Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/9c0a7e-9963-4c0d-94ac-446d0a7e9404/1/QtAfZ2pjDzeOhOIbkQuYZyxqq3o.roa
File: QtAfZ2pjDzeOhOIbkQuYZyxqq3o.roa (raw, json)
Hash identifier: SrUfoa6BWhmt9YlExTmRovEV3cWWDioVlvQ8K+AWZuQ=
Subject key identifier: 42:D0:1F:67:6A:63:0F:37:8E:84:E2:1B:91:0B:98:67:2C:6A:AB:7A
Certificate issuer: /CN=73dfeea9c7de246e6d7d1a507406285b226f9286
Certificate serial: 018CC80191264D5D57E485B691F6A0A4E9A9
Authority key identifier: 73:DF:EE:A9:C7:DE:24:6E:6D:7D:1A:50:74:06:28:5B:22:6F:92:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c9_uqcfeJG5tfRpQdAYoWyJvkoY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/9c0a7e-9963-4c0d-94ac-446d0a7e9404/1/QtAfZ2pjDzeOhOIbkQuYZyxqq3o.roa
Signing time: Tue 02 Jan 2024 02:29:55 +0000
ROA not before: Tue 02 Jan 2024 02:29:55 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39513
IP address blocks: 2a0c:d540:fe00::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:91:26:4d:5d:57:e4:85:b6:91:f6:a0:a4:e9:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73dfeea9c7de246e6d7d1a507406285b226f9286
Validity
Not Before: Jan 2 02:29:55 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=42d01f676a630f378e84e21b910b98672c6aab7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:56:ec:5d:1b:80:9f:39:f0:a8:b4:15:84:f0:
e8:9f:6f:22:e6:73:4c:f2:72:ce:5d:e9:a7:b5:5c:
8c:85:d5:04:6f:86:da:f5:69:ac:31:5f:bb:b7:e6:
aa:e5:9a:7b:5d:17:f2:21:74:b4:9c:58:72:d9:73:
45:0a:f7:c4:4f:8c:9b:35:70:06:df:90:47:1e:5c:
b2:79:f3:12:94:1e:9f:fc:e9:b7:57:89:ba:6a:ad:
b9:f8:87:85:69:ff:93:39:63:1d:2a:f8:4f:4b:87:
97:59:bd:c5:a7:86:96:a5:31:94:31:de:7a:20:95:
3c:7d:83:62:f3:36:03:a9:36:7e:1d:9e:f5:d9:c2:
85:e1:05:dd:7e:5c:09:cd:a9:7c:12:df:71:ab:ce:
ab:85:a0:18:6e:78:82:b7:03:d1:80:dd:50:c1:a0:
fe:03:6b:a5:f2:22:bf:4d:a6:61:ea:b0:f6:ca:fb:
e3:8e:fe:02:ea:7e:e0:40:85:d8:90:b1:f8:a4:03:
61:ca:7c:01:16:e1:b8:b6:0a:6f:35:b0:6d:20:ad:
86:68:44:6a:2f:55:cd:e2:a5:1f:31:73:8e:ac:cc:
b2:0e:6d:d4:b2:09:b5:7e:38:ed:ed:3f:43:7a:01:
47:b0:84:a7:18:a2:49:9c:3c:f4:43:19:d8:33:c3:
df:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:D0:1F:67:6A:63:0F:37:8E:84:E2:1B:91:0B:98:67:2C:6A:AB:7A
X509v3 Authority Key Identifier:
keyid:73:DF:EE:A9:C7:DE:24:6E:6D:7D:1A:50:74:06:28:5B:22:6F:92:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9_uqcfeJG5tfRpQdAYoWyJvkoY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/9c0a7e-9963-4c0d-94ac-446d0a7e9404/1/QtAfZ2pjDzeOhOIbkQuYZyxqq3o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/9c0a7e-9963-4c0d-94ac-446d0a7e9404/1/c9_uqcfeJG5tfRpQdAYoWyJvkoY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:d540:fe00::/40
Signature Algorithm: sha256WithRSAEncryption
4b:93:db:9e:4e:73:fe:d0:27:d0:57:ac:5b:c7:32:2b:d1:25:
4d:90:b2:58:af:00:86:c4:0d:d6:2e:ab:24:07:e4:8d:e4:f7:
78:01:0e:12:d9:8c:93:9d:02:15:3f:17:02:27:45:e2:a4:43:
9a:70:79:cb:7a:11:3e:5e:52:41:20:fb:25:9c:c5:d1:da:29:
fd:9e:ea:b9:9f:40:23:db:ce:7d:f2:87:31:22:6e:07:71:29:
58:63:ca:b9:ca:b0:ee:19:00:2e:b3:d1:67:ff:0d:47:a0:60:
bb:31:76:7b:1b:8f:a1:8a:72:05:f5:eb:8e:a7:4a:11:61:26:
5d:a4:e7:73:a5:9b:ae:2f:02:35:1f:37:f6:ca:72:95:aa:28:
37:d8:43:15:7b:f7:66:cf:cf:eb:66:82:24:5b:bb:06:b2:a1:
8c:02:dd:b5:ab:85:8d:a8:da:ba:14:4b:9c:4d:2d:c7:bf:6f:
6a:97:c0:ed:ca:d8:15:d6:10:8c:27:59:f3:91:82:df:09:52:
a3:3c:24:a4:0d:a6:ad:12:68:aa:18:44:64:22:5f:06:09:78:
7a:be:75:a6:fd:54:46:3b:fe:01:d9:48:18:8d:09:d9:fc:23:
41:9f:14:63:1a:0a:d4:92:5d:c7:8f:56:ca:8e:1a:97:ab:10:
fe:43:c9:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 16:21:03 2024 by rpki-client on console-ams.rpki-client.org