Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/cbc50f-7cc8-48a2-8209-2f3c3d14b2bb/1/TM5QQ68Qz16z0i0qb6yACmqVqRE.roa
File: TM5QQ68Qz16z0i0qb6yACmqVqRE.roa (raw, json)
Hash identifier: tXAnA+w/G5cvVlAJfR2/Jd1LR/prToqobsT/PEawiIY=
Subject key identifier: 4C:CE:50:43:AF:10:CF:5E:B3:D2:2D:2A:6F:AC:80:0A:6A:95:A9:11
Certificate issuer: /CN=c161999ba0b281251926d189c6deaa02fa200aa6
Certificate serial: 018572BA5F108A9A8BE83EDE1CA9810FFDFF
Authority key identifier: C1:61:99:9B:A0:B2:81:25:19:26:D1:89:C6:DE:AA:02:FA:20:0A:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wWGZm6CygSUZJtGJxt6qAvogCqY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/cbc50f-7cc8-48a2-8209-2f3c3d14b2bb/1/TM5QQ68Qz16z0i0qb6yACmqVqRE.roa
Signing time: Mon 02 Jan 2023 13:44:54 +0000
ROA not before: Mon 02 Jan 2023 13:44:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49855
IP address blocks: 2001:678:3b4::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:5f:10:8a:9a:8b:e8:3e:de:1c:a9:81:0f:fd:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c161999ba0b281251926d189c6deaa02fa200aa6
Validity
Not Before: Jan 2 13:44:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4cce5043af10cf5eb3d22d2a6fac800a6a95a911
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:d9:f6:1e:40:79:a7:56:5b:f1:71:9d:cb:2a:
b0:83:3e:4a:f5:46:6f:6b:0c:e4:c0:45:5c:92:65:
2b:fc:d8:02:74:27:1e:b5:4f:de:91:22:68:4b:ff:
41:7c:38:39:a6:ba:f1:61:4a:4b:35:8f:36:c8:75:
8e:9c:8c:dd:8a:97:58:aa:62:93:45:8e:70:e1:10:
02:85:c1:f7:49:88:b9:a0:45:6d:3d:b0:5d:c8:38:
59:3a:99:f0:41:12:b8:cf:fd:66:e9:c0:7f:6a:7b:
3e:d0:9d:a8:b5:5e:75:4d:f3:7e:9d:9c:ad:8a:ba:
af:1a:ba:2c:c6:59:00:45:f7:6c:02:91:89:71:09:
3d:96:77:37:4a:f1:65:26:be:fe:a3:d6:42:e5:b5:
2e:1e:e0:2d:29:17:f8:7e:4a:9a:f5:42:a5:74:c5:
b1:8e:eb:16:b5:be:c4:e1:88:46:2c:d1:23:48:e1:
ac:76:51:4b:1c:81:7e:39:c2:fe:28:da:1d:cc:de:
a0:a3:fe:e9:25:8b:df:a8:16:90:be:40:9c:a5:aa:
20:4a:19:c7:ba:b6:01:fb:b2:7d:6b:31:08:46:5e:
70:22:df:68:8d:57:05:fe:98:e7:19:30:c1:93:5a:
4c:0a:22:1f:e5:e6:b8:06:93:12:cd:6f:df:c4:50:
ed:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:CE:50:43:AF:10:CF:5E:B3:D2:2D:2A:6F:AC:80:0A:6A:95:A9:11
X509v3 Authority Key Identifier:
keyid:C1:61:99:9B:A0:B2:81:25:19:26:D1:89:C6:DE:AA:02:FA:20:0A:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wWGZm6CygSUZJtGJxt6qAvogCqY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/cbc50f-7cc8-48a2-8209-2f3c3d14b2bb/1/TM5QQ68Qz16z0i0qb6yACmqVqRE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/cbc50f-7cc8-48a2-8209-2f3c3d14b2bb/1/wWGZm6CygSUZJtGJxt6qAvogCqY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:3b4::/48
Signature Algorithm: sha256WithRSAEncryption
4a:60:da:f9:c1:5b:40:af:30:33:50:5f:8b:b0:c4:4f:20:33:
9c:e0:86:53:7e:9d:cd:6b:d3:90:be:c9:c7:e3:93:34:9f:d2:
6f:a6:51:a5:df:40:fa:15:4e:0b:26:81:54:37:77:84:52:06:
1a:d2:52:00:ca:4b:34:1e:8c:c9:44:32:b1:66:0d:a9:ec:20:
00:bb:7b:9f:9d:59:a1:10:96:ff:e4:0b:e4:7d:dd:71:f7:e8:
a5:d4:89:7c:41:5f:ae:c3:97:3a:e3:bf:67:53:30:f3:7e:87:
ad:5a:89:78:eb:db:ea:f3:ad:40:03:06:3d:08:6a:52:3d:f1:
60:5e:dc:9f:61:36:db:72:da:f4:35:28:4a:76:a0:9e:17:41:
74:66:b6:a7:9f:8c:f4:38:70:08:92:61:6c:ac:ba:7b:10:25:
aa:2b:50:79:3c:fc:7c:d6:93:bc:8b:ef:cc:b0:0a:ff:9d:cb:
d2:d5:6a:f0:88:0b:8c:04:ab:e3:61:f9:d9:b8:f6:63:57:f3:
cd:7f:de:30:f3:47:d5:85:aa:bf:2b:5b:ed:88:ca:5b:3e:1b:
13:fb:95:a9:9f:78:a9:01:b6:c7:3c:09:ba:e2:0e:1e:ba:ec:
fe:7f:e2:37:e3:d6:45:d5:5e:14:68:20:53:fc:a9:06:c9:c9:
fc:6e:68:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:49 2024 by rpki-client on console-fra.rpki-client.org