Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/7de221-e3be-456d-91f4-b14b7cf70d2f/1/aD1b0_rXmAzUMBFh48XqZiCS9AY.roa
File: aD1b0_rXmAzUMBFh48XqZiCS9AY.roa (raw, json)
Hash identifier: plfenKl4szfz+OGdtkT3GYdM6gRGFrDJjwxm9NSvXTM=
Subject key identifier: 68:3D:5B:D3:FA:D7:98:0C:D4:30:11:61:E3:C5:EA:66:20:92:F4:06
Certificate issuer: /CN=02edfcfb335c9d76888d81b73ecd8a40bafecffc
Certificate serial: 0187849FD9F25B0D2B43EA5C03AFC4F95E3A
Authority key identifier: 02:ED:FC:FB:33:5C:9D:76:88:8D:81:B7:3E:CD:8A:40:BA:FE:CF:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Au38-zNcnXaIjYG3Ps2KQLr-z_w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/7de221-e3be-456d-91f4-b14b7cf70d2f/1/aD1b0_rXmAzUMBFh48XqZiCS9AY.roa
Signing time: Sat 15 Apr 2023 11:14:41 +0000
ROA not before: Sat 15 Apr 2023 11:14:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29491
IP address blocks: 2a04:ba40::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:84:9f:d9:f2:5b:0d:2b:43:ea:5c:03:af:c4:f9:5e:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02edfcfb335c9d76888d81b73ecd8a40bafecffc
Validity
Not Before: Apr 15 11:14:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=683d5bd3fad7980cd4301161e3c5ea662092f406
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:8b:e7:b3:57:07:4a:95:da:be:76:57:ef:64:
bc:ff:65:d8:84:5f:f5:ca:4e:22:93:9c:ba:66:bf:
66:99:2a:b5:cb:9b:70:0e:d9:1e:da:42:59:0e:3b:
7f:06:22:a1:fb:4a:ec:0e:18:14:a5:a6:95:ef:59:
d5:a7:ca:f0:57:0b:5c:3f:ec:92:f5:cb:42:3a:cd:
e9:8b:8a:06:90:c5:37:3e:9f:f6:0d:b9:56:b7:d8:
9c:57:0e:f8:79:db:8f:98:8a:83:f0:fe:89:57:97:
6d:9c:d9:d9:af:8a:72:f4:7b:6e:80:f9:d4:89:26:
2f:23:b7:f0:f5:be:bf:b1:99:77:be:ba:56:88:23:
6f:ef:a7:aa:be:dd:a1:ae:b6:72:d6:b6:18:95:e0:
e5:8e:92:9f:26:c4:9d:9f:a6:26:f9:6a:78:44:10:
14:b4:a0:a0:0a:33:37:97:ac:10:14:3a:1f:df:11:
e9:ec:2d:1e:a8:46:0a:b1:46:58:96:d0:14:ad:df:
c8:e6:e0:9e:3f:17:c5:2b:3b:5d:d2:21:86:85:96:
40:15:de:b0:cf:c5:b7:01:73:e9:36:04:5c:17:b0:
f1:b7:18:24:43:40:01:a2:59:f9:74:07:78:90:0a:
9c:6b:ad:25:81:52:ac:62:ce:07:94:f6:8a:27:e2:
96:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:3D:5B:D3:FA:D7:98:0C:D4:30:11:61:E3:C5:EA:66:20:92:F4:06
X509v3 Authority Key Identifier:
keyid:02:ED:FC:FB:33:5C:9D:76:88:8D:81:B7:3E:CD:8A:40:BA:FE:CF:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Au38-zNcnXaIjYG3Ps2KQLr-z_w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/7de221-e3be-456d-91f4-b14b7cf70d2f/1/aD1b0_rXmAzUMBFh48XqZiCS9AY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/7de221-e3be-456d-91f4-b14b7cf70d2f/1/Au38-zNcnXaIjYG3Ps2KQLr-z_w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:ba40::/29
Signature Algorithm: sha256WithRSAEncryption
11:3b:75:99:1d:ea:94:ed:f6:ae:88:32:51:4a:83:64:94:8e:
48:57:4c:08:3b:cf:49:d6:cf:a2:88:ec:ad:8e:4f:0d:fa:a1:
ce:ed:b4:f0:a9:54:59:ac:a1:1f:28:6b:bf:47:56:57:32:0c:
21:45:04:db:b3:57:b6:35:3c:79:68:b9:38:ab:94:89:b2:0b:
5a:ff:ea:09:8c:52:5e:b9:eb:1f:5a:59:9d:88:4a:ef:11:a8:
68:ab:4e:4a:c7:2b:64:b1:cf:2d:b2:48:2a:13:b6:c9:02:e8:
c5:ca:3f:cd:09:3a:43:b7:7c:33:ee:cc:8c:51:75:e2:1a:90:
4d:cc:04:31:1a:58:0d:44:bf:80:b4:52:7d:af:70:a7:a9:e6:
5c:51:6f:56:25:75:0c:48:d0:b5:15:24:97:dd:38:92:a1:10:
19:35:a4:44:6a:21:3c:e6:66:ae:df:0c:93:f7:74:64:84:52:
15:56:4a:68:16:c5:90:93:4e:4b:95:8b:a6:e8:aa:a6:c9:91:
ef:8a:14:7b:85:79:38:a6:dd:1a:97:a3:4f:8b:c5:b7:cd:05:
4f:62:b6:c0:21:69:3b:e4:1d:71:7d:bd:a4:a8:3f:d0:f7:45:
29:d1:93:4d:cd:73:50:4b:42:e6:28:e6:32:f6:61:a7:23:b7:
91:64:d1:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:48 2023 by rpki-client on console.sobornost.net