Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/d47f87-b34f-49ce-bf1e-ac8236bdc88c/1/E--US1EUknJdBkko3uE62zvNuYA.roa
File: E--US1EUknJdBkko3uE62zvNuYA.roa (raw, json)
Hash identifier: yzIXC3M/6J+6Gx0Ob5GRehpbicmfuo8roJrf5EKvmFc=
Subject key identifier: 13:EF:94:4B:51:14:92:72:5D:06:49:28:DE:E1:3A:DB:3B:CD:B9:80
Certificate issuer: /CN=4b7cc1f58bdd258c8d92d342bee6a2ad4ce3f744
Certificate serial: 01856DCAF9872D67D056E28D81C946212586
Authority key identifier: 4B:7C:C1:F5:8B:DD:25:8C:8D:92:D3:42:BE:E6:A2:AD:4C:E3:F7:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S3zB9YvdJYyNktNCvuairUzj90Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/d47f87-b34f-49ce-bf1e-ac8236bdc88c/1/E--US1EUknJdBkko3uE62zvNuYA.roa
Signing time: Sun 01 Jan 2023 14:44:56 +0000
ROA not before: Sun 01 Jan 2023 14:44:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44812
IP address blocks: 2a09:3706::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:ca:f9:87:2d:67:d0:56:e2:8d:81:c9:46:21:25:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b7cc1f58bdd258c8d92d342bee6a2ad4ce3f744
Validity
Not Before: Jan 1 14:44:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=13ef944b511492725d064928dee13adb3bcdb980
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:60:c6:5f:64:d9:c7:c4:53:49:62:41:37:7f:
36:1b:e0:d6:f5:78:b2:de:e5:dd:7d:2f:73:02:b6:
2b:ee:c6:79:b1:0b:9e:a9:60:94:05:75:6f:7d:fd:
0a:2b:cd:03:37:7b:36:54:f5:19:c3:96:dd:e0:e9:
11:66:b5:8b:d3:2e:5c:b7:49:dd:c8:92:bc:fd:f2:
9d:c9:7e:c7:79:39:aa:b9:f8:22:ba:42:a3:fd:8a:
c9:19:74:e2:1c:10:95:8f:37:74:7f:24:c2:c9:4c:
19:83:12:61:e8:8c:c2:bd:5f:b2:c8:e9:50:7f:66:
7a:47:74:90:8a:09:78:3c:a9:04:bd:f7:d8:70:55:
7b:bf:65:cd:ca:14:fd:65:0f:c6:53:c3:36:36:dd:
35:46:bd:30:55:89:26:3d:a1:cf:32:71:88:d5:38:
b8:85:af:1b:c6:e6:91:64:9c:04:07:ed:17:f0:8d:
8b:3c:6a:00:b0:db:21:ba:13:d5:3e:f2:f9:87:9b:
0c:f9:20:a1:f0:a0:a9:d4:e7:d4:56:bf:08:2d:ea:
c5:fa:70:71:4c:2e:93:93:69:6b:98:f2:9c:79:2d:
df:39:05:5d:ee:b9:2d:a3:c4:eb:f6:e3:0e:1b:45:
7f:9b:b9:05:fc:ce:2c:5c:08:e1:04:60:ee:a4:e9:
1c:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:EF:94:4B:51:14:92:72:5D:06:49:28:DE:E1:3A:DB:3B:CD:B9:80
X509v3 Authority Key Identifier:
keyid:4B:7C:C1:F5:8B:DD:25:8C:8D:92:D3:42:BE:E6:A2:AD:4C:E3:F7:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S3zB9YvdJYyNktNCvuairUzj90Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/d47f87-b34f-49ce-bf1e-ac8236bdc88c/1/E--US1EUknJdBkko3uE62zvNuYA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/d47f87-b34f-49ce-bf1e-ac8236bdc88c/1/S3zB9YvdJYyNktNCvuairUzj90Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:3706::/32
Signature Algorithm: sha256WithRSAEncryption
36:f3:60:da:e0:e7:6a:be:2d:aa:57:4d:7b:85:5d:19:4d:b0:
2f:eb:99:e5:47:a3:9a:51:ba:1f:d1:b8:34:aa:35:2b:0c:93:
15:d8:f5:96:5f:36:10:b2:4b:99:22:b2:56:8c:55:20:33:08:
58:7a:86:e2:7c:eb:a7:55:40:65:52:53:81:c8:5f:2d:b6:80:
44:43:fd:c7:5f:7a:3b:a8:fa:ec:73:5f:e2:2f:6c:ef:f5:1d:
d3:db:c5:c5:3e:cd:eb:02:1b:3b:32:35:29:92:a3:00:3b:6f:
22:dc:0f:08:54:4b:17:a1:cd:ca:b2:0b:f3:86:f0:fe:1d:95:
72:d9:8f:5b:47:40:04:ff:99:26:93:82:e2:5f:d8:48:9c:1c:
57:23:ab:06:a8:e2:75:7a:a2:5e:e3:99:95:f9:de:b2:8a:89:
6a:3f:74:27:be:b6:43:fc:5e:cf:9c:50:3e:97:2c:be:16:62:
2d:01:95:87:20:29:0a:c8:29:a3:79:f7:be:19:d3:47:29:92:
0f:fb:25:10:74:92:37:8e:79:68:1b:fc:93:ef:65:82:d5:d5:
87:03:a6:cb:9d:5d:6f:2f:90:a1:1c:2e:c1:8e:e9:e3:0e:74:
04:33:17:ec:c4:f1:eb:b4:bc:32:aa:0d:66:84:6f:03:40:10:
e5:6e:bc:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:32 2024 by rpki-client on console-fra.rpki-client.org