Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/30b225-a165-4fc3-9342-b337f7e90915/1/sj2T5A2i5ejEsrv5StTQg9k0i-Y.roa
File: sj2T5A2i5ejEsrv5StTQg9k0i-Y.roa (raw, json)
Hash identifier: 376ipLSj+sVlU2W8D49C7Z0IqHIO8hMukMBQ/Dhsc80=
Subject key identifier: B2:3D:93:E4:0D:A2:E5:E8:C4:B2:BB:F9:4A:D4:D0:83:D9:34:8B:E6
Certificate issuer: /CN=b146b28951a21163dc9651b54c23936fccacf47b
Certificate serial: 44BC42D9
Authority key identifier: B1:46:B2:89:51:A2:11:63:DC:96:51:B5:4C:23:93:6F:CC:AC:F4:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sUayiVGiEWPcllG1TCOTb8ys9Hs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/30b225-a165-4fc3-9342-b337f7e90915/1/sj2T5A2i5ejEsrv5StTQg9k0i-Y.roa
Signing time: Sat 01 Jan 2022 14:57:20 +0000
ROA not before: Sat 01 Jan 2022 14:57:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5491
IP address blocks: 2a02:188:1004::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1153188569 (0x44bc42d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b146b28951a21163dc9651b54c23936fccacf47b
Validity
Not Before: Jan 1 14:57:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b23d93e40da2e5e8c4b2bbf94ad4d083d9348be6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:fb:24:e1:2b:88:dd:70:c5:53:9b:ef:3e:52:
76:da:ac:da:6b:d6:0b:c0:70:b2:77:08:04:08:cd:
c1:ef:49:b1:86:b7:70:46:c7:05:8a:a7:cd:8f:33:
e9:c8:22:4c:99:a5:ee:8e:2f:c6:39:a4:f3:f1:23:
e5:be:b5:be:ac:82:67:f7:cc:e0:fa:15:4c:67:d4:
84:83:2b:db:c3:14:6c:c4:c5:fd:a5:9a:55:de:c6:
32:3f:3b:d3:c7:a0:b0:a6:de:06:9b:a4:0e:75:3b:
3d:44:01:69:22:17:3d:76:df:a8:e6:4b:3b:d8:06:
76:70:3f:4a:d4:1b:b9:79:9a:e9:a2:f2:3a:98:f4:
4f:36:29:11:73:5f:27:38:5a:a9:a6:da:2e:fd:03:
5b:6b:de:66:f6:b1:d2:48:09:0c:3f:a4:e1:b2:47:
7e:25:16:e2:7d:e7:71:ae:22:bc:7e:9a:84:36:8d:
85:b1:0e:cb:b2:0b:fd:bd:e2:7a:30:44:25:50:0f:
e1:17:0a:63:f4:92:98:c6:8f:d8:6e:1a:b1:fe:29:
1d:26:17:a8:a8:56:e8:50:54:c0:df:31:b6:6a:5f:
0a:0b:9c:07:22:59:94:51:27:e9:de:90:30:6a:d3:
41:aa:3c:c7:2c:68:96:ed:46:16:3e:f4:82:3b:48:
ad:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:3D:93:E4:0D:A2:E5:E8:C4:B2:BB:F9:4A:D4:D0:83:D9:34:8B:E6
X509v3 Authority Key Identifier:
keyid:B1:46:B2:89:51:A2:11:63:DC:96:51:B5:4C:23:93:6F:CC:AC:F4:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sUayiVGiEWPcllG1TCOTb8ys9Hs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/30b225-a165-4fc3-9342-b337f7e90915/1/sj2T5A2i5ejEsrv5StTQg9k0i-Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/30b225-a165-4fc3-9342-b337f7e90915/1/sUayiVGiEWPcllG1TCOTb8ys9Hs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:188:1004::/48
Signature Algorithm: sha256WithRSAEncryption
92:47:a3:dd:46:ae:cc:61:b0:dd:4c:d3:62:fa:ec:47:9b:92:
fc:6a:95:67:fc:4d:a3:02:1e:9b:60:aa:a6:e1:64:09:03:7f:
ee:ac:4c:53:0c:5e:8c:cd:e3:4e:3b:90:f6:ee:4f:18:2b:68:
56:fd:77:20:16:97:19:23:0d:37:46:36:f6:c4:1a:34:8b:9a:
0e:93:44:c6:d3:02:5a:79:53:01:c5:29:c6:c8:0a:65:df:50:
8f:65:88:e1:a1:f5:aa:5e:ff:33:e1:da:c4:ac:b2:5f:35:95:
7a:97:58:25:f4:e1:63:68:3f:d8:4b:71:e0:72:e3:45:63:31:
f2:ad:17:c8:ad:36:06:f5:e1:b0:e1:39:ce:f3:d4:f3:b9:18:
15:73:5e:0f:85:c1:54:f3:b2:35:a8:03:78:19:1a:b7:26:c6:
3f:c4:2a:39:d5:0c:30:fb:2c:80:84:d8:69:e6:b3:1b:3b:ef:
70:d8:b8:4a:b6:f7:3e:98:fc:bf:d0:b0:b7:7c:8b:e9:8b:c8:
dc:ba:16:51:24:8a:f1:59:af:4f:d9:b5:c0:f6:b0:d2:7d:94:
c8:a6:62:fc:4c:4e:0e:37:b5:fa:9d:21:61:f9:b4:03:c8:1b:
66:16:d6:67:6b:98:0f:7e:1b:02:eb:05:6b:b6:c8:1c:28:93:
2f:09:60:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:12 2024 by rpki-client on console-ams.rpki-client.org