:18:42:
56:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:13:9E:D2:E0:05:7D:36:10:44:D1:1C:63:C5:E1:77:79:2F:3F:37
X509v3 Authority Key Identifier:
keyid:91:AF:CC:05:DF:02:F2:74:70:DF:83:81:14:0B:95:AA:EC:1F:35:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ka_MBd8C8nRw34OBFAuVquwfNb0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/dccf7b-a7fd-4238-b1f5-fbaf7d1dac8c/1/bxOe0uAFfTYQRNEcY8Xhd3kvPzc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/dccf7b-a7fd-4238-b1f5-fbaf7d1dac8c/1/ka_MBd8C8nRw34OBFAuVquwfNb0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:e900::/29
Signature Algorithm: sha256WithRSAEncryption
24:d8:45:45:45:b9:46:b6:26:8e:14:59:e9:23:b7:60:7a:f6:
ee:13:70:e9:ca:a8:ca:69:d7:7f:71:93:84:a7:39:b3:e9:ae:
00:c1:ef:b5:1c:85:f6:a3:63:38:d9:e0:3c:f2:06:44:64:2e:
c7:90:91:7a:c9:6a:83:a0:bd:15:36:ef:58:f1:0e:74:5a:a6:
ce:8c:26:6b:b8:b4:1a:3a:3e:f2:35:a9:ae:56:bd:65:0b:b5:
35:3b:39:8f:18:67:bc:9e:3b:15:67:d9:5b:7f:93:1d:5e:56:
c6:86:a1:41:b7:9f:c3:e9:48:c0:f2:a9:13:5d:5e:5c:38:28:
2c:54:f7:fd:92:49:90:ba:15:19:52:25:3b:55:2e:d0:23:78:
c9:64:19:17:de:ea:56:6c:12:45:cb:48:d8:6c:9c:86:b2:d9:
69:b1:aa:89:4d:79:52:17:8c:75:f8:e5:a6:ad:61:e6:6d:a9:
c8:f2:09:f7:09:cb:70:42:bd:90:d3:69:a7:14:e5:db:ad:c1:
ce:2a:87:74:21:d7:61:b8:d7:47:69:a3:f3:be:99:1b:e3:ac:
b7:20:11:e6:15:ca:ae:a4:0b:b6:e4:a6:93:cb:06:40:e2:2b:
5f:69:23:0e:52:ae:37:1f:4d:26:61:d0:ee:88:66:5c:7f:ba:
61:4e:fd:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:04 2024 by rpki-client on console-fra.rpki-client.org