Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/524ba5-096d-47ff-a8f4-dc8a2d9ec6f3/1/pnGmpSqYpN2nDTWkCHCpbPLFkAQ.roa
File: pnGmpSqYpN2nDTWkCHCpbPLFkAQ.roa (raw, json)
Hash identifier: 0arNyYlpfsCAssGjNBFlAw8JQhu+4AoQ6qhYkq1vEDE=
Subject key identifier: A6:71:A6:A5:2A:98:A4:DD:A7:0D:35:A4:08:70:A9:6C:F2:C5:90:04
Certificate issuer: /CN=85c3f6a9e8550c090bc3b257f72b8f65b69a9f61
Certificate serial: 0160595E
Authority key identifier: 85:C3:F6:A9:E8:55:0C:09:0B:C3:B2:57:F7:2B:8F:65:B6:9A:9F:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hcP2qehVDAkLw7JX9yuPZbaan2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/524ba5-096d-47ff-a8f4-dc8a2d9ec6f3/1/pnGmpSqYpN2nDTWkCHCpbPLFkAQ.roa
Signing time: Thu 10 Feb 2022 19:05:47 +0000
ROA not before: Thu 10 Feb 2022 19:05:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210542
IP address blocks: 2a0f:e3c7::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23091550 (0x160595e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85c3f6a9e8550c090bc3b257f72b8f65b69a9f61
Validity
Not Before: Feb 10 19:05:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a671a6a52a98a4dda70d35a40870a96cf2c59004
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:41:e4:b7:3c:8c:81:c2:ff:3b:79:13:ef:cc:
e5:b9:37:dc:dd:01:26:c5:7d:9d:a4:63:e0:0e:a9:
8e:6a:de:e0:1a:50:8d:c7:99:95:64:db:17:09:7f:
ca:12:4a:72:92:9e:fe:55:4a:ba:32:be:86:af:66:
87:6e:c8:13:24:e6:95:da:a9:02:16:98:81:18:93:
9c:7c:18:62:90:70:c4:40:8e:70:a9:15:f9:b0:00:
e8:d0:df:bf:8e:d2:a5:bb:3d:2f:f7:e8:c1:97:73:
0c:69:26:a6:6f:82:83:60:3e:6e:8d:23:24:c2:89:
60:27:e4:03:06:92:ba:23:8a:41:92:12:9c:e0:83:
fd:77:75:98:86:cf:10:1d:e8:4a:59:78:0c:fa:df:
0a:e8:5f:1d:52:1f:cf:a5:86:6e:24:89:44:78:2d:
37:a2:f9:73:4a:d0:f3:af:2f:e0:2e:8b:fd:11:7a:
9a:6b:a0:d7:90:a1:95:e5:cb:89:d8:1f:70:af:18:
f5:4a:9c:9b:fb:21:b1:05:37:3b:bc:6b:45:06:dd:
fc:20:10:8a:a7:4e:5d:da:57:ca:25:b1:87:f3:40:
c3:4c:d5:eb:81:85:97:3f:6f:c6:c8:40:d0:c8:a2:
f8:59:53:0c:71:98:26:10:3b:45:66:bd:21:52:b1:
5c:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:71:A6:A5:2A:98:A4:DD:A7:0D:35:A4:08:70:A9:6C:F2:C5:90:04
X509v3 Authority Key Identifier:
keyid:85:C3:F6:A9:E8:55:0C:09:0B:C3:B2:57:F7:2B:8F:65:B6:9A:9F:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hcP2qehVDAkLw7JX9yuPZbaan2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/524ba5-096d-47ff-a8f4-dc8a2d9ec6f3/1/pnGmpSqYpN2nDTWkCHCpbPLFkAQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/524ba5-096d-47ff-a8f4-dc8a2d9ec6f3/1/hcP2qehVDAkLw7JX9yuPZbaan2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:e3c7::/40
Signature Algorithm: sha256WithRSAEncryption
80:97:4c:92:a1:56:3b:1c:fe:dd:70:6e:1f:e6:67:df:1c:6f:
3b:b5:ed:6c:ad:f7:58:ee:39:52:2c:9d:c5:ae:d9:6f:e2:52:
f9:d6:87:90:8b:30:06:6a:e7:4f:d8:fa:17:ae:fb:0b:c2:b8:
f2:86:a4:91:63:ee:4a:8d:a5:6d:52:ce:59:64:cd:aa:5b:5a:
38:fd:ad:f0:31:27:e6:37:26:a2:34:de:e2:b2:54:89:6e:9f:
ff:6b:2f:80:fc:27:63:07:47:04:28:e8:c2:1e:e8:cd:09:3b:
65:e9:8e:88:7e:c5:79:3e:4e:4c:e5:b3:e6:6d:f8:be:5e:0d:
54:f2:13:76:98:5e:74:eb:51:5e:eb:e2:a8:f8:77:a2:a8:6c:
2c:b1:c7:22:de:8a:e6:92:8f:22:0d:15:76:e7:07:ee:36:8d:
ca:db:4b:61:ce:1b:49:14:a9:18:59:8c:1e:31:68:44:a1:34:
92:42:32:10:84:98:ec:af:4d:1d:bf:03:e5:74:4c:35:63:57:
09:9d:49:39:c7:e0:9d:f8:b6:dc:dd:4f:5d:27:38:77:58:f6:
b1:b6:78:41:d0:7b:f8:2e:4b:45:0f:09:6e:3d:00:de:34:50:
c2:6c:a4:0a:22:e8:49:32:e9:9d:81:3c:43:5a:19:37:ce:69:
46:df:cf:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:04 2024 by rpki-client on console-fra.rpki-client.org