Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/c9fd2a-ca2e-439b-8330-6c37b96c6b78/1/3PDahtY2IjXyV0JUSVHlrteszOk.roa
File: 3PDahtY2IjXyV0JUSVHlrteszOk.roa (raw, json)
Hash identifier: KD95qUcTBXtOEV7jvWEvI60/euFL7wGV8yBudoV10JY=
Subject key identifier: DC:F0:DA:86:D6:36:22:35:F2:57:42:54:49:51:E5:AE:D7:AC:CC:E9
Certificate issuer: /CN=f81988fc897fdd51a93823dcaf2e15b4320af6b6
Certificate serial: 3E396796
Authority key identifier: F8:19:88:FC:89:7F:DD:51:A9:38:23:DC:AF:2E:15:B4:32:0A:F6:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-BmI_Il_3VGpOCPcry4VtDIK9rY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/c9fd2a-ca2e-439b-8330-6c37b96c6b78/1/3PDahtY2IjXyV0JUSVHlrteszOk.roa
Signing time: Sat 01 Jan 2022 06:57:37 +0000
ROA not before: Sat 01 Jan 2022 06:57:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 52148
IP address blocks: 2a03:b600::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1043949462 (0x3e396796)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f81988fc897fdd51a93823dcaf2e15b4320af6b6
Validity
Not Before: Jan 1 06:57:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dcf0da86d6362235f25742544951e5aed7accce9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:13:f4:3a:64:c9:49:47:2e:24:8b:83:91:49:
15:69:15:3d:71:51:8f:2a:26:80:40:8b:09:02:d9:
7f:d5:5b:5f:6e:c9:0d:62:fb:b4:ce:7b:92:54:f6:
20:21:5d:a8:0c:c6:5c:dc:20:c2:2a:fb:21:8e:40:
44:fc:de:a1:dd:35:1e:a8:18:d9:19:8e:fa:4a:54:
2e:ca:38:bc:c7:f9:64:f3:b9:c7:62:81:db:d5:97:
a4:34:7c:f8:d7:24:83:1e:0d:a7:b1:27:51:02:b9:
73:4c:83:e5:3d:15:9c:1c:ba:10:0e:74:fe:53:ac:
cf:8e:dd:e6:40:e4:5f:57:7b:d7:86:9f:f9:b6:0f:
02:2b:12:d2:99:d5:7a:80:74:29:7a:f4:9a:7d:c5:
11:87:c6:5b:96:e4:5c:ae:26:49:fb:5e:7e:e4:a9:
81:51:88:c3:0e:ff:43:68:21:31:92:6d:12:03:9a:
c3:5a:50:b1:86:12:64:98:0a:19:b4:e8:58:aa:eb:
80:90:a8:25:e4:f3:50:96:79:55:3b:a1:3d:79:c3:
e0:d0:06:cf:0f:d0:35:cf:21:7d:e2:48:17:93:a3:
0e:a5:f6:7c:56:84:5c:9b:38:62:7f:00:68:a9:57:
5c:65:17:39:df:3e:91:88:87:83:5e:34:c8:d8:e5:
7f:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:F0:DA:86:D6:36:22:35:F2:57:42:54:49:51:E5:AE:D7:AC:CC:E9
X509v3 Authority Key Identifier:
keyid:F8:19:88:FC:89:7F:DD:51:A9:38:23:DC:AF:2E:15:B4:32:0A:F6:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-BmI_Il_3VGpOCPcry4VtDIK9rY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/c9fd2a-ca2e-439b-8330-6c37b96c6b78/1/3PDahtY2IjXyV0JUSVHlrteszOk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/c9fd2a-ca2e-439b-8330-6c37b96c6b78/1/1-BmI_Il_3VGpOCPcry4VtDIK9rY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:b600::/32
Signature Algorithm: sha256WithRSAEncryption
99:34:21:0d:9b:8f:bf:9c:07:5d:56:1e:84:2a:27:3b:76:f5:
d4:52:62:06:27:3f:ea:36:06:35:90:f9:09:27:99:67:b9:91:
31:b0:85:72:b2:75:4e:cc:a1:43:e4:12:41:97:a5:7a:04:09:
57:50:01:04:a4:00:aa:0a:35:82:6d:36:5a:2c:7d:a2:f8:a3:
a3:92:18:d0:ae:78:13:85:17:bb:d4:f6:81:c5:95:7f:06:b4:
2e:91:7b:37:86:67:b5:19:75:e1:a7:ec:67:b7:c3:e7:7c:5c:
8b:29:9e:75:9b:19:83:34:8f:db:b2:b4:ff:cc:f5:85:df:94:
2d:ce:ab:74:88:7e:4f:62:4a:4b:78:e5:83:fb:c6:a3:d0:c5:
9c:6d:f5:9f:8f:5b:ac:dc:55:a9:fc:e5:93:f1:c8:df:09:f8:
eb:52:f3:ec:52:75:00:5a:93:46:47:ed:f8:bf:f3:16:85:ee:
5c:64:14:46:f7:d6:d8:36:ab:6f:cf:fd:8e:a0:9f:65:bf:8a:
c5:e4:fe:d5:09:82:4e:ef:6c:be:19:b4:13:bb:47:5f:bc:14:
ed:b8:97:b8:3b:17:c0:44:f9:5c:cd:e9:a2:d1:88:36:f4:3c:
28:56:ad:30:de:05:c6:d4:b0:c7:e5:fe:dd:e4:13:34:cf:e0:
d5:a6:1c:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:33 2023 by rpki-client on console.sobornost.net