Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/fbad19-c87c-4f30-b0b6-e57163d41359/1/F2EUK0eBYJiTkkNQ8yHUtmMrXac.roa
File: F2EUK0eBYJiTkkNQ8yHUtmMrXac.roa (raw, json)
Hash identifier: 0nwUrmfdZ1yd3Dow/uQnz7VUMfL2wmcpsXF0ja0I5Mw=
Subject key identifier: 17:61:14:2B:47:81:60:98:93:92:43:50:F3:21:D4:B6:63:2B:5D:A7
Certificate issuer: /CN=3025fef9ca6404582d1a74da7f8bbe92b00282aa
Certificate serial: 01875305AFAA8E71BF44CC9046920968BEF4
Authority key identifier: 30:25:FE:F9:CA:64:04:58:2D:1A:74:DA:7F:8B:BE:92:B0:02:82:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MCX--cpkBFgtGnTaf4u-krACgqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/fbad19-c87c-4f30-b0b6-e57163d41359/1/F2EUK0eBYJiTkkNQ8yHUtmMrXac.roa
Signing time: Wed 05 Apr 2023 20:04:54 +0000
ROA not before: Wed 05 Apr 2023 20:04:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201466
IP address blocks: 2a09:d940::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:53:05:af:aa:8e:71:bf:44:cc:90:46:92:09:68:be:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3025fef9ca6404582d1a74da7f8bbe92b00282aa
Validity
Not Before: Apr 5 20:04:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1761142b4781609893924350f321d4b6632b5da7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:79:00:91:89:c8:fd:87:16:4f:15:3f:03:e4:
f6:1f:e3:dc:9c:95:d7:54:c4:e8:cd:a8:72:07:9e:
41:ee:15:1f:76:3c:af:bb:51:47:f5:05:8b:ca:84:
aa:bd:a2:7e:2c:07:34:7e:b7:5e:04:0f:62:fd:8e:
18:36:f5:04:18:d5:98:fb:12:02:bd:07:aa:4a:c7:
db:4b:7b:9b:27:7b:1e:31:1b:69:36:73:6d:2a:4d:
1c:44:98:5f:25:5b:79:69:3d:68:a7:29:21:5d:dc:
03:7d:be:24:82:72:6a:63:c8:96:dd:61:c6:18:d5:
8d:55:15:08:52:03:52:d1:d0:a7:63:a9:37:40:62:
56:7d:3a:20:e5:e0:6a:7d:3a:8c:28:8e:5c:44:46:
4f:e9:24:43:73:9b:91:65:c4:a5:6e:ee:72:82:8b:
8c:46:87:78:a3:0b:a2:b5:09:28:68:d1:b6:30:7d:
4f:65:bf:a9:27:a2:f6:82:9e:57:e3:4d:4b:ce:e9:
3f:a6:3a:ed:7f:8b:79:bd:a0:b9:60:67:5f:cf:b8:
f2:b7:7c:78:1d:97:df:5d:85:03:c1:0d:1c:63:80:
89:6b:44:f8:13:64:38:34:a8:14:75:db:84:8e:28:
f2:6e:03:7d:01:6e:e9:24:40:24:76:d9:63:43:2c:
f1:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:61:14:2B:47:81:60:98:93:92:43:50:F3:21:D4:B6:63:2B:5D:A7
X509v3 Authority Key Identifier:
keyid:30:25:FE:F9:CA:64:04:58:2D:1A:74:DA:7F:8B:BE:92:B0:02:82:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MCX--cpkBFgtGnTaf4u-krACgqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/fbad19-c87c-4f30-b0b6-e57163d41359/1/F2EUK0eBYJiTkkNQ8yHUtmMrXac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/fbad19-c87c-4f30-b0b6-e57163d41359/1/MCX--cpkBFgtGnTaf4u-krACgqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:d940::/29
Signature Algorithm: sha256WithRSAEncryption
aa:13:ca:3c:1e:5d:83:4a:27:03:10:71:ed:50:50:cf:e5:0c:
79:9b:b0:aa:ae:bc:41:7a:96:40:b7:f9:ad:57:7b:25:27:55:
e7:2f:c2:ad:27:07:d0:4f:2b:1c:48:c6:b6:06:7f:f7:15:8e:
08:6e:42:9f:71:94:0b:b0:9f:d8:dc:74:21:7d:0b:cc:34:c3:
6b:96:95:3d:00:47:ab:c9:4e:17:71:93:5e:97:21:56:cc:d1:
fa:b0:ea:a8:8c:5e:1d:6a:95:06:82:04:c8:e1:94:ba:5a:6e:
0c:86:82:78:45:42:f4:27:12:36:07:41:60:88:30:a2:d9:ee:
e5:9d:79:19:1b:6f:82:05:10:41:77:23:df:56:ae:1d:b3:39:
a7:61:bd:ff:70:4b:c7:26:34:82:fc:d9:4f:dd:6a:02:ae:08:
b5:b7:90:22:de:7f:99:80:5b:3b:8c:35:d6:3c:b2:24:18:81:
e9:d2:8a:6a:25:40:e7:ed:33:a4:b2:26:eb:3f:15:e9:58:bd:
f3:f2:df:a9:10:20:c6:45:f9:9b:94:11:c4:a6:2c:05:7e:e6:
5d:40:49:80:40:b1:87:64:04:c0:1f:93:f8:1a:45:7f:fe:81:
f6:5c:e5:9f:d5:63:29:1e:80:55:24:c1:f9:b0:4e:bf:1f:6e:
da:b4:f0:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:07 2023 by rpki-client on console.sobornost.net