Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/72d226-c3b0-41f3-b4db-83fd7382ff13/1/kYNLFly_U7IAi4q4wYhEssI3H9g.roa
File: kYNLFly_U7IAi4q4wYhEssI3H9g.roa (raw, json)
Hash identifier: Tt4yS7xUhhgtgQWtGQoGUOoNjw4tbZmaMAuv6hHzN74=
Subject key identifier: 91:83:4B:16:5C:BF:53:B2:00:8B:8A:B8:C1:88:44:B2:C2:37:1F:D8
Certificate issuer: /CN=50b90a5e158ba0908fdc83cc4243fe40c6dab423
Certificate serial: 09ED2BF7
Authority key identifier: 50:B9:0A:5E:15:8B:A0:90:8F:DC:83:CC:42:43:FE:40:C6:DA:B4:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ULkKXhWLoJCP3IPMQkP-QMbatCM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/72d226-c3b0-41f3-b4db-83fd7382ff13/1/kYNLFly_U7IAi4q4wYhEssI3H9g.roa
Signing time: Sat 01 Jan 2022 09:59:08 +0000
ROA not before: Sat 01 Jan 2022 09:59:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208810
IP address blocks: 2a09:be40:6b00::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 166538231 (0x9ed2bf7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50b90a5e158ba0908fdc83cc4243fe40c6dab423
Validity
Not Before: Jan 1 09:59:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=91834b165cbf53b2008b8ab8c18844b2c2371fd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:bf:bc:d0:bf:af:d0:d6:de:f6:9c:64:05:44:
61:d9:85:a4:b0:30:6c:d5:38:71:af:9b:cf:55:86:
3e:88:97:fe:fc:d9:c7:5a:6c:39:fa:3a:25:52:bb:
d4:3f:cb:95:3e:b9:dd:62:b0:58:cb:3f:1a:6c:0e:
bc:8c:36:bb:ac:1d:b8:60:24:49:06:cd:e5:59:7f:
74:b3:42:07:33:ad:ae:cf:6b:e9:8b:6b:50:de:eb:
51:48:60:68:0f:05:c5:cb:ca:d1:cf:6f:3b:6f:de:
de:77:41:37:6a:21:e2:3d:ba:e2:6b:56:f1:10:b7:
e6:b2:7e:60:3b:3f:cb:01:26:0f:89:b4:ce:cf:e7:
01:b4:22:a3:7f:e4:7d:f1:6f:1e:0a:0a:05:39:09:
bd:b5:3d:37:21:68:1a:5a:fc:d5:8b:41:96:2b:53:
4e:a8:9c:6a:75:20:70:13:d8:7e:96:a1:66:03:81:
2f:6c:ec:7f:0d:b8:9d:fd:5c:a9:09:1a:e1:40:31:
64:54:7e:85:d2:5b:a6:e7:3b:0c:1d:ff:5c:cd:84:
5e:46:bf:dc:9a:74:6d:e8:ae:9f:9c:ee:ca:f3:c0:
07:36:b3:ee:f3:4b:6d:1d:42:a3:3a:be:4e:dc:6e:
87:12:f2:dd:ab:c6:23:a9:95:13:bd:f8:d6:a5:e7:
f3:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:83:4B:16:5C:BF:53:B2:00:8B:8A:B8:C1:88:44:B2:C2:37:1F:D8
X509v3 Authority Key Identifier:
keyid:50:B9:0A:5E:15:8B:A0:90:8F:DC:83:CC:42:43:FE:40:C6:DA:B4:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ULkKXhWLoJCP3IPMQkP-QMbatCM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/72d226-c3b0-41f3-b4db-83fd7382ff13/1/kYNLFly_U7IAi4q4wYhEssI3H9g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/72d226-c3b0-41f3-b4db-83fd7382ff13/1/ULkKXhWLoJCP3IPMQkP-QMbatCM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:be40:6b00::/40
Signature Algorithm: sha256WithRSAEncryption
8e:53:ba:35:dd:49:86:3f:19:6b:ab:54:2b:d3:a3:c5:b6:3c:
10:e3:d4:51:d5:4d:12:27:5f:0d:ab:eb:85:ff:0d:c1:e8:43:
6b:86:23:b7:78:95:78:3a:c7:57:2d:f6:4a:40:46:ff:c4:19:
10:6d:6a:ef:9d:e5:4b:b7:aa:ab:6d:4c:86:78:6f:8c:fd:7a:
03:64:5d:60:c0:79:ba:55:a3:4a:f1:e0:f4:62:2a:d6:53:fe:
06:69:8d:26:fa:6e:4f:33:f7:ae:4f:3d:3d:1e:61:51:e1:b3:
e4:86:a0:a5:f6:2c:dd:7e:7a:f5:78:a1:e3:68:7e:5b:47:56:
bd:59:da:7b:31:b9:dc:5c:f1:a5:89:7e:05:3e:9a:9c:00:d3:
57:68:ad:27:53:cb:9d:ae:0a:7b:41:74:04:c7:6f:d3:4a:4b:
51:e4:b6:6e:c2:e7:38:a9:c5:19:89:67:39:32:97:df:46:fa:
c2:db:67:11:53:91:af:f0:c3:b6:6b:9a:1a:c1:95:26:f2:c5:
7f:dc:7c:56:6a:c3:44:47:2f:bc:21:59:f3:1d:f1:33:e8:ef:
57:f1:b4:d2:c2:eb:ba:3d:ca:06:d7:2e:5e:7f:df:26:19:d0:
53:88:fb:3a:12:2d:a3:fd:b3:40:36:86:ab:63:d8:d9:75:78:
87:80:54:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:53 2023 by rpki-client on console-fra.rpki-client.org