Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/cbb5ed-65cc-4979-b0b1-a493fe7f2ae6/1/77cdhSvhl6Z46YQCxPCGC_JNdQU.roa
File: 77cdhSvhl6Z46YQCxPCGC_JNdQU.roa (raw, json)
Hash identifier: dXfgY71mXxTSkpw7ebM8dQXHYqvZOaA33dRabL0z44s=
Subject key identifier: EF:B7:1D:85:2B:E1:97:A6:78:E9:84:02:C4:F0:86:0B:F2:4D:75:05
Certificate issuer: /CN=b3bea0da56e55fa2eb500f150dc478ed1cb39daf
Certificate serial: 018640D5
Authority key identifier: B3:BE:A0:DA:56:E5:5F:A2:EB:50:0F:15:0D:C4:78:ED:1C:B3:9D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s76g2lblX6LrUA8VDcR47Ryzna8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/cbb5ed-65cc-4979-b0b1-a493fe7f2ae6/1/77cdhSvhl6Z46YQCxPCGC_JNdQU.roa
Signing time: Tue 15 Feb 2022 08:13:25 +0000
ROA not before: Tue 15 Feb 2022 08:13:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212238
IP address blocks: 2a0f:89c0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25575637 (0x18640d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3bea0da56e55fa2eb500f150dc478ed1cb39daf
Validity
Not Before: Feb 15 08:13:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=efb71d852be197a678e98402c4f0860bf24d7505
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:47:e4:b4:79:41:90:03:be:61:d4:d3:c5:9d:
3d:d5:32:96:31:73:9b:e4:49:a1:1a:51:31:81:3f:
45:d6:79:62:2e:72:fe:9e:f5:32:be:4f:bf:9e:b9:
aa:2a:b5:78:5b:30:5d:35:5b:7b:bd:8e:ef:48:b2:
07:6d:ab:0c:13:67:fc:2b:33:42:ea:9b:e1:65:db:
c9:27:68:8f:bf:4f:6c:39:b8:f5:5b:df:85:6e:f3:
ac:80:ef:8e:89:38:d3:82:e1:b2:5c:c0:34:b8:4f:
fe:4e:75:81:04:2b:c5:f5:aa:32:2a:18:55:95:3c:
ea:0d:fa:21:35:ea:cd:1b:00:13:75:90:ce:a1:4d:
77:57:c7:fa:a3:e6:8e:13:19:96:3e:5b:93:b6:7e:
e9:8f:38:6a:46:07:86:aa:45:fd:5c:83:a6:e7:98:
c0:0b:aa:cd:31:1b:97:41:b8:02:ab:75:cc:71:aa:
1a:16:fc:4d:98:ba:b5:c2:57:19:33:ba:49:09:e8:
ca:bc:4b:b7:cd:1f:c3:c0:e9:ef:1c:fd:c6:ea:b9:
72:56:39:0c:40:2b:db:87:8e:8d:17:14:25:17:78:
cb:10:1d:29:4c:b3:b7:d9:65:c8:47:f6:cd:75:b5:
bb:10:02:e3:34:d2:06:66:de:d6:cd:5e:1e:68:09:
6a:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:B7:1D:85:2B:E1:97:A6:78:E9:84:02:C4:F0:86:0B:F2:4D:75:05
X509v3 Authority Key Identifier:
keyid:B3:BE:A0:DA:56:E5:5F:A2:EB:50:0F:15:0D:C4:78:ED:1C:B3:9D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s76g2lblX6LrUA8VDcR47Ryzna8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/cbb5ed-65cc-4979-b0b1-a493fe7f2ae6/1/77cdhSvhl6Z46YQCxPCGC_JNdQU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/cbb5ed-65cc-4979-b0b1-a493fe7f2ae6/1/s76g2lblX6LrUA8VDcR47Ryzna8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:89c0::/29
Signature Algorithm: sha256WithRSAEncryption
3a:51:dd:df:1c:f9:fd:47:11:02:88:0f:81:aa:b4:0f:2d:7b:
b0:b3:62:03:25:1b:23:c0:1b:c6:d7:a8:c8:99:0d:e7:34:7b:
b7:cf:1b:b7:63:0d:86:00:53:3d:52:6c:8f:31:d7:c1:72:78:
f2:cd:53:ae:e6:7d:06:76:f1:b5:2c:16:b4:c4:14:c5:00:b4:
e9:02:1a:42:bd:e4:d7:a7:51:5b:5d:26:d4:82:c5:3e:7b:28:
20:8b:d8:a6:7b:00:5e:32:d0:8b:5b:0f:f4:83:a2:fd:52:c5:
cb:be:2b:3a:f4:90:a9:11:90:37:25:35:2b:5b:9d:d2:43:60:
d4:06:aa:c8:61:90:47:87:be:1a:af:38:1f:eb:5c:c2:33:83:
5a:21:ab:48:b3:d3:45:48:d2:7d:2c:05:80:a5:5e:b3:07:f3:
60:7b:fa:a8:78:54:1b:0d:91:58:f1:9c:05:37:7f:95:af:4b:
36:a5:a6:ea:62:7e:59:00:c7:84:ec:06:a3:06:56:3b:93:2c:
31:3e:ea:d2:a9:26:b5:bb:85:f7:ac:7c:b8:b8:41:4b:63:65:
37:0e:da:c4:5d:32:d9:a4:98:0d:61:f7:98:fb:d4:df:af:ce:
18:f7:82:55:0a:b4:2b:a8:1e:48:e4:58:77:69:fb:dc:fc:09:
01:66:7f:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:55 2024 by rpki-client on console-fra.rpki-client.org