Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f8e7d867-c35e-4e69-a815-ba1e9b336d62/2/AS211443.roa
File: AS211443.roa (raw, json)
Hash identifier: xWZsNev10+JytCHDmutUSiZaT5dgmO2qXEHcCIcujI4=
Subject key identifier: E5:FD:29:6C:26:C6:CD:BA:0B:E4:0F:90:55:E2:C0:04:C8:A0:31:04
Certificate issuer: /CN=d12ea65dee9873b5dcf3c6c0224faea6fcb8aea6
Certificate serial: 18EDD1AC38D4036363A8168E8AB30B64DCFF32CF
Authority key identifier: D1:2E:A6:5D:EE:98:73:B5:DC:F3:C6:C0:22:4F:AE:A6:FC:B8:AE:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0S6mXe6Yc7Xc88bAIk-upvy4rqY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f8e7d867-c35e-4e69-a815-ba1e9b336d62/2/AS211443.roa
Signing time: Sun 01 Jan 2023 23:59:10 +0000
ROA not before: Sun 01 Jan 2023 23:54:10 +0000
ROA not after: Sun 31 Dec 2023 23:59:10 +0000
asID: 211443
IP address blocks: 2a06:a005:116a::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:ed:d1:ac:38:d4:03:63:63:a8:16:8e:8a:b3:0b:64:dc:ff:32:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d12ea65dee9873b5dcf3c6c0224faea6fcb8aea6
Validity
Not Before: Jan 1 23:54:10 2023 GMT
Not After : Dec 31 23:59:10 2023 GMT
Subject: CN=E5FD296C26C6CDBA0BE40F9055E2C004C8A03104
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:52:13:5a:5c:c3:16:a6:f9:19:8e:80:30:56:
87:b8:90:be:b9:85:9f:b6:7a:f0:69:f9:3c:de:32:
a9:db:22:fe:23:dd:8c:5b:ff:ca:7f:7f:60:72:fb:
e1:46:56:6c:28:f7:7e:7a:48:8b:e9:8a:6a:40:8d:
57:5e:93:52:bf:4e:ae:ca:77:44:fc:a0:41:7a:30:
d3:ad:3d:fd:5f:8f:b4:95:93:12:60:af:f5:8d:31:
a0:0f:93:0b:af:11:6b:f8:76:68:af:ca:2d:d6:6c:
60:de:6b:de:e0:bf:e7:1f:98:f2:b5:eb:06:a5:a2:
e5:1a:b2:27:b8:3e:8f:bd:9f:37:86:cb:96:0c:16:
83:e4:f0:28:26:dd:18:33:d6:ec:4c:f9:4b:d8:6e:
8b:49:f4:70:43:87:c4:6f:eb:66:76:cf:63:97:90:
79:a3:cc:ad:46:25:9a:04:9a:fa:88:fb:e2:ff:d0:
12:fd:21:6e:8c:9a:1d:00:16:69:3f:b0:54:8c:16:
ff:5e:80:09:16:72:cf:ee:77:c8:3d:5c:55:b0:6d:
2e:ab:ad:d4:d4:31:c2:2b:1c:dd:e7:de:7e:1c:44:
8d:cc:aa:bf:5e:8a:37:78:f2:0d:98:e1:b0:86:7e:
dc:fb:cf:8a:6d:9e:b0:0b:0e:ae:70:ef:9f:da:fc:
b0:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:FD:29:6C:26:C6:CD:BA:0B:E4:0F:90:55:E2:C0:04:C8:A0:31:04
X509v3 Authority Key Identifier:
keyid:D1:2E:A6:5D:EE:98:73:B5:DC:F3:C6:C0:22:4F:AE:A6:FC:B8:AE:A6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f8e7d867-c35e-4e69-a815-ba1e9b336d62/2/D12EA65DEE9873B5DCF3C6C0224FAEA6FCB8AEA6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0S6mXe6Yc7Xc88bAIk-upvy4rqY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f8e7d867-c35e-4e69-a815-ba1e9b336d62/2/AS211443.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:116a::/48
Signature Algorithm: sha256WithRSAEncryption
7e:37:68:da:05:23:96:4c:df:24:dd:d0:b3:fa:09:7c:fe:2b:
a3:07:aa:5f:51:a3:94:2f:8d:f4:b7:12:f6:8a:0e:7f:d3:92:
48:49:39:a1:c2:f0:41:96:15:32:b4:02:01:7d:0a:68:08:c0:
cb:cd:76:56:79:7d:9b:02:cf:ca:42:96:16:d5:b0:68:23:f5:
67:ba:20:03:0a:32:af:40:b6:c0:60:5b:a2:0d:2a:39:03:e2:
bd:f2:ac:b0:6b:35:e4:de:3d:07:49:9f:bb:c0:47:3d:0c:ea:
93:df:e5:5e:0f:9a:1b:35:fe:cb:88:82:0b:86:71:32:e4:07:
aa:0a:65:c6:53:52:25:5c:72:95:dd:00:87:da:7e:aa:c6:8f:
1f:9a:e8:c8:e5:15:79:ee:20:87:d1:1c:1d:c4:2b:f8:ff:1a:
62:df:80:d0:56:04:59:cb:36:11:03:25:45:a1:18:bb:45:07:
20:5e:fd:c6:ea:b5:62:66:82:86:ec:0f:d7:d9:57:89:7d:21:
06:4d:86:41:8e:86:32:d2:f8:19:2b:5d:68:e3:34:dd:12:ae:
f2:b2:f5:f9:45:06:eb:d0:45:b4:ac:5d:d0:ae:fe:6b:7b:ea:
d4:97:67:48:a1:ef:3f:19:b1:77:a1:d0:1a:39:ca:be:24:77:
1c:32:a4:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:01:08 2024 by rpki-client on console-ams.rpki-client.org