Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/238408-55bb-45e2-bb7a-495428f9d101/1/QPOI408iC0FSNp6n17zuRd2zr5s.roa
File: QPOI408iC0FSNp6n17zuRd2zr5s.roa (raw, json)
Hash identifier: vYiVWax11D9jd2vpkqjDnlS1c6+BSH8IY6l4H/PvTFg=
Subject key identifier: 40:F3:88:E3:4F:22:0B:41:52:36:9E:A7:D7:BC:EE:45:DD:B3:AF:9B
Certificate issuer: /CN=dc1753c511a81546326624d831e004d13f345787
Certificate serial: 089E8D13
Authority key identifier: DC:17:53:C5:11:A8:15:46:32:66:24:D8:31:E0:04:D1:3F:34:57:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3BdTxRGoFUYyZiTYMeAE0T80V4c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/238408-55bb-45e2-bb7a-495428f9d101/1/QPOI408iC0FSNp6n17zuRd2zr5s.roa
Signing time: Sat 01 Jan 2022 05:00:03 +0000
ROA not before: Sat 01 Jan 2022 05:00:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15600
IP address blocks: 2001:67c:98::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 144608531 (0x89e8d13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc1753c511a81546326624d831e004d13f345787
Validity
Not Before: Jan 1 05:00:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=40f388e34f220b4152369ea7d7bcee45ddb3af9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:91:1b:d2:2d:b4:a0:81:58:17:13:9e:00:74:
8d:39:46:d6:3a:94:95:ce:68:e0:0d:32:63:81:07:
e8:47:c3:ef:b1:db:7a:fa:86:fd:48:23:5c:b9:7c:
04:c7:96:fc:72:67:aa:24:01:e4:b4:7e:2f:dd:53:
26:48:50:d2:0d:f2:96:67:5b:ab:30:1a:7a:56:2b:
d9:22:f2:f3:2d:4e:63:67:3b:74:a5:76:b8:d5:da:
7f:c5:c7:37:58:b5:8c:4f:0f:92:6e:59:0a:c1:e2:
97:ba:24:06:5a:68:c9:71:b9:f9:b6:72:6c:9e:ee:
0c:ad:a0:02:55:d0:86:be:ba:3e:a7:69:f1:5e:62:
1e:f0:e5:1d:7f:52:e9:3e:99:47:f9:0b:fc:a9:c7:
7f:bd:b2:e9:6d:78:7f:db:be:1a:7f:c5:84:66:73:
ae:6f:27:53:46:50:ba:4d:8b:14:2d:ee:4c:a8:e1:
9e:8b:23:50:ac:99:e5:a2:5c:38:1d:70:f8:b2:8a:
97:31:f5:83:cd:60:1e:21:0d:54:fa:21:87:c3:59:
bd:a2:79:aa:a4:c8:5c:a8:b0:1b:9d:f8:6e:fb:90:
b6:62:70:7f:40:8d:4b:5e:7f:32:82:0a:c4:43:fa:
34:43:bb:1d:5e:2e:0c:f8:76:ff:c6:20:50:6c:45:
20:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:F3:88:E3:4F:22:0B:41:52:36:9E:A7:D7:BC:EE:45:DD:B3:AF:9B
X509v3 Authority Key Identifier:
keyid:DC:17:53:C5:11:A8:15:46:32:66:24:D8:31:E0:04:D1:3F:34:57:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3BdTxRGoFUYyZiTYMeAE0T80V4c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/238408-55bb-45e2-bb7a-495428f9d101/1/QPOI408iC0FSNp6n17zuRd2zr5s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/238408-55bb-45e2-bb7a-495428f9d101/1/3BdTxRGoFUYyZiTYMeAE0T80V4c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:98::/48
Signature Algorithm: sha256WithRSAEncryption
0d:5d:0f:36:c8:15:8e:ef:8b:7d:17:2a:34:24:c4:dd:80:fb:
0d:94:6d:9f:ba:54:1a:24:f2:e8:0c:27:7e:24:59:0f:6d:32:
53:06:67:11:57:5a:02:e5:88:30:4c:f1:fe:31:2a:e2:92:a6:
5c:ee:4f:3e:9d:fa:5f:22:98:82:fd:72:b4:9c:0d:f0:dd:4b:
d1:ac:f2:2a:af:76:fa:8f:ec:eb:bb:89:29:7d:6e:19:85:de:
32:e8:32:8e:a1:05:4c:3c:7c:93:5b:88:e2:59:5d:b9:20:c8:
7d:fb:1b:74:5d:85:f0:ff:de:7a:40:63:c3:33:30:f6:dd:7f:
43:57:c1:29:a9:9f:43:b0:ea:d2:15:0f:ee:d2:c3:e6:18:1a:
43:f5:bb:55:14:62:f9:e0:fb:d9:04:20:5f:62:d8:4b:89:75:
69:46:78:ca:bc:35:43:48:90:bc:00:83:b8:39:20:cf:fc:61:
d0:bd:17:c8:60:99:c8:4f:c3:b6:26:87:c7:3f:23:9e:fb:c9:
ac:60:74:28:77:02:17:d6:c2:cf:bb:6f:e8:2e:bb:26:95:39:
b1:c5:2f:28:a3:62:65:8e:40:4b:e5:24:91:98:79:06:b5:ab:
aa:46:4a:35:fb:35:5d:e4:1f:d1:64:8b:26:dc:bf:19:c3:ad:
c3:c9:3e:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:06 2023 by rpki-client on console-ams.rpki-client.org