Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/72d226-c3b0-41f3-b4db-83fd7382ff13/1/s5-7S0Y6hDHbsDze9ErKdcg8l6I.roa
File: s5-7S0Y6hDHbsDze9ErKdcg8l6I.roa (raw, json)
Hash identifier: N+GkYuOqUfW00ZHplPWfo5uQSD7Z+H+O+BQYvIv+3G0=
Subject key identifier: B3:9F:BB:4B:46:3A:84:31:DB:B0:3C:DE:F4:4A:CA:75:C8:3C:97:A2
Certificate issuer: /CN=50b90a5e158ba0908fdc83cc4243fe40c6dab423
Certificate serial: 09EB4004
Authority key identifier: 50:B9:0A:5E:15:8B:A0:90:8F:DC:83:CC:42:43:FE:40:C6:DA:B4:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ULkKXhWLoJCP3IPMQkP-QMbatCM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/72d226-c3b0-41f3-b4db-83fd7382ff13/1/s5-7S0Y6hDHbsDze9ErKdcg8l6I.roa
Signing time: Sat 01 Jan 2022 09:59:07 +0000
ROA not before: Sat 01 Jan 2022 09:59:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208483
IP address blocks: 2a09:be40:3000::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 166412292 (0x9eb4004)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50b90a5e158ba0908fdc83cc4243fe40c6dab423
Validity
Not Before: Jan 1 09:59:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b39fbb4b463a8431dbb03cdef44aca75c83c97a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:32:d6:58:f2:d9:bc:a9:34:12:8c:d4:fe:62:
25:85:14:95:5c:59:c1:84:e6:21:68:a1:89:4a:22:
4d:67:67:3e:7b:a6:52:c1:72:60:35:74:fd:15:ef:
fd:62:24:1a:fc:ea:17:a9:fd:85:a5:00:f5:f0:c2:
51:5e:d1:9e:e0:c0:48:5b:2d:37:85:43:ef:6f:a1:
9e:05:71:9e:0f:53:9a:16:37:60:f0:6b:78:36:b9:
41:f5:28:c2:5c:b3:a5:52:a5:f1:eb:0c:cc:9a:4f:
6e:69:94:56:e8:69:05:64:d6:d5:fc:4b:f3:98:ce:
64:a8:19:db:0a:2d:ca:d1:63:bc:90:d3:70:16:ee:
33:ed:e1:f1:92:b2:c0:f4:0c:0e:a1:22:79:08:18:
86:11:56:a6:a4:15:b6:bb:fb:e4:6a:c4:a6:ab:f8:
64:bb:25:a5:a6:f8:16:f7:3e:1c:a3:ea:fb:b3:e7:
9b:cb:61:4e:a4:4d:0a:e2:09:f6:40:7c:87:9d:ff:
c5:84:8e:45:58:c2:e9:10:96:24:b3:cd:c2:02:02:
07:29:2a:4f:69:21:2a:3a:d3:20:5f:40:9a:05:1f:
cd:ec:4b:35:20:5f:21:90:dc:c4:cf:71:a6:ab:fb:
80:ae:de:fa:cf:d3:e0:f0:e1:43:61:cf:ee:4c:32:
11:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:9F:BB:4B:46:3A:84:31:DB:B0:3C:DE:F4:4A:CA:75:C8:3C:97:A2
X509v3 Authority Key Identifier:
keyid:50:B9:0A:5E:15:8B:A0:90:8F:DC:83:CC:42:43:FE:40:C6:DA:B4:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ULkKXhWLoJCP3IPMQkP-QMbatCM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/72d226-c3b0-41f3-b4db-83fd7382ff13/1/s5-7S0Y6hDHbsDze9ErKdcg8l6I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/72d226-c3b0-41f3-b4db-83fd7382ff13/1/ULkKXhWLoJCP3IPMQkP-QMbatCM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:be40:3000::/40
Signature Algorithm: sha256WithRSAEncryption
9e:50:80:b4:66:5d:70:a0:3f:1c:c4:c5:62:d3:00:ef:4e:86:
95:45:9b:72:63:ac:6b:98:c2:82:7d:46:ec:76:24:f6:5b:41:
63:f4:86:ff:ae:49:7f:2b:f0:a4:8a:db:4c:4b:71:89:7f:e3:
c9:61:49:45:2d:ca:e2:f7:0f:11:71:86:e6:b1:9c:fe:fe:e0:
34:6e:7c:1c:af:f0:13:0a:cc:9a:26:47:84:58:5a:22:81:ca:
b5:62:7c:9e:1c:8e:cc:88:59:b7:fa:5d:a4:f9:61:cb:5e:77:
90:07:67:a4:e5:0b:7a:8b:ff:b9:a1:d8:4c:3c:c7:a5:d6:bf:
31:c8:c6:cd:d8:00:7f:00:bb:35:56:18:9b:fe:b1:d8:d1:8c:
cd:7d:8d:61:6d:81:c6:f0:fc:4e:28:4d:5e:e2:92:8d:ac:51:
e1:bb:ed:22:71:99:49:69:10:d4:f9:ae:20:92:f1:f6:dc:a1:
eb:84:52:62:bf:7c:fe:3b:0c:87:57:56:af:84:5b:97:55:cb:
73:02:fc:ff:c9:8d:99:33:77:24:44:29:d6:76:a9:56:00:13:
79:fb:30:0f:72:7e:62:e6:12:cd:a6:5a:b2:a1:2d:f9:02:f5:
13:57:f8:9f:89:2f:5c:b9:bc:1c:43:74:a6:88:5e:a4:e5:d6:
1d:19:cd:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:44 2023 by rpki-client on console-ams.rpki-client.org