Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/72d226-c3b0-41f3-b4db-83fd7382ff13/1/EdqqDtQ8KSFcwW63Q-yc5yY49GQ.roa
File: EdqqDtQ8KSFcwW63Q-yc5yY49GQ.roa (raw, json)
Hash identifier: f7Afge3HY2bq844PWsDMkX7xaTiUUVRSCE8Ik0wZSi0=
Subject key identifier: 11:DA:AA:0E:D4:3C:29:21:5C:C1:6E:B7:43:EC:9C:E7:26:38:F4:64
Certificate issuer: /CN=50b90a5e158ba0908fdc83cc4243fe40c6dab423
Certificate serial: 09F07FCF
Authority key identifier: 50:B9:0A:5E:15:8B:A0:90:8F:DC:83:CC:42:43:FE:40:C6:DA:B4:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ULkKXhWLoJCP3IPMQkP-QMbatCM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/72d226-c3b0-41f3-b4db-83fd7382ff13/1/EdqqDtQ8KSFcwW63Q-yc5yY49GQ.roa
Signing time: Sat 01 Jan 2022 09:59:11 +0000
ROA not before: Sat 01 Jan 2022 09:59:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211942
IP address blocks: 2a09:be40:be00::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 166756303 (0x9f07fcf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50b90a5e158ba0908fdc83cc4243fe40c6dab423
Validity
Not Before: Jan 1 09:59:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=11daaa0ed43c29215cc16eb743ec9ce72638f464
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:39:34:4f:22:ed:db:72:64:99:1d:44:90:a3:
cc:2b:4c:4b:39:84:55:88:f0:ba:bb:37:86:ac:a9:
a5:d1:9e:02:2f:90:46:44:7f:7c:ef:20:55:7b:ce:
44:8f:fb:f8:76:c5:86:97:19:bf:f2:8c:97:2d:e7:
96:0e:d9:05:72:66:40:53:1c:59:5c:9d:c5:6d:59:
d3:a5:e4:21:f5:9e:8c:7b:29:e1:19:30:3e:2e:57:
38:0e:a8:0c:83:4c:4e:68:bf:10:fb:80:b5:ff:24:
8b:12:e7:93:f9:fa:f3:c7:12:b9:e5:fd:db:29:c8:
d3:ca:56:d1:43:4c:3c:b8:ec:41:08:20:28:53:7d:
e9:2f:5b:8f:e7:f8:1b:60:2b:bf:5e:14:d4:95:84:
ef:46:91:60:f3:4f:ac:3b:99:27:f0:2d:df:77:7a:
e1:52:f6:3d:50:0e:b8:e2:7f:23:d7:8f:38:1d:5c:
6b:c0:6e:bb:c5:3b:a4:e7:da:5d:1f:0a:8f:8e:e8:
d7:fb:f2:72:e7:99:66:e5:d1:02:00:58:f7:00:0d:
c2:28:5f:0a:3a:c1:7b:ed:76:d3:c4:69:61:e7:c7:
45:81:1b:13:d9:b7:ee:b7:95:fa:6b:c5:06:4f:0c:
e8:67:72:35:0a:98:cb:28:76:34:85:9f:71:47:1e:
e0:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:DA:AA:0E:D4:3C:29:21:5C:C1:6E:B7:43:EC:9C:E7:26:38:F4:64
X509v3 Authority Key Identifier:
keyid:50:B9:0A:5E:15:8B:A0:90:8F:DC:83:CC:42:43:FE:40:C6:DA:B4:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ULkKXhWLoJCP3IPMQkP-QMbatCM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/72d226-c3b0-41f3-b4db-83fd7382ff13/1/EdqqDtQ8KSFcwW63Q-yc5yY49GQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/72d226-c3b0-41f3-b4db-83fd7382ff13/1/ULkKXhWLoJCP3IPMQkP-QMbatCM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:be40:be00::/40
Signature Algorithm: sha256WithRSAEncryption
23:d7:60:64:3e:b2:2c:26:8b:72:7c:12:2c:20:9a:7b:8d:bf:
a2:68:00:5c:2d:e2:d2:7d:5f:16:9d:9b:49:03:b7:9e:0b:9e:
fb:ea:b5:6c:35:3e:2d:08:50:85:74:40:eb:7a:88:1b:62:fb:
bb:ef:b7:ab:20:98:1f:63:d6:4d:5f:34:93:03:9d:6a:9d:3a:
d1:90:47:06:89:4f:13:2e:8d:2c:7d:83:df:dd:f2:7c:9b:df:
64:01:e3:0d:e6:80:99:55:84:4c:27:4e:0f:87:67:93:da:e4:
b0:21:68:35:bb:0e:d1:22:09:62:35:82:db:9c:cd:05:16:96:
36:33:53:52:2f:33:8d:5c:b5:0a:7e:5c:60:55:cb:aa:09:ca:
6d:87:8c:e0:47:74:3c:68:e0:79:ca:97:ce:bb:a6:a0:01:27:
d0:04:a0:0f:d7:44:e2:a5:60:56:bc:fe:1e:68:9c:bc:7f:21:
9a:71:52:19:a5:13:8b:25:5f:af:0d:e7:a8:a0:55:53:47:b1:
25:0a:47:99:81:be:86:03:15:dd:26:ec:e8:6c:33:a2:fc:a1:
b4:20:13:f1:1c:08:31:e6:36:c1:41:1f:e5:d9:8e:a4:94:e9:
5e:88:d7:a6:91:34:12:13:72:58:ea:62:a6:a8:b0:0d:6f:fc:
bf:8d:8b:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:44 2023 by rpki-client on console-ams.rpki-client.org