Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f8e7d867-c35e-4e69-a815-ba1e9b336d62/2/AS204518.roa
File: AS204518.roa (raw, json)
Hash identifier: GwR6z5fRRtCvublamK6xebcVqPKs3/N2SIzVezmKJ84=
Subject key identifier: 66:49:ED:79:4C:69:A9:EB:5B:1F:F7:4F:62:B5:D4:A3:D2:E3:20:DD
Certificate issuer: /CN=d12ea65dee9873b5dcf3c6c0224faea6fcb8aea6
Certificate serial: 094E1E04B9253E1F3D1733ADE21A4EE21945E950
Authority key identifier: D1:2E:A6:5D:EE:98:73:B5:DC:F3:C6:C0:22:4F:AE:A6:FC:B8:AE:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0S6mXe6Yc7Xc88bAIk-upvy4rqY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f8e7d867-c35e-4e69-a815-ba1e9b336d62/2/AS204518.roa
Signing time: Sun 01 Jan 2023 23:59:16 +0000
ROA not before: Sun 01 Jan 2023 23:54:16 +0000
ROA not after: Sun 31 Dec 2023 23:59:16 +0000
asID: 204518
IP address blocks: 2a06:a005:d90::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:4e:1e:04:b9:25:3e:1f:3d:17:33:ad:e2:1a:4e:e2:19:45:e9:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d12ea65dee9873b5dcf3c6c0224faea6fcb8aea6
Validity
Not Before: Jan 1 23:54:16 2023 GMT
Not After : Dec 31 23:59:16 2023 GMT
Subject: CN=6649ED794C69A9EB5B1FF74F62B5D4A3D2E320DD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:6b:99:51:e5:df:9a:c3:45:1f:b7:7d:e9:3b:
55:32:d5:36:3d:56:af:c2:d0:24:e5:d3:9e:63:dc:
b3:59:f7:45:52:07:4d:ed:dc:45:83:22:d4:6e:80:
57:62:4a:f5:5c:c4:5b:df:02:58:16:d4:2c:ed:f5:
93:ed:91:f2:c8:2a:5f:5d:71:1d:cb:04:51:fd:13:
0b:6a:77:ab:9a:5c:4f:0f:99:f6:de:09:83:a5:af:
1f:68:26:cd:82:8b:ca:7b:40:fa:2f:f0:10:b0:68:
b6:7c:dc:6d:3f:09:65:cf:c8:bc:d0:34:93:cd:f9:
6f:2c:3a:45:cf:28:6d:44:86:e8:f7:3d:6d:47:ca:
d5:2e:4d:a3:fc:dd:cd:fe:4f:61:a8:37:11:42:26:
29:e9:5e:ce:d5:e1:da:6b:83:62:00:e9:5d:4a:72:
d3:c7:91:73:27:73:fe:7a:bb:65:b6:af:65:bb:b5:
4d:49:2a:ec:36:0d:3d:93:dc:fd:41:91:33:d6:b2:
1f:29:42:9f:65:03:19:3d:9e:92:f6:61:f3:45:d6:
90:37:35:7b:1e:39:eb:82:10:f0:d3:78:a2:9f:a7:
f4:f3:7e:97:65:c5:18:27:68:a1:7c:af:79:6b:16:
f3:5c:35:7c:fc:5f:21:f6:7a:d0:50:3e:d5:41:c3:
85:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:49:ED:79:4C:69:A9:EB:5B:1F:F7:4F:62:B5:D4:A3:D2:E3:20:DD
X509v3 Authority Key Identifier:
keyid:D1:2E:A6:5D:EE:98:73:B5:DC:F3:C6:C0:22:4F:AE:A6:FC:B8:AE:A6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f8e7d867-c35e-4e69-a815-ba1e9b336d62/2/D12EA65DEE9873B5DCF3C6C0224FAEA6FCB8AEA6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0S6mXe6Yc7Xc88bAIk-upvy4rqY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f8e7d867-c35e-4e69-a815-ba1e9b336d62/2/AS204518.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:d90::/44
Signature Algorithm: sha256WithRSAEncryption
66:6d:7d:d4:c4:54:05:14:ab:33:28:b8:3f:84:0f:62:51:51:
48:6f:c1:14:50:f8:c5:7a:e5:f1:65:20:39:97:c4:7d:0c:2f:
21:b8:05:9d:3c:4f:92:a3:6b:e1:b9:0e:d9:43:8f:fe:22:87:
d6:f8:ab:e5:44:93:b5:4d:33:17:c4:9f:6f:00:92:d1:02:c5:
5c:8d:19:d5:3c:4e:23:92:54:d9:9e:20:47:08:91:92:81:f6:
dd:5f:8c:4f:fa:b4:bf:22:0e:d1:79:af:b9:4f:53:ec:a8:cc:
3e:6b:b6:c6:3e:c3:b3:e9:69:95:c7:67:fe:e0:42:2c:10:17:
53:72:57:70:74:1d:22:1f:b5:22:34:58:02:a2:81:c9:a3:3b:
04:66:49:14:51:f4:1d:c9:a2:cc:73:02:a0:0f:2c:1d:29:d5:
d9:3d:a5:12:60:59:a1:dd:24:97:03:37:33:71:71:3f:36:45:
56:24:85:ea:bc:09:be:99:ff:a6:e3:5b:85:f8:b8:ec:f8:be:
4c:f1:cd:ea:4d:3b:24:d7:d4:4f:9d:b0:4c:4c:27:94:ca:83:
c4:9a:86:99:6c:b3:6a:80:53:52:aa:9d:09:42:8b:65:42:68:
a1:a9:b2:40:bb:4f:11:c5:b1:57:e0:0f:66:f8:01:9e:8a:19:
ad:80:94:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:21 2024 by rpki-client on console-fra.rpki-client.org