Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/e962bb-6e43-43d8-9040-3e8f108163f0/1/TAZUXktTgKkzuvW0yUCB7gPPYBI.roa
File: TAZUXktTgKkzuvW0yUCB7gPPYBI.roa (raw, json)
Hash identifier: BdbSoSwrHtUZY4WflJfKeOP3aCfULddL9pUdv1jD/3Y=
Subject key identifier: 4C:06:54:5E:4B:53:80:A9:33:BA:F5:B4:C9:40:81:EE:03:CF:60:12
Certificate issuer: /CN=6ec946cb4f9f8fb43a6d8feecfc27c1c213b1905
Certificate serial: 01833C855A020656306F924B40D78E0CF6F3
Authority key identifier: 6E:C9:46:CB:4F:9F:8F:B4:3A:6D:8F:EE:CF:C2:7C:1C:21:3B:19:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bslGy0-fj7Q6bY_uz8J8HCE7GQU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/e962bb-6e43-43d8-9040-3e8f108163f0/1/TAZUXktTgKkzuvW0yUCB7gPPYBI.roa
Signing time: Wed 14 Sep 2022 15:01:55 +0000
ROA not before: Wed 14 Sep 2022 15:01:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47232
IP address blocks: 2a0f:fec0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:3c:85:5a:02:06:56:30:6f:92:4b:40:d7:8e:0c:f6:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ec946cb4f9f8fb43a6d8feecfc27c1c213b1905
Validity
Not Before: Sep 14 15:01:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4c06545e4b5380a933baf5b4c94081ee03cf6012
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:fe:8a:a0:17:bb:79:91:68:46:36:ca:d4:de:
cd:8f:28:9f:47:ed:7b:c2:9a:56:a0:bc:b4:93:24:
5c:87:c7:60:8d:9d:e5:14:13:30:41:93:95:d9:b8:
7c:c6:66:89:0f:ec:f8:28:c5:a9:9e:a0:04:74:04:
c9:09:1b:c8:62:a6:e9:42:4e:5d:a4:ca:f0:9b:bc:
99:47:27:3e:a2:77:ab:c8:b2:67:b6:cd:04:d0:f0:
07:d5:2c:86:a0:76:77:bb:37:15:44:19:89:d4:37:
22:12:38:f4:3a:0c:d1:e2:26:e3:b5:45:07:3b:66:
f3:56:b8:84:42:31:7d:5e:83:a1:58:ed:c2:4a:49:
3d:76:dc:53:73:54:b0:14:eb:e9:04:31:2b:b6:be:
70:5f:98:48:41:17:77:d3:98:0a:8e:45:73:d5:f2:
ff:6a:bd:a5:00:77:bc:ef:53:1c:fb:29:35:2b:e7:
03:d9:59:0b:ad:43:8c:16:cc:67:b1:f6:ab:56:42:
be:4f:cb:60:89:0d:57:0e:40:6d:94:50:63:b1:43:
20:8f:3e:92:2f:25:24:aa:b6:f4:e1:ab:30:a6:72:
cd:58:65:a2:ec:bf:ab:0e:3d:8f:dc:2f:20:74:4c:
99:8d:1d:66:44:64:df:84:25:32:85:d3:2a:95:6c:
d7:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:06:54:5E:4B:53:80:A9:33:BA:F5:B4:C9:40:81:EE:03:CF:60:12
X509v3 Authority Key Identifier:
keyid:6E:C9:46:CB:4F:9F:8F:B4:3A:6D:8F:EE:CF:C2:7C:1C:21:3B:19:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bslGy0-fj7Q6bY_uz8J8HCE7GQU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/e962bb-6e43-43d8-9040-3e8f108163f0/1/TAZUXktTgKkzuvW0yUCB7gPPYBI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/e962bb-6e43-43d8-9040-3e8f108163f0/1/bslGy0-fj7Q6bY_uz8J8HCE7GQU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:fec0::/29
Signature Algorithm: sha256WithRSAEncryption
73:55:35:7e:31:61:3c:bb:08:d0:00:bd:bf:1d:d6:92:19:00:
1b:5d:5c:53:63:a8:d3:c5:a8:42:ca:19:d4:4f:db:f7:d1:1d:
0a:27:bb:2e:0f:43:1e:2d:67:46:68:b7:36:f7:aa:ff:97:44:
e7:04:c3:c2:4d:41:b5:b9:c5:19:88:e6:b4:1e:d6:2d:d3:70:
5b:6b:ec:4c:63:94:db:2d:66:65:c5:d9:9d:9c:2c:df:fa:ac:
52:ec:16:97:e5:b7:23:58:a3:a8:13:d1:b0:77:2e:6e:d3:2f:
7e:27:30:66:53:04:92:c2:ea:34:28:81:c2:78:c5:19:93:24:
29:fd:14:61:ed:34:45:1a:95:b1:b4:e8:41:b0:14:f0:11:90:
cd:02:d0:d3:8e:77:2d:f0:97:13:8c:d8:ee:9d:c0:f6:5c:73:
33:39:b8:ba:a9:37:ce:d3:49:c3:df:f9:44:03:70:be:b6:01:
34:e6:ef:6a:3f:57:40:1a:84:dd:6d:6d:a4:76:f9:32:f2:1e:
34:aa:a2:d0:d4:18:b4:87:2d:05:1c:8a:a1:d5:ed:a8:2e:30:
53:ec:4a:eb:27:ec:b3:78:0f:20:d9:1e:fb:b3:58:eb:55:a2:
b8:5a:95:61:b9:2a:5d:72:3c:fe:a3:05:f5:d9:db:85:7b:ce:
c0:3d:65:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:38 2023 by rpki-client on console.sobornost.net