Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/72d226-c3b0-41f3-b4db-83fd7382ff13/1/x1PvsrfX_BZ_16qGdtpfv76wkvI.roa
File: x1PvsrfX_BZ_16qGdtpfv76wkvI.roa (raw, json)
Hash identifier: BDN6ILFjgXsugve1zjDOenkbzfnyGWC6iUE+LNSJfGQ=
Subject key identifier: C7:53:EF:B2:B7:D7:FC:16:7F:D7:AA:86:76:DA:5F:BF:BE:B0:92:F2
Certificate issuer: /CN=50b90a5e158ba0908fdc83cc4243fe40c6dab423
Certificate serial: 09EBE626
Authority key identifier: 50:B9:0A:5E:15:8B:A0:90:8F:DC:83:CC:42:43:FE:40:C6:DA:B4:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ULkKXhWLoJCP3IPMQkP-QMbatCM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/72d226-c3b0-41f3-b4db-83fd7382ff13/1/x1PvsrfX_BZ_16qGdtpfv76wkvI.roa
Signing time: Sat 01 Jan 2022 09:59:07 +0000
ROA not before: Sat 01 Jan 2022 09:59:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208577
IP address blocks: 2a09:be40:2900::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 166454822 (0x9ebe626)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50b90a5e158ba0908fdc83cc4243fe40c6dab423
Validity
Not Before: Jan 1 09:59:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c753efb2b7d7fc167fd7aa8676da5fbfbeb092f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:24:b4:98:2e:b1:8c:00:55:34:3d:33:40:56:
3d:fe:79:f8:bd:79:c1:cd:a0:ae:c9:69:b0:95:02:
25:48:88:11:b5:36:a2:f4:65:1b:5e:cc:b2:6a:1e:
13:4a:5f:ce:17:5d:53:6d:5a:16:6f:cb:eb:e5:8a:
d8:00:29:f5:82:a3:fd:05:83:c6:62:de:de:cc:e8:
dd:a6:c0:e4:ac:86:dd:ac:18:c3:77:f0:fc:4d:0d:
32:ca:2a:c7:13:d3:4f:b9:d5:95:f2:15:90:c0:cb:
d2:87:ea:27:5f:32:84:72:e6:fc:cc:2f:03:07:44:
1a:1f:cb:b8:7a:9b:c0:fe:d5:db:23:b9:6f:84:3c:
85:63:cc:dd:0d:9c:e5:42:54:e6:8b:e7:ef:59:17:
d9:59:d2:3a:f1:40:f8:ed:22:47:62:65:7f:59:25:
8d:32:a1:9b:2d:48:58:04:ab:53:02:a5:fa:fe:36:
90:de:ae:d8:16:47:97:81:5f:90:54:bf:1e:c2:8c:
8b:82:b9:04:5c:ab:7d:a3:09:da:79:ab:95:77:52:
fb:d2:14:e0:e1:27:8d:31:68:ba:af:53:20:08:87:
ae:da:e6:14:a3:1b:80:88:d8:0f:af:9a:69:1d:63:
8a:9a:d2:fe:e7:55:2f:79:b7:79:26:20:85:ea:0a:
99:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:53:EF:B2:B7:D7:FC:16:7F:D7:AA:86:76:DA:5F:BF:BE:B0:92:F2
X509v3 Authority Key Identifier:
keyid:50:B9:0A:5E:15:8B:A0:90:8F:DC:83:CC:42:43:FE:40:C6:DA:B4:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ULkKXhWLoJCP3IPMQkP-QMbatCM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/72d226-c3b0-41f3-b4db-83fd7382ff13/1/x1PvsrfX_BZ_16qGdtpfv76wkvI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/72d226-c3b0-41f3-b4db-83fd7382ff13/1/ULkKXhWLoJCP3IPMQkP-QMbatCM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:be40:2900::/40
Signature Algorithm: sha256WithRSAEncryption
ad:67:10:a8:aa:7b:30:23:65:a8:3b:54:00:dd:35:da:ed:7b:
9f:d4:5c:f5:06:dc:29:48:f0:76:39:aa:17:a3:8c:3f:4e:6d:
1d:5b:df:8f:15:81:49:ef:d4:6e:6e:51:74:a8:db:13:7a:2a:
49:10:2d:d7:5d:94:a8:ed:61:f9:33:6a:7a:f8:6d:b4:e0:c0:
63:57:f7:4b:27:bc:b3:88:87:64:d1:0b:98:6f:24:c3:35:ee:
5a:0e:c1:3c:29:e4:10:49:5e:85:48:b4:7d:28:8d:71:0e:aa:
42:1d:9f:08:af:3f:99:2d:99:21:61:fd:0b:1c:3b:75:4a:94:
75:74:ee:eb:12:74:71:46:80:81:2a:c9:d8:a7:c8:35:50:49:
cb:58:af:24:21:0f:9f:24:4e:13:a0:ea:0b:56:3f:42:a6:cb:
b5:77:e4:9a:f5:2a:7e:e2:ff:b2:d8:1f:95:8b:60:ee:8e:0f:
2b:af:53:41:11:a3:d4:b4:59:7c:bf:ed:0d:10:6a:02:c4:27:
db:5b:24:b2:61:a1:cc:d4:b0:18:62:f2:74:13:18:0c:f3:65:
19:90:6b:40:08:60:05:07:c8:da:1e:85:3f:39:2b:30:07:3e:
01:9b:16:96:da:79:65:8a:0f:18:15:d3:ac:87:69:58:be:13:
82:20:52:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:44 2023 by rpki-client on console-ams.rpki-client.org