Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f8e7d867-c35e-4e69-a815-ba1e9b336d62/2/AS38254.roa
File: AS38254.roa (raw, json)
Hash identifier: se+s8VXCvj0OxCsbENovQTnzFW8/te8IEqzF3zapHS4=
Subject key identifier: 42:02:2F:3B:5A:24:AC:62:C3:16:46:7B:C8:9C:1E:09:5A:D6:AC:05
Certificate issuer: /CN=d12ea65dee9873b5dcf3c6c0224faea6fcb8aea6
Certificate serial: 75CB9F99991846B692331EF037635831845A202A
Authority key identifier: D1:2E:A6:5D:EE:98:73:B5:DC:F3:C6:C0:22:4F:AE:A6:FC:B8:AE:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0S6mXe6Yc7Xc88bAIk-upvy4rqY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f8e7d867-c35e-4e69-a815-ba1e9b336d62/2/AS38254.roa
Signing time: Sun 01 Jan 2023 23:59:11 +0000
ROA not before: Sun 01 Jan 2023 23:54:11 +0000
ROA not after: Sun 31 Dec 2023 23:59:11 +0000
asID: 38254
IP address blocks: 2a06:a005:160::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:cb:9f:99:99:18:46:b6:92:33:1e:f0:37:63:58:31:84:5a:20:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d12ea65dee9873b5dcf3c6c0224faea6fcb8aea6
Validity
Not Before: Jan 1 23:54:11 2023 GMT
Not After : Dec 31 23:59:11 2023 GMT
Subject: CN=42022F3B5A24AC62C316467BC89C1E095AD6AC05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:3b:c0:d5:5d:64:76:0d:1d:59:78:61:d3:43:
b7:c5:4e:06:6c:52:2d:7d:cc:ca:5c:9e:45:6f:f2:
bc:c5:6b:3f:29:4a:c1:4f:26:ff:46:49:1c:a2:c0:
b4:95:7a:c6:15:46:51:bb:0d:ad:44:c1:be:6b:a4:
63:4e:ce:57:02:01:73:10:c1:af:e4:03:b6:df:71:
ec:52:a8:d7:d7:e8:2e:5a:b3:5c:bd:8a:cb:03:bb:
e1:7a:ca:3b:ff:6b:a6:55:58:41:5a:04:cb:ad:6c:
72:04:f5:b2:80:3b:dc:a3:dc:44:1c:18:ba:5b:55:
cb:aa:cf:10:56:b7:17:d0:74:73:45:ac:b8:02:8f:
d9:e2:5e:41:84:c7:9d:6a:63:f1:c8:70:32:b8:65:
4d:4e:90:3b:d6:de:46:5c:71:ce:05:73:22:89:76:
c0:1e:0e:aa:3e:fb:de:ca:e1:6d:aa:f6:6d:ca:de:
09:a3:c7:6d:83:b6:9c:30:89:bd:11:0f:bf:79:90:
07:18:b1:0e:ec:01:7a:0c:08:34:3c:ca:74:6f:02:
ad:5d:c9:fd:59:c6:9f:16:cd:ee:31:70:63:11:4b:
dc:e0:4a:2f:ba:e6:6f:46:d4:89:4b:12:de:c1:d6:
f4:43:aa:9b:0b:6e:3f:db:cf:95:bd:51:95:7c:a9:
ff:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:02:2F:3B:5A:24:AC:62:C3:16:46:7B:C8:9C:1E:09:5A:D6:AC:05
X509v3 Authority Key Identifier:
keyid:D1:2E:A6:5D:EE:98:73:B5:DC:F3:C6:C0:22:4F:AE:A6:FC:B8:AE:A6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f8e7d867-c35e-4e69-a815-ba1e9b336d62/2/D12EA65DEE9873B5DCF3C6C0224FAEA6FCB8AEA6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0S6mXe6Yc7Xc88bAIk-upvy4rqY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f8e7d867-c35e-4e69-a815-ba1e9b336d62/2/AS38254.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:160::/44
Signature Algorithm: sha256WithRSAEncryption
42:4b:7c:6b:d6:bf:71:78:c7:9c:de:da:35:ba:a1:fb:91:42:
36:91:28:dd:c8:13:9d:31:8b:de:1e:84:ce:8c:08:07:25:3a:
da:ab:b5:50:ed:96:06:ae:74:63:f4:e5:fa:66:58:22:84:23:
48:7a:95:52:a1:9d:ca:30:1f:ad:dc:19:fd:0d:06:be:45:19:
95:cc:e7:6d:40:e7:d1:40:01:7c:97:a0:cb:e0:a1:b0:cc:78:
b6:62:2b:21:0e:ef:ac:bf:26:53:dc:2f:0d:d6:1d:5e:c3:99:
b6:02:9a:ed:c1:f8:e9:c2:80:82:c8:ee:1f:6a:62:95:de:1d:
f9:60:86:e9:dd:17:dc:4b:e2:f6:d2:60:b2:ae:7e:c3:68:6e:
1c:79:b2:64:85:2c:1d:1e:db:ec:75:41:5a:c8:ef:5e:c9:51:
70:b7:37:f7:ac:52:34:30:77:f6:88:84:c5:40:26:7a:27:85:
a4:8d:2b:bc:a2:ce:74:a5:0e:81:04:a5:58:5f:06:93:49:03:
e4:b2:79:7d:42:14:d3:ac:71:0a:72:5b:e1:4f:55:16:0d:ca:
82:8a:80:a6:fa:c4:96:51:ec:13:e5:27:d0:82:be:c2:75:05:
62:bd:ad:13:2a:23:a3:bb:a5:5c:8d:62:4b:b9:16:3b:c7:e6:
a7:49:96:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:01:09 2024 by rpki-client on console-ams.rpki-client.org