Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/02c0cf-489d-4fda-9e39-10133232e759/1/UcbCD92bkzyOFHb2fa1uaS5Cdr0.roa
File: UcbCD92bkzyOFHb2fa1uaS5Cdr0.roa (raw, json)
Hash identifier: SAWmjETupgfIQI3X8tOmTCbgS05Yi4iUGCNzpwccyBo=
Subject key identifier: 51:C6:C2:0F:DD:9B:93:3C:8E:14:76:F6:7D:AD:6E:69:2E:42:76:BD
Certificate issuer: /CN=3b3fff71e59f35063f809fc5eb3af4c419f7bf33
Certificate serial: 0182D5271DBD229E88C6B245241D77681AA7
Authority key identifier: 3B:3F:FF:71:E5:9F:35:06:3F:80:9F:C5:EB:3A:F4:C4:19:F7:BF:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Oz__ceWfNQY_gJ_F6zr0xBn3vzM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/02c0cf-489d-4fda-9e39-10133232e759/1/UcbCD92bkzyOFHb2fa1uaS5Cdr0.roa
Signing time: Thu 25 Aug 2022 13:18:06 +0000
ROA not before: Thu 25 Aug 2022 13:18:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 2a10:1d80::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:d5:27:1d:bd:22:9e:88:c6:b2:45:24:1d:77:68:1a:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b3fff71e59f35063f809fc5eb3af4c419f7bf33
Validity
Not Before: Aug 25 13:18:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=51c6c20fdd9b933c8e1476f67dad6e692e4276bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:bd:0a:81:b8:7b:65:fc:90:96:08:30:cd:ce:
97:16:74:59:22:34:f4:78:23:7a:52:6f:ed:16:15:
bc:ce:05:08:9d:51:6f:2c:bc:29:95:b3:f4:ae:62:
82:e0:d9:43:b8:be:0e:12:f5:11:c4:20:4d:b5:a5:
ea:45:94:4c:4a:1e:a9:74:08:21:cf:8b:27:6f:15:
a6:e2:16:28:e1:11:87:76:c9:16:d7:d9:50:7b:9e:
49:a0:1b:e4:26:d7:35:2b:7b:11:9c:86:a5:d5:07:
9b:75:88:38:95:0e:44:a2:73:95:ac:45:31:98:32:
f8:65:eb:ab:40:2c:09:eb:b2:85:35:16:c3:b1:d9:
c1:72:4c:e7:58:22:1e:23:cb:d2:7f:78:6f:98:d3:
c6:8c:a3:bb:fb:fd:9a:5b:96:4a:3c:f4:b5:b1:14:
b3:b7:94:d2:38:1c:97:39:6e:b2:1a:df:ad:db:b1:
1b:6c:59:02:4b:19:db:20:47:18:86:b8:21:09:d1:
81:54:2e:0c:35:4c:b0:0f:e8:1e:35:63:19:98:19:
5d:ca:5b:38:f5:23:cb:b7:58:d1:35:64:22:9f:38:
d8:26:c4:66:9d:10:2c:2f:e8:72:e2:0c:8f:d2:db:
f0:93:15:c1:83:40:c5:ac:3e:f1:55:01:bf:39:6d:
cf:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:C6:C2:0F:DD:9B:93:3C:8E:14:76:F6:7D:AD:6E:69:2E:42:76:BD
X509v3 Authority Key Identifier:
keyid:3B:3F:FF:71:E5:9F:35:06:3F:80:9F:C5:EB:3A:F4:C4:19:F7:BF:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Oz__ceWfNQY_gJ_F6zr0xBn3vzM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/02c0cf-489d-4fda-9e39-10133232e759/1/UcbCD92bkzyOFHb2fa1uaS5Cdr0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/02c0cf-489d-4fda-9e39-10133232e759/1/Oz__ceWfNQY_gJ_F6zr0xBn3vzM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:1d80::/29
Signature Algorithm: sha256WithRSAEncryption
41:d1:dc:82:65:5d:48:a6:96:d5:22:b1:22:c5:40:a4:a4:64:
45:17:bd:e6:e9:3b:c7:dc:16:e4:8f:55:8a:b6:53:5c:94:23:
60:10:f8:df:95:62:ce:34:90:df:1a:ac:28:97:33:0b:e2:3b:
88:7f:46:ee:8a:4c:54:a4:85:73:fa:19:66:1a:e5:51:77:9b:
56:f7:aa:7d:6d:42:4f:9a:4e:b2:db:71:74:50:2e:cb:a9:8b:
73:a6:f2:82:fe:35:55:b7:04:b7:75:f8:35:99:fa:07:a2:cf:
c3:8d:01:68:89:cd:0a:99:a8:73:d7:2d:aa:8e:73:df:6e:57:
c3:e2:98:1e:7f:98:59:62:b4:c2:fa:77:b5:9b:3b:76:e9:22:
ee:f7:41:24:62:02:ee:23:30:31:4c:03:a5:74:4f:c7:04:ca:
f3:7b:9f:09:2c:35:ef:d5:1f:f3:70:bd:66:bc:f6:f5:f5:18:
a9:44:97:e9:eb:be:ab:7b:9d:01:ac:bc:93:b9:ac:45:c5:38:
67:e6:43:f7:52:6a:49:8c:fa:46:66:fb:d0:da:d5:38:d6:3d:
e2:f4:2e:b2:45:36:9a:c4:81:35:23:78:4e:fb:1d:c7:34:1f:
90:2e:75:54:b0:e5:f1:e8:b7:2b:cc:51:0f:1b:fb:76:45:c6:
58:e1:f0:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:16 2023 by rpki-client on console.sobornost.net