Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/ddf54f-d42c-45c6-8157-0fee9e064615/1/Pr1QUG9uHuNjKdqKEXKNuSmVPfg.roa
File: Pr1QUG9uHuNjKdqKEXKNuSmVPfg.roa (raw, json)
Hash identifier: k0+ps7vszFCDvx351GYAzFMH5lcsUWJMHGfnwjbXdwA=
Subject key identifier: 3E:BD:50:50:6F:6E:1E:E3:63:29:DA:8A:11:72:8D:B9:29:95:3D:F8
Certificate issuer: /CN=67cc74ddcc584773d4f9d50e3e5b27bb601b8a8b
Certificate serial: 018CC9B884EC4428D06CA25CF9D3FBE40671
Authority key identifier: 67:CC:74:DD:CC:58:47:73:D4:F9:D5:0E:3E:5B:27:BB:60:1B:8A:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z8x03cxYR3PU-dUOPlsnu2Abios.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/ddf54f-d42c-45c6-8157-0fee9e064615/1/Pr1QUG9uHuNjKdqKEXKNuSmVPfg.roa
Signing time: Tue 02 Jan 2024 10:29:22 +0000
ROA not before: Tue 02 Jan 2024 10:29:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205684
IP address blocks: 2001:678:d04::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:b8:84:ec:44:28:d0:6c:a2:5c:f9:d3:fb:e4:06:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67cc74ddcc584773d4f9d50e3e5b27bb601b8a8b
Validity
Not Before: Jan 2 10:29:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3ebd50506f6e1ee36329da8a11728db929953df8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:d1:b7:4d:c8:b1:88:6c:b0:3b:6c:24:8a:95:
11:54:1d:6a:2e:9f:82:df:2e:ba:44:7c:94:c4:c2:
b4:d2:9a:db:2d:b9:f0:b7:08:b8:75:13:c7:b7:83:
37:c4:27:0d:30:a0:dd:c9:cf:89:5e:c7:40:47:03:
44:00:e7:c6:b4:54:1a:32:47:ab:40:48:0f:da:c9:
65:53:9e:cb:20:89:42:c6:68:f6:7e:dd:59:74:53:
ad:84:9d:f5:8e:b8:67:f9:5e:e8:ff:b4:c6:8b:68:
78:dd:de:f9:f5:a8:6f:2b:12:2c:b5:45:65:e9:4f:
d5:25:fc:a1:28:10:76:3c:79:09:00:14:30:73:2f:
0e:01:a2:23:76:5b:ed:46:4f:7a:f7:d8:3d:c5:f7:
22:47:59:36:82:a5:90:62:d8:cd:98:c9:f0:a8:46:
58:62:bc:12:0a:ec:71:ad:3a:f3:77:09:8a:df:40:
7d:6d:e8:94:73:6d:be:08:c0:2a:17:a1:cb:e8:35:
0c:1f:c4:6b:86:64:78:d2:fe:c2:58:e9:18:36:4f:
94:b4:b5:0f:3d:ee:a9:9e:82:ef:0a:cd:6b:5b:b5:
c8:03:13:b8:80:90:70:18:7c:58:08:32:ab:0b:39:
08:fa:58:cb:94:75:e8:ef:39:78:89:5e:cd:4b:b9:
76:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:BD:50:50:6F:6E:1E:E3:63:29:DA:8A:11:72:8D:B9:29:95:3D:F8
X509v3 Authority Key Identifier:
keyid:67:CC:74:DD:CC:58:47:73:D4:F9:D5:0E:3E:5B:27:BB:60:1B:8A:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z8x03cxYR3PU-dUOPlsnu2Abios.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/ddf54f-d42c-45c6-8157-0fee9e064615/1/Pr1QUG9uHuNjKdqKEXKNuSmVPfg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/ddf54f-d42c-45c6-8157-0fee9e064615/1/Z8x03cxYR3PU-dUOPlsnu2Abios.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:d04::/48
Signature Algorithm: sha256WithRSAEncryption
a6:1f:70:46:5d:d8:8d:e2:c7:34:fc:8c:1a:e9:7a:95:02:cd:
c7:f4:96:70:8e:f9:ac:4b:5e:7a:e0:ca:72:28:8d:53:79:72:
1a:ce:6f:51:65:ea:f5:10:19:2c:6e:b8:9b:9a:38:28:7e:4c:
4f:e5:ae:a4:8a:c3:01:f8:63:aa:20:e1:92:9e:14:31:ec:4b:
c8:f0:10:3c:e8:dc:10:e4:86:aa:9d:38:7e:e1:a0:ed:42:40:
d4:3b:f9:14:61:21:dd:3f:1e:de:7e:4b:67:f0:8b:36:f7:d0:
ef:80:5e:71:bb:18:fa:d7:c1:68:c0:7e:7a:f9:d7:8a:24:38:
a7:7e:75:99:02:d3:d1:b0:14:3e:0d:4a:64:42:1f:b8:67:04:
54:bb:67:69:f4:a9:b1:b5:37:cd:3a:4b:f6:94:03:1c:41:87:
28:74:e4:e7:c4:8d:a5:83:00:ef:1e:40:fa:8d:9f:78:f0:e4:
20:3a:82:fa:aa:a8:b3:0e:04:82:76:b0:70:73:16:13:d7:38:
7a:b8:08:b2:07:1a:b7:28:fe:6f:eb:c0:a9:2f:25:b5:e0:fe:
33:cb:3e:71:79:c5:b0:52:ec:45:47:1c:62:df:1c:50:f9:3f:
a2:66:4c:45:36:9d:35:59:9e:e0:07:0f:95:9e:50:e7:ba:86:
b9:28:95:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:34 2024 by rpki-client on console-ams.rpki-client.org