Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f8e7d867-c35e-4e69-a815-ba1e9b336d62/2/AS203169.roa
File: AS203169.roa (raw, json)
Hash identifier: yBjqLFk/3Nj9//jfpBUu0Bek960WihlK/aewsFwYtC0=
Subject key identifier: 74:BE:EE:D4:21:57:DF:D9:EE:C0:31:76:B5:DF:7E:2A:20:C0:06:42
Certificate issuer: /CN=d12ea65dee9873b5dcf3c6c0224faea6fcb8aea6
Certificate serial: 6BC61965787F072C66361F4A7AFBDA34157A33D5
Authority key identifier: D1:2E:A6:5D:EE:98:73:B5:DC:F3:C6:C0:22:4F:AE:A6:FC:B8:AE:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0S6mXe6Yc7Xc88bAIk-upvy4rqY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f8e7d867-c35e-4e69-a815-ba1e9b336d62/2/AS203169.roa
Signing time: Sun 01 Jan 2023 23:59:17 +0000
ROA not before: Sun 01 Jan 2023 23:54:17 +0000
ROA not after: Sun 31 Dec 2023 23:59:17 +0000
asID: 203169
IP address blocks: 2a06:a005:485::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:c6:19:65:78:7f:07:2c:66:36:1f:4a:7a:fb:da:34:15:7a:33:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d12ea65dee9873b5dcf3c6c0224faea6fcb8aea6
Validity
Not Before: Jan 1 23:54:17 2023 GMT
Not After : Dec 31 23:59:17 2023 GMT
Subject: CN=74BEEED42157DFD9EEC03176B5DF7E2A20C00642
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:fe:d2:e5:0b:27:77:a8:e3:69:bd:71:26:59:
62:6c:b7:28:ec:36:d1:eb:6a:05:ab:6a:84:99:83:
2f:c1:c0:ad:9c:96:47:4f:d2:4c:3b:31:b7:1e:56:
da:19:eb:a3:74:74:d1:e0:12:7e:fc:97:a6:1d:6b:
f6:94:f0:8d:1d:3b:a8:5a:ed:60:4f:59:ec:98:dc:
bf:4f:73:e8:c7:12:7d:f6:5f:23:29:9b:c8:14:f3:
9c:3b:45:75:9b:83:03:e5:cf:cc:75:13:c6:6a:36:
29:34:43:35:33:7f:11:82:44:11:84:c5:5f:e8:43:
14:d5:36:58:37:72:d7:2e:3f:2b:7b:07:87:39:ce:
5c:58:0b:94:1f:31:3b:d3:21:0b:f2:11:73:de:c7:
92:23:1a:47:85:01:ee:74:0c:bd:ee:78:c7:1e:11:
fb:43:77:09:da:d2:e1:05:a8:69:63:b8:6b:5c:ec:
d9:6e:a8:7d:d3:5a:71:3e:03:39:b2:4e:60:a1:e0:
01:4d:73:c3:05:fc:04:95:30:08:ac:4d:3e:a8:b3:
e2:a2:77:8f:63:74:8a:da:cb:e0:63:6b:61:8f:41:
50:a2:29:f2:64:3f:c2:09:33:c3:77:ab:7f:b1:e1:
b0:32:71:cc:8b:80:30:38:ee:7c:88:bc:3e:d0:cb:
00:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:BE:EE:D4:21:57:DF:D9:EE:C0:31:76:B5:DF:7E:2A:20:C0:06:42
X509v3 Authority Key Identifier:
keyid:D1:2E:A6:5D:EE:98:73:B5:DC:F3:C6:C0:22:4F:AE:A6:FC:B8:AE:A6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f8e7d867-c35e-4e69-a815-ba1e9b336d62/2/D12EA65DEE9873B5DCF3C6C0224FAEA6FCB8AEA6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0S6mXe6Yc7Xc88bAIk-upvy4rqY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f8e7d867-c35e-4e69-a815-ba1e9b336d62/2/AS203169.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:485::/48
Signature Algorithm: sha256WithRSAEncryption
23:12:54:27:44:ca:f7:f4:15:48:78:5b:46:5f:d8:4e:0e:f8:
03:46:36:c8:b6:84:43:fb:ca:76:86:d1:93:b5:1d:d1:23:df:
e9:d0:75:36:2f:f4:b9:38:f7:55:a7:32:19:5a:f5:78:73:f0:
30:cc:54:3d:12:d3:fb:5a:99:0a:a6:ef:8e:08:99:c3:81:7f:
aa:5a:2b:c4:46:59:08:96:9a:d8:4d:74:67:72:30:a9:54:94:
f2:63:06:64:16:16:57:12:72:cc:bd:02:8d:92:d2:56:b0:3d:
9f:64:70:31:36:3a:01:e3:bc:a5:4f:45:e0:f9:5b:5c:98:13:
17:d1:45:d8:2e:18:13:d4:86:e5:75:a1:b6:4b:3f:77:a2:79:
ce:d7:cd:0a:56:19:80:f3:40:35:b8:f3:31:98:93:dc:09:94:
c7:fc:eb:37:66:d6:24:58:11:d2:64:04:54:dd:80:11:da:99:
c8:7f:0e:11:eb:f5:0f:10:28:c0:39:fd:9d:82:e1:ff:54:92:
e8:89:c6:02:b4:40:cf:b1:d0:84:c2:58:4d:9c:1c:8b:eb:26:
75:c9:ef:26:67:0f:a2:a0:8c:53:fa:aa:6c:c9:83:34:db:aa:
6c:14:16:b7:a1:dd:75:5c:2d:ac:b3:54:75:06:10:32:a5:ef:
0d:d6:82:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:21 2024 by rpki-client on console-fra.rpki-client.org