Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f8e7d867-c35e-4e69-a815-ba1e9b336d62/2/AS204374.roa
File: AS204374.roa (raw, json)
Hash identifier: bNINfoabSid1daWiO6bzLQESGJrqXkqWW0rmG4+DaaE=
Subject key identifier: 6D:06:31:F0:09:1E:D8:84:B7:66:B4:D6:FA:5B:F1:25:52:8B:86:D2
Certificate issuer: /CN=d12ea65dee9873b5dcf3c6c0224faea6fcb8aea6
Certificate serial: 4B26B9361C60DA291A52ABD653FA0ECBFE445DDC
Authority key identifier: D1:2E:A6:5D:EE:98:73:B5:DC:F3:C6:C0:22:4F:AE:A6:FC:B8:AE:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0S6mXe6Yc7Xc88bAIk-upvy4rqY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f8e7d867-c35e-4e69-a815-ba1e9b336d62/2/AS204374.roa
Signing time: Sun 01 Jan 2023 23:59:18 +0000
ROA not before: Sun 01 Jan 2023 23:54:18 +0000
ROA not after: Sun 31 Dec 2023 23:59:18 +0000
asID: 204374
IP address blocks: 2a06:a005:5a7::/48 maxlen: 48
2a06:a005:85f::/48 maxlen: 48
2a06:a005:1090::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:26:b9:36:1c:60:da:29:1a:52:ab:d6:53:fa:0e:cb:fe:44:5d:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d12ea65dee9873b5dcf3c6c0224faea6fcb8aea6
Validity
Not Before: Jan 1 23:54:18 2023 GMT
Not After : Dec 31 23:59:18 2023 GMT
Subject: CN=6D0631F0091ED884B766B4D6FA5BF125528B86D2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:76:af:a1:9f:11:95:0c:71:c7:b3:8e:18:c2:
26:36:e5:9d:fc:5a:b6:ca:ca:64:69:9a:53:1e:b7:
9f:44:87:bf:98:72:02:f2:41:65:e8:05:75:9b:4a:
e6:96:51:fd:07:41:72:c0:a8:1c:ed:bb:bd:43:f0:
a7:46:00:53:8c:8b:ce:d7:b8:4e:61:9b:72:dc:ce:
ab:82:fc:cc:a5:44:63:22:24:c3:3e:bc:69:d7:22:
2b:80:84:77:99:99:19:1c:2b:9b:1d:e1:ed:79:55:
bb:59:f4:a0:4a:99:43:a5:39:f6:a8:08:12:d4:23:
bb:bb:ba:f9:1e:88:75:2a:a3:98:20:97:e0:e8:04:
bf:63:e4:19:d8:a1:65:01:77:b8:d1:65:14:6f:97:
fd:4e:20:40:16:a8:6a:71:fb:67:b5:e8:a4:b1:0d:
6a:b6:f2:fa:64:fc:29:88:74:9a:34:f8:9b:58:7b:
db:28:7a:18:72:0f:49:7f:77:51:63:9e:58:bf:57:
f7:03:58:ca:67:08:39:14:3f:6b:7a:f3:8a:ec:b0:
48:19:32:08:57:2d:db:e5:b3:cc:c4:cc:97:d2:00:
6a:df:3c:7b:fe:d0:ea:bd:87:00:15:4a:b3:b2:c2:
c3:b0:ef:2d:50:56:d2:58:36:c9:5d:7e:d1:75:4a:
49:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:06:31:F0:09:1E:D8:84:B7:66:B4:D6:FA:5B:F1:25:52:8B:86:D2
X509v3 Authority Key Identifier:
keyid:D1:2E:A6:5D:EE:98:73:B5:DC:F3:C6:C0:22:4F:AE:A6:FC:B8:AE:A6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f8e7d867-c35e-4e69-a815-ba1e9b336d62/2/D12EA65DEE9873B5DCF3C6C0224FAEA6FCB8AEA6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0S6mXe6Yc7Xc88bAIk-upvy4rqY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f8e7d867-c35e-4e69-a815-ba1e9b336d62/2/AS204374.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:5a7::/48
2a06:a005:85f::/48
2a06:a005:1090::/44
Signature Algorithm: sha256WithRSAEncryption
46:a3:64:c1:74:89:3e:d1:d7:41:02:df:bf:68:7a:10:96:1d:
d2:31:66:b2:5e:e1:35:e9:e1:2a:8a:49:2d:91:ed:b8:87:61:
dc:1f:f1:fb:24:f8:ee:39:aa:b9:12:fc:bb:f2:65:db:eb:16:
49:50:27:4b:17:74:da:08:d8:d9:8b:e6:09:ed:3c:b2:56:1d:
0e:eb:c0:db:75:db:4f:fb:d0:ed:31:c6:86:70:03:6f:20:02:
75:be:27:68:d5:74:71:b7:50:8b:8f:72:3a:59:0a:0e:a2:67:
1d:58:78:2a:ca:26:88:79:f4:44:8b:ec:15:b0:58:17:9c:73:
9c:0d:a4:09:b3:b8:70:86:ba:cf:36:b3:63:08:fa:0f:c2:64:
98:36:1b:94:fb:19:78:ca:fd:0c:cd:27:04:28:fe:8a:9a:10:
ee:d7:9c:ca:75:60:7e:17:ad:34:f7:d5:e3:54:8a:bc:3c:77:
07:49:d5:2c:29:bc:3c:11:2b:00:c9:9a:9b:a6:14:c6:85:93:
78:9b:b7:1c:d1:70:32:de:16:a8:82:fe:9f:be:25:17:0d:bb:
e7:60:62:ec:b4:47:5a:83:ee:21:d7:c3:37:eb:c5:ea:ee:32:
39:09:d6:df:64:92:07:f1:df:8f:56:ae:0c:de:8f:de:61:55:
ac:a1:37:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:01:08 2024 by rpki-client on console-ams.rpki-client.org