Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/d47f87-b34f-49ce-bf1e-ac8236bdc88c/1/SEGNekl87QEftlDMdkG2jDt-WsM.roa
File: SEGNekl87QEftlDMdkG2jDt-WsM.roa (raw, json)
Hash identifier: c0bRYvC6L/nhK8SgsicklUrDlAPCGGt8paLfDuFqfm4=
Subject key identifier: 48:41:8D:7A:49:7C:ED:01:1F:B6:50:CC:76:41:B6:8C:3B:7E:5A:C3
Certificate issuer: /CN=4b7cc1f58bdd258c8d92d342bee6a2ad4ce3f744
Certificate serial: 01868A0B31AB14F45DE44B7CE760401C6A19
Authority key identifier: 4B:7C:C1:F5:8B:DD:25:8C:8D:92:D3:42:BE:E6:A2:AD:4C:E3:F7:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S3zB9YvdJYyNktNCvuairUzj90Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/d47f87-b34f-49ce-bf1e-ac8236bdc88c/1/SEGNekl87QEftlDMdkG2jDt-WsM.roa
Signing time: Sat 25 Feb 2023 19:27:14 +0000
ROA not before: Sat 25 Feb 2023 19:27:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59504
IP address blocks: 2a09:3701::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:8a:0b:31:ab:14:f4:5d:e4:4b:7c:e7:60:40:1c:6a:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b7cc1f58bdd258c8d92d342bee6a2ad4ce3f744
Validity
Not Before: Feb 25 19:27:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=48418d7a497ced011fb650cc7641b68c3b7e5ac3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:ed:4d:b8:7b:2c:7d:8e:8a:6a:20:d3:6c:73:
e9:3e:32:a3:c5:c5:e5:a7:a6:a2:8a:23:50:a6:44:
7c:60:ab:1c:92:3c:bb:df:c3:52:33:95:f5:12:fa:
e6:7b:88:d3:cd:22:6b:3e:4a:00:ed:01:9b:f9:db:
f3:90:e3:9b:8d:ad:fb:1f:09:09:7d:7b:c3:55:a4:
10:41:98:f3:e7:a2:06:33:3d:f5:a1:93:42:20:05:
66:2a:3a:52:75:05:e3:eb:c7:36:9f:a7:3a:9c:df:
15:43:f4:a3:4e:06:f6:82:5f:8e:41:75:4b:ea:81:
af:42:67:d3:40:ec:13:fe:20:5b:dd:53:d7:6b:0c:
34:89:82:8f:eb:d9:ee:5d:85:a8:8f:33:37:4c:31:
75:8c:21:53:3f:ec:76:2a:09:04:12:fa:29:bd:43:
b4:0f:30:4b:9b:12:41:dc:e5:f7:0e:ee:b4:4a:e6:
4a:17:a1:a4:9c:b3:62:c0:be:86:f5:6f:25:c7:9a:
2a:9e:54:ee:6b:45:2e:34:1b:62:16:dd:a0:a5:60:
c8:2b:3d:5f:db:c1:90:31:41:ac:eb:55:77:38:de:
e0:35:51:f4:22:0c:d1:a9:d8:a5:90:bf:18:20:44:
e3:27:da:5e:5b:c9:75:2a:76:45:2b:07:bb:3a:c0:
a9:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:41:8D:7A:49:7C:ED:01:1F:B6:50:CC:76:41:B6:8C:3B:7E:5A:C3
X509v3 Authority Key Identifier:
keyid:4B:7C:C1:F5:8B:DD:25:8C:8D:92:D3:42:BE:E6:A2:AD:4C:E3:F7:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S3zB9YvdJYyNktNCvuairUzj90Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/d47f87-b34f-49ce-bf1e-ac8236bdc88c/1/SEGNekl87QEftlDMdkG2jDt-WsM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/d47f87-b34f-49ce-bf1e-ac8236bdc88c/1/S3zB9YvdJYyNktNCvuairUzj90Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:3701::/32
Signature Algorithm: sha256WithRSAEncryption
a0:75:2e:62:e6:4d:28:87:4c:26:91:12:29:62:4f:99:7f:a1:
dd:6d:b5:50:76:d7:a7:ce:ba:3a:77:d2:a7:a2:be:f2:09:f9:
8e:0d:e3:d9:6b:62:ac:48:7f:ac:b5:13:2c:bd:8a:8b:f2:c3:
eb:ad:15:6f:5b:35:15:e2:13:3f:f9:38:e0:01:2c:ca:42:13:
a0:09:fa:c9:df:fe:65:23:f9:a8:d9:21:bd:a1:80:5f:de:b0:
e7:1b:88:91:b7:d5:d7:1c:a0:78:26:a5:b9:3e:08:31:db:cd:
b7:72:84:8c:40:42:aa:6e:97:e6:ec:04:50:8f:44:21:1c:d1:
2f:12:78:c9:92:08:1f:6f:cf:f0:18:40:35:6a:69:37:aa:46:
80:7c:61:5b:1f:3e:fe:87:fb:3b:bd:64:9b:0c:d7:5a:3a:b4:
4b:66:ec:c6:1b:d6:6f:8d:fa:a7:93:1d:2c:92:b6:c6:62:08:
bc:71:d0:e6:53:20:d0:cb:a4:13:31:7c:0b:eb:26:5b:0f:3f:
0e:57:48:15:5f:ca:e4:f8:11:54:40:7d:9e:24:60:de:6b:82:
d7:db:42:85:10:69:95:ff:ae:17:60:01:15:c3:d4:f4:60:ec:
57:48:3d:c1:55:84:7e:41:13:4e:fd:19:44:57:0c:3a:60:f4:
2e:7c:c6:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:32 2024 by rpki-client on console-fra.rpki-client.org