Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/72d226-c3b0-41f3-b4db-83fd7382ff13/1/k1HKJay6xA66KJGNxQq3FD_2iRE.roa
File: k1HKJay6xA66KJGNxQq3FD_2iRE.roa (raw, json)
Hash identifier: fgOI7Aq0Zk8ZYr1it310GhZPpydgZfhZt1IxMrpnOtY=
Subject key identifier: 93:51:CA:25:AC:BA:C4:0E:BA:28:91:8D:C5:0A:B7:14:3F:F6:89:11
Certificate issuer: /CN=50b90a5e158ba0908fdc83cc4243fe40c6dab423
Certificate serial: 09EFAAD9
Authority key identifier: 50:B9:0A:5E:15:8B:A0:90:8F:DC:83:CC:42:43:FE:40:C6:DA:B4:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ULkKXhWLoJCP3IPMQkP-QMbatCM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/72d226-c3b0-41f3-b4db-83fd7382ff13/1/k1HKJay6xA66KJGNxQq3FD_2iRE.roa
Signing time: Sat 01 Jan 2022 09:59:10 +0000
ROA not before: Sat 01 Jan 2022 09:59:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209109
IP address blocks: 2a09:be40:4500::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 166701785 (0x9efaad9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50b90a5e158ba0908fdc83cc4243fe40c6dab423
Validity
Not Before: Jan 1 09:59:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9351ca25acbac40eba28918dc50ab7143ff68911
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:45:f7:bf:cf:a8:7e:5c:a0:1a:84:0a:8d:84:
e0:8b:37:54:9c:4e:f1:de:8f:81:b6:70:80:40:41:
40:93:40:7f:8b:6a:fc:d4:e5:6e:54:eb:03:0d:0a:
6d:96:24:c8:8c:78:fd:81:b4:c4:9d:46:3d:72:c9:
50:be:96:46:8d:65:c6:61:ed:fc:6a:50:00:8f:1f:
0b:b7:06:18:a0:48:28:58:93:26:88:84:5f:98:79:
1a:2f:32:55:a1:c3:e8:f5:42:c9:f5:a2:66:70:2b:
ab:46:e0:c7:56:e4:46:61:65:d6:ad:fa:2b:8c:59:
52:6e:31:bc:e2:e9:14:80:61:d4:ff:27:0b:72:09:
55:83:75:43:8a:ef:c7:2c:6e:b0:26:8a:c6:ec:78:
29:5b:3d:03:92:5b:13:b8:03:aa:d2:77:55:88:48:
b3:76:19:25:1a:7e:ca:33:aa:81:7b:57:b4:dc:ae:
b0:fc:cd:b4:b3:6e:eb:fb:c5:37:3b:88:8f:cc:0b:
af:0b:79:bb:11:f8:67:20:0b:9d:b8:e5:49:88:5b:
23:ce:d5:b4:52:24:6a:a0:95:12:a3:1c:ed:8c:45:
90:26:e3:35:cd:04:d3:3b:fc:9a:71:f0:3e:9e:0d:
99:64:3e:57:34:5e:b1:b7:59:37:ce:12:eb:06:4a:
8a:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:51:CA:25:AC:BA:C4:0E:BA:28:91:8D:C5:0A:B7:14:3F:F6:89:11
X509v3 Authority Key Identifier:
keyid:50:B9:0A:5E:15:8B:A0:90:8F:DC:83:CC:42:43:FE:40:C6:DA:B4:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ULkKXhWLoJCP3IPMQkP-QMbatCM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/72d226-c3b0-41f3-b4db-83fd7382ff13/1/k1HKJay6xA66KJGNxQq3FD_2iRE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/72d226-c3b0-41f3-b4db-83fd7382ff13/1/ULkKXhWLoJCP3IPMQkP-QMbatCM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:be40:4500::/40
Signature Algorithm: sha256WithRSAEncryption
ad:ab:d5:5a:73:32:a8:27:2c:a6:f0:0b:34:26:f6:6e:bf:b8:
0c:6b:38:ec:b4:ce:5f:1b:ed:46:74:45:97:20:92:d4:b0:2d:
cf:a1:bb:d3:b1:ac:36:a2:b7:fa:1c:52:51:ae:b3:13:89:20:
4e:dd:5b:5a:3f:05:3f:1f:69:3f:ff:33:8d:c1:e4:e0:9e:bb:
2a:82:fd:2d:61:59:ef:ef:09:55:25:bf:26:f5:7c:57:a8:3a:
30:18:fb:74:80:2b:75:9b:31:ef:95:3c:0c:bc:28:12:2b:ff:
09:35:0f:c5:13:03:3c:7e:08:e5:27:14:c7:f1:33:d5:a7:fa:
9a:a7:74:82:59:62:44:e3:44:9d:92:00:ad:6a:c2:ab:3a:d0:
6d:cd:09:3d:25:46:91:f9:fe:74:8c:34:fc:d0:d5:ca:c7:25:
cc:12:95:da:54:59:7c:83:6b:ac:99:34:1a:04:1c:b6:ce:74:
25:40:cb:09:ab:d0:15:de:55:ad:ff:a0:fe:2b:14:62:fc:70:
83:e4:ad:d2:fd:aa:01:85:b9:51:0b:dc:e1:77:38:ac:64:fc:
2b:22:53:79:88:c6:15:f0:ec:f1:91:da:68:52:59:34:8f:ff:
18:3e:b2:0d:aa:18:da:8b:47:c2:ae:cc:e3:af:2d:22:0c:8c:
9d:0c:6b:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:53 2023 by rpki-client on console-fra.rpki-client.org