Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/7e281f-405d-4437-8220-42c0b7561d29/1/Rz3JTuD-sfydl7yT4QoLlrJwJFo.roa
File: Rz3JTuD-sfydl7yT4QoLlrJwJFo.roa (raw, json)
Hash identifier: +bRH+N3gWSLH3uCpucYgmiHrQIqBXr2An4jAtUDLUWo=
Subject key identifier: 47:3D:C9:4E:E0:FE:B1:FC:9D:97:BC:93:E1:0A:0B:96:B2:70:24:5A
Certificate issuer: /CN=781684136124a5cacbe7bf7d9f69fa421eccfd37
Certificate serial: 01856D53D97F1C132A71A0530383FB3FEA17
Authority key identifier: 78:16:84:13:61:24:A5:CA:CB:E7:BF:7D:9F:69:FA:42:1E:CC:FD:37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eBaEE2EkpcrL5799n2n6Qh7M_Tc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/7e281f-405d-4437-8220-42c0b7561d29/1/Rz3JTuD-sfydl7yT4QoLlrJwJFo.roa
Signing time: Sun 01 Jan 2023 12:34:49 +0000
ROA not before: Sun 01 Jan 2023 12:34:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208749
IP address blocks: 2a11:29c0:3df8::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:53:d9:7f:1c:13:2a:71:a0:53:03:83:fb:3f:ea:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=781684136124a5cacbe7bf7d9f69fa421eccfd37
Validity
Not Before: Jan 1 12:34:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=473dc94ee0feb1fc9d97bc93e10a0b96b270245a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:11:df:1a:9c:de:53:b1:40:f0:85:39:b3:d8:
db:80:fd:9e:2d:b1:b8:b2:c4:a6:90:cd:9c:92:e2:
5d:1f:60:63:7a:c4:dc:68:09:db:84:29:e0:13:e6:
d7:85:2a:cd:8d:71:a2:04:de:09:5d:9c:b2:63:6d:
70:91:b4:c8:1e:14:0c:dc:5f:af:12:94:7a:48:74:
ae:c8:ef:4a:12:a4:9e:22:ff:5e:07:c2:54:46:46:
47:e9:b1:25:7e:bb:64:a9:3a:8b:5a:bd:5e:07:3c:
51:c4:60:ad:57:74:49:14:6b:72:1f:bd:49:19:ca:
35:f9:23:00:b4:72:ab:b5:83:73:aa:21:58:17:9c:
a3:9f:ee:2b:e0:02:a0:43:52:b0:64:ca:59:56:55:
b0:ba:4c:17:a8:6b:e2:88:56:c4:4b:2d:a2:07:88:
44:d3:45:0e:ed:d4:84:7b:96:f4:ed:7b:13:ce:be:
bb:f7:a1:15:36:2e:6e:87:be:27:33:27:07:e0:eb:
b8:1a:f8:9b:73:33:bd:9d:21:2e:92:76:00:c5:16:
a0:fd:a3:65:86:28:57:74:4d:ec:25:ab:9f:e2:70:
57:40:c1:57:b4:e7:e2:fb:2f:15:87:eb:f3:49:7f:
55:af:35:33:a6:7b:4b:33:39:5f:e1:f4:a1:a0:22:
ae:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:3D:C9:4E:E0:FE:B1:FC:9D:97:BC:93:E1:0A:0B:96:B2:70:24:5A
X509v3 Authority Key Identifier:
keyid:78:16:84:13:61:24:A5:CA:CB:E7:BF:7D:9F:69:FA:42:1E:CC:FD:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eBaEE2EkpcrL5799n2n6Qh7M_Tc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7e281f-405d-4437-8220-42c0b7561d29/1/Rz3JTuD-sfydl7yT4QoLlrJwJFo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7e281f-405d-4437-8220-42c0b7561d29/1/eBaEE2EkpcrL5799n2n6Qh7M_Tc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:29c0:3df8::/48
Signature Algorithm: sha256WithRSAEncryption
00:39:3b:e4:d8:9a:e0:4e:08:3f:49:95:c9:69:52:3d:b8:8a:
f6:dc:a8:45:1f:67:f7:fc:7f:b2:51:8f:3a:c9:15:5b:5b:61:
b8:fa:47:61:62:77:73:9d:0a:af:4f:47:64:94:8b:49:9e:44:
b3:8b:da:26:74:53:51:41:11:56:bc:50:3a:9c:4c:f3:5d:ad:
63:98:ea:4f:17:40:08:31:58:3c:0b:80:43:f9:36:e1:4d:ae:
36:ce:c9:24:a4:f7:cc:55:56:68:b8:0b:43:ab:0c:de:20:64:
d3:53:b9:68:97:70:49:0f:f7:78:25:e4:34:56:aa:c2:b3:f6:
cd:cd:6a:a8:8f:e5:da:8e:c0:7e:22:00:ef:88:83:56:9d:78:
78:6c:36:2a:33:6b:25:23:5b:a6:55:18:55:da:d4:9a:84:42:
4c:2f:99:13:8f:61:a8:d0:9e:c3:2c:ce:69:73:ec:30:ba:26:
6d:88:bf:35:57:31:a0:4f:ef:fb:e6:9a:e6:8c:35:34:3a:e2:
54:84:6a:26:57:e8:1a:7b:e0:de:6d:f6:da:93:53:ad:fa:27:
9b:1a:a6:dc:cd:87:05:99:55:25:77:6e:d9:77:af:e2:f1:cc:
1d:79:c2:86:75:22:2a:2f:f5:d6:f4:17:02:9e:18:31:8c:ff:
1f:89:63:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:38 2023 by rpki-client on console.sobornost.net