Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/72d226-c3b0-41f3-b4db-83fd7382ff13/1/l4YBYgCADDFzycZHwjKEGzRU1Ew.roa
File: l4YBYgCADDFzycZHwjKEGzRU1Ew.roa (raw, json)
Hash identifier: gWjDO1TT26Efut+0xOho1kdP6OK11Pvqy+3lk0qnJng=
Subject key identifier: 97:86:01:62:00:80:0C:31:73:C9:C6:47:C2:32:84:1B:34:54:D4:4C
Certificate issuer: /CN=50b90a5e158ba0908fdc83cc4243fe40c6dab423
Certificate serial: 09F26F89
Authority key identifier: 50:B9:0A:5E:15:8B:A0:90:8F:DC:83:CC:42:43:FE:40:C6:DA:B4:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ULkKXhWLoJCP3IPMQkP-QMbatCM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/72d226-c3b0-41f3-b4db-83fd7382ff13/1/l4YBYgCADDFzycZHwjKEGzRU1Ew.roa
Signing time: Sat 01 Jan 2022 09:59:12 +0000
ROA not before: Sat 01 Jan 2022 09:59:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212557
IP address blocks: 2a09:be40:3610::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 166883209 (0x9f26f89)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50b90a5e158ba0908fdc83cc4243fe40c6dab423
Validity
Not Before: Jan 1 09:59:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9786016200800c3173c9c647c232841b3454d44c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:c7:a6:ea:a3:26:9e:b2:ad:d9:76:0f:82:65:
7a:e7:f7:ff:f8:7a:a0:d4:4c:0a:51:51:8d:92:4f:
a4:05:d5:44:f5:d2:50:66:c1:cf:84:b2:a6:9a:a0:
0f:24:0b:f6:7d:68:e8:4d:6b:51:ed:0d:f2:00:d3:
6f:85:29:66:cc:a3:bb:6c:29:83:05:d7:0f:30:ba:
c4:a0:c4:76:1f:a7:eb:ad:60:26:a0:2d:f4:18:03:
4e:1f:dc:69:d9:79:84:6e:01:eb:f9:81:cf:61:e3:
c4:b1:6f:d6:ea:15:30:84:d9:18:8f:28:73:48:de:
23:8d:45:10:bd:08:fe:4d:92:a9:dd:58:9c:77:06:
05:57:3b:be:00:4f:fb:3d:a3:96:67:63:da:4d:ed:
ea:29:02:f4:78:89:64:32:a9:ab:a8:9b:16:dc:5a:
92:5f:cf:a6:9e:86:ac:9f:f1:84:a9:62:e6:f8:8f:
f7:9c:dd:37:1f:f7:0d:bb:d3:16:3a:53:96:d5:0f:
51:0d:d0:ad:27:88:63:1e:e9:8e:d6:4a:0b:12:45:
f3:97:c5:53:3d:83:5a:46:b5:a9:e1:a0:39:f4:4b:
3e:b4:13:14:b1:35:f1:36:1e:09:93:c3:de:4f:62:
53:cb:42:26:3d:77:1a:3e:37:25:0c:d6:f4:2d:e0:
be:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:86:01:62:00:80:0C:31:73:C9:C6:47:C2:32:84:1B:34:54:D4:4C
X509v3 Authority Key Identifier:
keyid:50:B9:0A:5E:15:8B:A0:90:8F:DC:83:CC:42:43:FE:40:C6:DA:B4:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ULkKXhWLoJCP3IPMQkP-QMbatCM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/72d226-c3b0-41f3-b4db-83fd7382ff13/1/l4YBYgCADDFzycZHwjKEGzRU1Ew.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/72d226-c3b0-41f3-b4db-83fd7382ff13/1/ULkKXhWLoJCP3IPMQkP-QMbatCM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:be40:3610::/44
Signature Algorithm: sha256WithRSAEncryption
42:18:09:74:eb:e4:41:1b:e5:08:d8:fb:61:08:52:35:06:72:
cf:0b:21:a8:b4:4e:7c:de:99:0f:4f:18:37:15:3a:f3:fe:88:
5d:54:59:30:b6:bf:c0:19:e2:02:c6:bb:22:9c:a4:ea:fe:f7:
d5:0f:f1:c8:60:4c:2d:be:79:6c:b2:2c:78:fb:b6:17:14:ee:
44:1c:d6:66:12:58:48:7c:7e:31:62:80:a3:bd:9e:8f:52:82:
3d:8f:d1:bc:af:44:d4:1a:8e:4e:6b:e7:9b:d9:f4:17:36:df:
90:66:34:47:09:f8:f3:b7:4e:a5:60:14:21:9a:ce:d1:ba:84:
f2:e3:30:dd:79:0c:be:01:18:bd:ba:22:bc:20:6b:b4:a6:5d:
90:d8:fd:27:f2:b7:49:5b:3c:fc:24:e7:85:e8:8d:f3:0c:a9:
69:74:04:86:7f:3f:a6:95:9c:ff:b4:bb:f2:54:68:a8:f8:47:
f9:37:36:eb:a4:2f:85:8d:a7:8e:13:8a:6e:d3:07:fc:a7:5b:
11:a8:e7:8e:80:9e:e2:c7:49:e7:b8:f2:15:db:75:e5:75:25:
7b:dd:59:3c:f6:9c:7c:9b:d0:18:3e:bb:ff:e1:9e:48:ae:27:
1c:8f:b7:ec:d2:a3:fa:40:ac:c7:24:b8:75:a0:f3:af:cf:51:
42:82:9c:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:53 2023 by rpki-client on console-fra.rpki-client.org