Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/31def3-89f7-4509-9aa0-7d639aab512f/1/lc94ikG1eP0IonEy085ugHlOiFA.roa
File: lc94ikG1eP0IonEy085ugHlOiFA.roa (raw, json)
Hash identifier: KsD4Z/GHBxnOLZ1mhUUEd0vGsi/GePCncspDDkHvHZ0=
Subject key identifier: 95:CF:78:8A:41:B5:78:FD:08:A2:71:32:D3:CE:6E:80:79:4E:88:50
Certificate issuer: /CN=6dc529c9ec000b9070f2d1fbfbae1e7dc9dbe45f
Certificate serial: 01873BB4735CF33E1F982CF99335116C0A9F
Authority key identifier: 6D:C5:29:C9:EC:00:0B:90:70:F2:D1:FB:FB:AE:1E:7D:C9:DB:E4:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bcUpyewAC5Bw8tH7-64efcnb5F8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/31def3-89f7-4509-9aa0-7d639aab512f/1/lc94ikG1eP0IonEy085ugHlOiFA.roa
Signing time: Sat 01 Apr 2023 07:24:54 +0000
ROA not before: Sat 01 Apr 2023 07:24:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48652
IP address blocks: 2a13:d080::/29 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:3b:b4:73:5c:f3:3e:1f:98:2c:f9:93:35:11:6c:0a:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dc529c9ec000b9070f2d1fbfbae1e7dc9dbe45f
Validity
Not Before: Apr 1 07:24:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=95cf788a41b578fd08a27132d3ce6e80794e8850
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:1b:9f:09:f4:2c:ab:78:6d:5c:85:9d:76:d5:
e0:e7:15:41:67:7d:3e:c7:19:a9:98:25:24:b4:b2:
7a:2f:2f:8e:39:18:60:ab:13:57:7a:63:c2:c0:0f:
0c:98:2a:83:ac:aa:97:5e:ac:0c:c6:da:92:4c:17:
2f:39:5d:97:c5:29:22:0d:6e:53:27:53:ec:46:90:
69:52:6a:97:7e:dd:3d:c5:5e:78:1f:10:b0:7e:7a:
f5:20:5a:bc:4e:01:3b:46:10:1e:10:7d:3e:17:80:
e4:5e:fb:2d:e2:d1:c3:f8:f6:82:cd:56:b1:a1:53:
aa:85:37:fc:1f:f2:ed:94:51:1b:67:6f:24:2e:6a:
73:9e:f7:9f:71:ce:06:62:f9:e1:d1:61:9d:18:0e:
10:24:49:cd:75:29:da:b7:35:01:33:f9:71:99:5b:
dc:95:90:bc:9d:c5:9f:13:77:bd:0a:cd:45:7d:98:
9d:51:01:fc:33:c6:20:29:2b:99:a1:a1:db:5e:05:
4e:76:6a:c7:46:17:dd:61:2c:c2:02:27:5f:98:df:
27:8b:b2:57:5e:2c:81:9a:e7:dc:9b:bf:e0:e1:76:
03:7c:ea:57:e4:af:89:41:ff:2e:0c:69:82:e4:49:
9e:67:ba:0f:50:99:85:cc:58:c9:53:96:34:ad:34:
02:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:CF:78:8A:41:B5:78:FD:08:A2:71:32:D3:CE:6E:80:79:4E:88:50
X509v3 Authority Key Identifier:
keyid:6D:C5:29:C9:EC:00:0B:90:70:F2:D1:FB:FB:AE:1E:7D:C9:DB:E4:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bcUpyewAC5Bw8tH7-64efcnb5F8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/31def3-89f7-4509-9aa0-7d639aab512f/1/lc94ikG1eP0IonEy085ugHlOiFA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/31def3-89f7-4509-9aa0-7d639aab512f/1/bcUpyewAC5Bw8tH7-64efcnb5F8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:d080::/29
Signature Algorithm: sha256WithRSAEncryption
d0:98:a2:84:d1:51:1e:6f:5e:bb:9c:e9:41:31:e4:5d:f0:69:
ee:be:c7:1e:c5:49:26:02:e8:07:4b:8f:f4:77:f8:5d:28:22:
27:a7:a2:23:1c:1c:24:bf:d5:14:a0:3b:b4:1e:bb:62:41:35:
df:fe:87:04:f7:73:ce:42:a6:9f:da:61:d5:1a:b2:fb:63:d6:
33:9a:c1:ce:b4:d1:2a:67:e3:c9:8f:df:78:45:a3:6d:06:0f:
0a:17:64:19:1b:f2:ae:83:ba:aa:18:44:0a:f0:d1:ae:dc:2a:
29:ab:39:91:66:ea:57:18:f2:3d:fa:c1:10:f9:b2:34:ab:98:
42:1f:ac:8c:57:0b:40:44:bf:dc:89:47:c9:21:b6:53:19:59:
bb:6b:81:fb:c7:1c:8c:3f:75:0f:d3:cf:ad:b9:02:b8:67:e4:
db:18:0b:9b:cb:a5:2a:08:9b:3b:23:00:f7:39:c2:0d:4e:a7:
69:db:be:b4:fc:f0:84:63:c9:8e:31:75:7f:de:ec:13:8c:8a:
47:19:73:8a:fd:de:30:e9:b1:e3:b6:1e:96:50:c1:a8:37:21:
70:04:f1:a8:c2:e9:de:03:49:85:a2:80:ec:cb:f0:66:9a:b9:
2b:d3:0d:21:e9:ed:13:c5:8a:fb:79:fd:42:0b:da:9a:af:7c:
c7:58:8c:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:29 2023 by rpki-client on console.sobornost.net