Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f8e7d867-c35e-4e69-a815-ba1e9b336d62/2/AS204841.roa
File: AS204841.roa (raw, json)
Hash identifier: 80nDjRZRJ7gGvNvxapEurolOLXIeyLcB9v60Z/GipGI=
Subject key identifier: B1:C8:D1:A5:7F:68:BD:DC:47:AF:65:B1:77:3D:F8:19:15:E7:F9:E5
Certificate issuer: /CN=d12ea65dee9873b5dcf3c6c0224faea6fcb8aea6
Certificate serial: 56840EDC1EB936443248D5963B5B6EE87150B05B
Authority key identifier: D1:2E:A6:5D:EE:98:73:B5:DC:F3:C6:C0:22:4F:AE:A6:FC:B8:AE:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0S6mXe6Yc7Xc88bAIk-upvy4rqY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f8e7d867-c35e-4e69-a815-ba1e9b336d62/2/AS204841.roa
Signing time: Sun 01 Jan 2023 23:59:22 +0000
ROA not before: Sun 01 Jan 2023 23:54:22 +0000
ROA not after: Sun 31 Dec 2023 23:59:22 +0000
asID: 204841
IP address blocks: 2a06:a005:434::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:84:0e:dc:1e:b9:36:44:32:48:d5:96:3b:5b:6e:e8:71:50:b0:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d12ea65dee9873b5dcf3c6c0224faea6fcb8aea6
Validity
Not Before: Jan 1 23:54:22 2023 GMT
Not After : Dec 31 23:59:22 2023 GMT
Subject: CN=B1C8D1A57F68BDDC47AF65B1773DF81915E7F9E5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:e6:b5:30:25:67:39:86:a6:82:57:60:29:fa:
09:43:68:2a:af:41:2c:c2:c5:3c:9b:24:7d:87:bd:
e2:9b:89:e5:1c:1d:e8:92:fe:24:c0:46:57:e9:e0:
eb:f5:8e:4b:8c:1e:72:37:b5:b8:9c:f1:f5:d8:ee:
db:fa:9d:61:39:c1:ae:a7:f0:ea:f2:4f:db:58:1d:
cf:df:66:14:9a:13:9e:f2:be:6d:79:91:8a:36:ac:
a6:11:e9:db:48:8c:8e:df:5f:f9:f7:98:0c:df:0a:
7d:30:8f:f6:74:ea:a4:20:53:6c:59:50:7d:09:98:
61:be:f4:5d:ba:f6:da:7f:5a:4d:68:4a:fa:04:9d:
a1:ce:69:8f:a4:e1:5d:1d:68:b5:2f:6f:8d:3a:d5:
a8:e7:b5:ad:a3:34:d4:81:1b:a6:4b:22:01:09:5a:
96:34:e3:3a:02:50:b8:ee:19:3a:b7:86:2d:8f:e7:
67:b2:19:96:61:59:b2:40:e7:13:f8:0f:4d:87:ce:
7c:1d:86:a4:ff:5c:91:a2:aa:f6:b3:80:c1:af:f2:
40:6a:f9:56:e7:bc:5a:07:96:a1:19:ab:a8:c3:7d:
ab:44:24:24:2a:11:8e:d4:9c:78:c6:35:30:f5:f5:
98:8b:eb:65:5d:fc:32:5d:24:2c:29:4b:9c:86:23:
54:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:C8:D1:A5:7F:68:BD:DC:47:AF:65:B1:77:3D:F8:19:15:E7:F9:E5
X509v3 Authority Key Identifier:
keyid:D1:2E:A6:5D:EE:98:73:B5:DC:F3:C6:C0:22:4F:AE:A6:FC:B8:AE:A6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f8e7d867-c35e-4e69-a815-ba1e9b336d62/2/D12EA65DEE9873B5DCF3C6C0224FAEA6FCB8AEA6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0S6mXe6Yc7Xc88bAIk-upvy4rqY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f8e7d867-c35e-4e69-a815-ba1e9b336d62/2/AS204841.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:434::/48
Signature Algorithm: sha256WithRSAEncryption
99:ed:35:c5:8a:0a:f1:db:a1:bc:3b:69:43:15:bf:5c:f7:af:
a8:11:bc:e2:ac:99:60:6f:fd:d1:c5:65:3f:d7:b2:11:77:39:
ba:b8:a6:9a:1b:ad:c1:8e:16:ef:22:ba:de:53:f1:f8:7c:bf:
7a:d0:21:46:e9:e5:d5:e2:57:78:80:1f:75:72:8b:61:76:57:
45:5a:e2:8e:3d:95:b4:d9:c3:23:94:00:39:70:89:6c:89:3c:
a3:b6:46:4c:02:fc:00:38:bd:73:db:82:22:5b:77:b6:85:20:
1f:b9:b5:d1:f8:bf:50:32:40:31:5e:f5:cd:61:d5:fe:61:71:
6f:45:0e:5e:89:df:0d:09:ad:f9:c5:ae:9b:06:80:13:f9:0c:
75:f1:f4:94:22:e8:e5:9d:ec:f2:26:65:27:10:7b:1d:a5:f2:
87:5d:eb:f9:f7:f4:fc:55:b6:8b:d7:be:b3:27:54:10:1b:44:
bc:c1:79:2b:f8:62:60:c2:a1:24:53:1b:20:82:8c:bc:f3:bd:
e2:95:e0:ae:51:eb:19:0c:ba:ff:15:d0:03:a5:b5:6f:8e:57:
57:11:42:ca:bd:cc:41:d4:3e:9f:c3:a1:1c:fb:d5:7a:96:6f:
42:59:f4:e7:d1:15:5b:d9:ea:e7:53:8b:6b:bb:5e:ea:a5:97:
f6:09:71:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:01:08 2024 by rpki-client on console-ams.rpki-client.org