Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f8e7d867-c35e-4e69-a815-ba1e9b336d62/2/AS204333.roa
File: AS204333.roa (raw, json)
Hash identifier: /kQ/t2F1lUbteOtphfPbFqSm4vihiFuNO/yyGT4+2y0=
Subject key identifier: D8:49:38:C2:C4:D8:45:6F:81:02:70:94:EF:99:02:C1:40:95:E0:ED
Certificate issuer: /CN=d12ea65dee9873b5dcf3c6c0224faea6fcb8aea6
Certificate serial: 1FEB08058A861BAFFF684FDA659162569603AE19
Authority key identifier: D1:2E:A6:5D:EE:98:73:B5:DC:F3:C6:C0:22:4F:AE:A6:FC:B8:AE:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0S6mXe6Yc7Xc88bAIk-upvy4rqY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f8e7d867-c35e-4e69-a815-ba1e9b336d62/2/AS204333.roa
Signing time: Sun 01 Jan 2023 23:59:24 +0000
ROA not before: Sun 01 Jan 2023 23:54:24 +0000
ROA not after: Sun 31 Dec 2023 23:59:24 +0000
asID: 204333
IP address blocks: 2a06:a005:d21::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:eb:08:05:8a:86:1b:af:ff:68:4f:da:65:91:62:56:96:03:ae:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d12ea65dee9873b5dcf3c6c0224faea6fcb8aea6
Validity
Not Before: Jan 1 23:54:24 2023 GMT
Not After : Dec 31 23:59:24 2023 GMT
Subject: CN=D84938C2C4D8456F81027094EF9902C14095E0ED
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:d1:b6:23:ea:2a:24:55:4e:65:d6:55:8a:7d:
49:0a:fa:fe:a9:d7:70:ee:3a:5f:36:95:a9:68:6a:
b8:5f:e5:96:65:24:15:c2:3c:04:46:f6:c0:5b:b8:
ad:07:f6:bd:ee:bb:f2:fb:ef:e4:d3:4a:ad:c1:51:
74:cc:6e:e3:2a:55:3f:ad:8b:cb:af:4d:59:1c:6b:
1a:17:36:57:35:d3:b9:52:06:46:99:f5:80:6c:f7:
27:ba:fa:bc:fa:e8:45:0d:ad:99:a6:20:ec:8e:9e:
31:74:c6:21:b0:68:10:39:08:67:ac:5f:9c:11:eb:
fd:8e:b9:aa:9e:89:e3:f4:2f:3b:c6:04:f9:3e:7f:
9d:e0:64:8b:86:d1:eb:45:9e:41:f6:24:e8:06:a1:
f6:e7:29:08:1b:7a:c0:34:c5:3f:f7:35:79:d1:5c:
34:63:7c:6b:32:9e:41:c0:60:66:3c:57:ef:6e:4f:
47:09:d6:5c:e5:39:e7:31:12:68:25:e5:80:95:a3:
03:94:1c:1e:8a:50:96:56:41:5f:ce:26:0b:4e:b3:
27:97:e6:34:31:5e:0a:48:97:fe:3e:a4:46:be:b9:
2b:5f:3d:75:ab:43:2d:16:c6:30:26:49:04:ab:c7:
ee:24:ea:9b:3b:22:3a:eb:cb:82:87:ca:69:a3:54:
e7:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:49:38:C2:C4:D8:45:6F:81:02:70:94:EF:99:02:C1:40:95:E0:ED
X509v3 Authority Key Identifier:
keyid:D1:2E:A6:5D:EE:98:73:B5:DC:F3:C6:C0:22:4F:AE:A6:FC:B8:AE:A6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f8e7d867-c35e-4e69-a815-ba1e9b336d62/2/D12EA65DEE9873B5DCF3C6C0224FAEA6FCB8AEA6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0S6mXe6Yc7Xc88bAIk-upvy4rqY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f8e7d867-c35e-4e69-a815-ba1e9b336d62/2/AS204333.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:d21::/48
Signature Algorithm: sha256WithRSAEncryption
8a:5c:04:94:30:4e:f8:40:16:53:38:2a:db:56:a6:33:c1:bc:
c9:07:2b:22:0f:fd:ba:3d:f4:0f:43:90:c6:a1:3d:bb:20:7c:
f6:c5:8b:09:65:84:51:00:3b:d9:0c:be:a5:4c:4a:d0:16:1a:
6e:0b:42:55:f7:e2:98:62:55:1a:fb:41:2d:5e:2c:2a:cd:66:
10:79:53:1e:7b:75:c3:fa:4f:ec:59:7e:e2:9e:49:18:bc:43:
89:f3:31:0b:ae:66:47:ee:5a:c6:c8:94:31:98:47:f6:40:88:
cb:6d:6c:72:84:36:48:4f:e2:79:dd:8b:df:72:5b:40:95:87:
5b:09:a1:03:7f:5f:7e:63:eb:13:b5:25:98:d2:18:22:67:4f:
21:18:c9:85:12:36:80:35:c5:46:cc:a4:56:33:10:18:52:c8:
49:e6:89:0d:1f:04:db:43:4d:4c:d9:73:ac:0e:d0:47:9b:b0:
6f:a0:c0:d3:ff:31:17:f7:55:90:4e:cd:9b:de:e2:1d:ee:b5:
1d:01:63:2f:03:19:b6:f3:b0:1d:c1:25:5a:6c:09:75:e9:eb:
8d:78:7c:ac:06:16:12:97:22:ac:ea:36:6b:52:91:06:29:16:
57:5c:37:50:b1:73:80:cf:d3:6a:c4:a3:21:8e:96:ee:c1:ee:
82:e4:6b:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:21 2024 by rpki-client on console-fra.rpki-client.org