Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/72d226-c3b0-41f3-b4db-83fd7382ff13/1/9aTjlUVpePDtrAdeXotiFHqns38.roa
File: 9aTjlUVpePDtrAdeXotiFHqns38.roa (raw, json)
Hash identifier: HkvjAsP1t4LvvK1SWrDQPmSFzMw5/tmsdoDKuDraoXc=
Subject key identifier: F5:A4:E3:95:45:69:78:F0:ED:AC:07:5E:5E:8B:62:14:7A:A7:B3:7F
Certificate issuer: /CN=50b90a5e158ba0908fdc83cc4243fe40c6dab423
Certificate serial: 0B319466
Authority key identifier: 50:B9:0A:5E:15:8B:A0:90:8F:DC:83:CC:42:43:FE:40:C6:DA:B4:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ULkKXhWLoJCP3IPMQkP-QMbatCM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/72d226-c3b0-41f3-b4db-83fd7382ff13/1/9aTjlUVpePDtrAdeXotiFHqns38.roa
Signing time: Sat 14 May 2022 09:23:40 +0000
ROA not before: Sat 14 May 2022 09:23:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209968
IP address blocks: 2a09:be41::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 187798630 (0xb319466)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50b90a5e158ba0908fdc83cc4243fe40c6dab423
Validity
Not Before: May 14 09:23:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f5a4e395456978f0edac075e5e8b62147aa7b37f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:69:8d:63:dc:0a:8c:92:9c:a0:92:4d:34:ea:
52:62:d3:74:b8:e0:fb:4d:fd:30:94:c1:7a:26:2e:
ce:89:a4:dd:44:f3:7c:12:db:c1:06:c0:2a:23:2c:
01:8e:90:b4:f5:66:16:29:97:66:31:ab:40:6c:a2:
f7:e6:1c:57:96:d5:bf:cf:2b:fd:22:3e:35:fa:62:
25:b6:dc:22:a5:8f:cb:49:57:c4:63:49:9a:10:94:
90:35:05:f3:e2:a5:71:c6:9c:23:5a:0a:3b:46:df:
64:73:1f:da:62:6d:2a:24:20:ac:d4:54:27:1a:12:
b9:59:c8:1d:85:cb:ee:e6:e3:c4:c1:17:4b:8e:dd:
5f:c1:48:13:c2:9a:a9:ef:4a:cc:37:51:13:ba:cd:
4b:1b:ee:c5:d6:2e:95:0f:0d:99:c2:25:00:ee:96:
80:ef:75:ed:8c:45:6f:f3:89:0e:55:44:00:2b:74:
61:54:be:44:05:92:04:bb:08:55:49:6b:8a:dd:ab:
94:6b:26:ec:4f:27:d3:78:4e:ba:66:ed:e4:c1:a8:
ac:95:24:12:72:eb:3f:18:a1:05:fb:62:d6:96:8f:
b6:9e:42:97:29:e7:d7:3e:2b:36:2d:54:07:2a:92:
3f:79:65:12:69:d8:6c:7d:29:df:e9:0f:dd:81:76:
0b:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:A4:E3:95:45:69:78:F0:ED:AC:07:5E:5E:8B:62:14:7A:A7:B3:7F
X509v3 Authority Key Identifier:
keyid:50:B9:0A:5E:15:8B:A0:90:8F:DC:83:CC:42:43:FE:40:C6:DA:B4:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ULkKXhWLoJCP3IPMQkP-QMbatCM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/72d226-c3b0-41f3-b4db-83fd7382ff13/1/9aTjlUVpePDtrAdeXotiFHqns38.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/72d226-c3b0-41f3-b4db-83fd7382ff13/1/ULkKXhWLoJCP3IPMQkP-QMbatCM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:be41::/32
Signature Algorithm: sha256WithRSAEncryption
0e:d7:5f:fc:81:c6:0a:f3:c6:d7:06:e9:ba:2c:06:22:ab:49:
e9:cd:6e:43:0c:0e:0a:38:d3:d3:32:f1:93:18:2f:b9:47:51:
3d:9e:7d:58:db:bd:01:df:df:dd:91:1f:fb:be:fd:a0:29:5d:
8f:b5:45:8b:36:c8:e6:04:96:ca:1f:2f:e0:92:ac:99:d6:68:
5d:39:d1:7c:f4:fd:21:00:fd:5d:77:5b:4c:51:57:70:aa:63:
67:11:a5:28:97:b1:79:d8:60:80:67:b0:92:aa:25:79:83:d1:
2e:d1:5f:1e:0f:07:d2:b4:8c:2d:62:12:f1:40:21:48:34:ae:
9f:78:29:28:08:77:39:9a:e1:88:70:c9:2e:72:c7:71:ca:ae:
fb:b8:8f:0b:24:a7:b1:db:96:27:e2:29:67:14:56:64:16:11:
1e:f5:74:1d:e1:94:27:56:9f:91:10:12:b0:53:f6:d6:43:79:
11:8d:17:7d:cd:85:34:24:61:28:eb:04:3b:82:ab:e8:79:f4:
ba:4e:41:0a:07:a2:61:b3:58:e8:3b:85:e0:4e:47:9a:3a:20:
fe:7d:50:18:d9:68:44:8b:6f:2e:d5:ef:16:d7:70:d5:78:ff:
c8:0e:03:79:5d:f6:a3:4d:64:4e:d6:37:59:9f:7e:0b:f5:a8:
8c:17:62:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:44 2023 by rpki-client on console-ams.rpki-client.org