Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/11b7b9-1fa6-4c51-a075-85572d652a7b/1/K8Ueaj6U5p0SD0oNf9evGHwfuOM.roa
File: K8Ueaj6U5p0SD0oNf9evGHwfuOM.roa (raw, json)
Hash identifier: nX22Q9S81UZ521eMmHv8hVsF09DLBdaKZHik34deGiY=
Subject key identifier: 2B:C5:1E:6A:3E:94:E6:9D:12:0F:4A:0D:7F:D7:AF:18:7C:1F:B8:E3
Certificate issuer: /CN=45afe0d73419f8aade65d2c7115c01420472ba5c
Certificate serial: 01856F5DE58EF2BA19155B9DF1AFC55F6317
Authority key identifier: 45:AF:E0:D7:34:19:F8:AA:DE:65:D2:C7:11:5C:01:42:04:72:BA:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ra_g1zQZ-KreZdLHEVwBQgRyulw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/11b7b9-1fa6-4c51-a075-85572d652a7b/1/K8Ueaj6U5p0SD0oNf9evGHwfuOM.roa
Signing time: Sun 01 Jan 2023 22:05:02 +0000
ROA not before: Sun 01 Jan 2023 22:05:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 22773
IP address blocks: 2a12:be80::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:5d:e5:8e:f2:ba:19:15:5b:9d:f1:af:c5:5f:63:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=45afe0d73419f8aade65d2c7115c01420472ba5c
Validity
Not Before: Jan 1 22:05:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2bc51e6a3e94e69d120f4a0d7fd7af187c1fb8e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:41:83:c4:ab:8f:37:85:02:d6:f2:ce:d2:36:
c5:cb:eb:3e:dd:24:93:30:13:f8:4c:fa:69:41:8f:
83:55:5f:44:6a:72:61:d1:bf:27:fd:73:a5:b7:5c:
43:a7:e4:65:f8:51:be:f4:83:0a:0e:31:6e:3d:e0:
81:e7:3a:a7:8b:1c:31:69:2f:a6:9b:25:ef:0e:8a:
bc:07:da:bb:33:c1:9c:f5:1f:5e:7e:88:c3:51:5e:
5b:d8:11:92:d1:4f:ef:67:4d:a9:9c:3c:e6:3a:98:
07:e4:45:63:1d:06:df:43:db:25:e2:51:25:0e:ff:
cd:d9:f2:c8:8b:c1:f8:58:ef:57:5e:d9:0c:db:5c:
b8:4b:d6:08:d2:6f:28:6b:1b:b8:2f:e8:79:be:f8:
36:57:2b:9a:3c:26:9e:76:7a:2d:d3:0b:2a:ec:89:
03:ba:aa:65:70:0b:d9:59:cf:99:de:9e:5e:5e:f2:
63:22:d5:a9:0f:0a:82:8c:7e:6f:e3:68:77:d3:24:
17:20:2b:a1:2e:59:95:37:c8:27:d2:8f:e2:92:75:
a3:14:0c:7c:76:f1:e2:98:3d:64:58:57:41:3f:79:
42:da:b2:cc:ca:9d:b4:e1:0e:39:63:62:88:2b:95:
16:30:68:0b:01:8e:75:bc:72:2f:b4:f4:1e:03:53:
8d:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:C5:1E:6A:3E:94:E6:9D:12:0F:4A:0D:7F:D7:AF:18:7C:1F:B8:E3
X509v3 Authority Key Identifier:
keyid:45:AF:E0:D7:34:19:F8:AA:DE:65:D2:C7:11:5C:01:42:04:72:BA:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ra_g1zQZ-KreZdLHEVwBQgRyulw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/11b7b9-1fa6-4c51-a075-85572d652a7b/1/K8Ueaj6U5p0SD0oNf9evGHwfuOM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/11b7b9-1fa6-4c51-a075-85572d652a7b/1/Ra_g1zQZ-KreZdLHEVwBQgRyulw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:be80::/29
Signature Algorithm: sha256WithRSAEncryption
5d:98:ed:11:d0:1a:a3:f9:fa:46:77:36:e2:f2:08:39:d2:15:
6b:91:e0:42:3f:4e:05:a8:d2:ac:c4:a3:c4:23:c6:2f:70:f6:
5b:82:20:23:b2:18:27:eb:f4:4e:f6:6b:38:94:2c:fb:03:4d:
e5:85:60:15:30:81:2b:64:71:44:07:29:ae:45:3f:38:c6:7e:
e2:3c:4a:e0:be:d0:46:57:94:0f:a9:0b:cd:81:c9:fe:ba:3c:
0d:18:2c:bb:14:33:6e:b6:d8:a4:24:f9:29:34:09:a9:de:7c:
33:53:cf:6d:71:04:3b:3e:27:67:00:26:80:78:55:1d:01:22:
66:51:90:5d:ac:40:74:30:84:a9:45:6e:1c:35:00:99:57:7c:
25:1f:6e:b0:dc:23:60:3f:e4:48:51:15:9d:dd:39:d7:de:6f:
16:7c:ee:69:0c:48:25:33:00:99:34:2b:e2:83:16:eb:5a:2d:
7a:f6:a4:b2:66:10:55:ee:5a:6a:06:f0:2d:2e:5a:43:cf:f9:
1b:89:28:e8:c9:5d:a7:50:e0:47:bf:a8:1c:34:8a:79:fd:c6:
e6:c0:31:5d:23:3c:9d:af:6e:6d:7c:49:7f:7e:92:02:bc:d4:
66:6d:27:61:c9:e7:83:bf:8c:a1:19:be:55:8f:b1:0f:5a:bc:
78:38:02:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:13 2024 by rpki-client on console-ams.rpki-client.org