Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/2fad8b-414a-405a-b85d-cdf4c09e82f0/1/4NU5b4HhfCuH3WERdOsTxKnV008.roa
File: 4NU5b4HhfCuH3WERdOsTxKnV008.roa (raw, json)
Hash identifier: 2dEicvGfu4ffP4BnEyCJagNTxy3SXeiPLA35iypUnpw=
Subject key identifier: E0:D5:39:6F:81:E1:7C:2B:87:DD:61:11:74:EB:13:C4:A9:D5:D3:4F
Certificate issuer: /CN=5d4e96716cb768c9e2fc5ee7b6e5bad6851ef285
Certificate serial: 0759AC1B
Authority key identifier: 5D:4E:96:71:6C:B7:68:C9:E2:FC:5E:E7:B6:E5:BA:D6:85:1E:F2:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XU6WcWy3aMni_F7ntuW61oUe8oU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/2fad8b-414a-405a-b85d-cdf4c09e82f0/1/4NU5b4HhfCuH3WERdOsTxKnV008.roa
Signing time: Sat 01 Jan 2022 03:51:44 +0000
ROA not before: Sat 01 Jan 2022 03:51:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207801
IP address blocks: 2a0f:bf00:80::/42 maxlen: 42
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123317275 (0x759ac1b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d4e96716cb768c9e2fc5ee7b6e5bad6851ef285
Validity
Not Before: Jan 1 03:51:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e0d5396f81e17c2b87dd611174eb13c4a9d5d34f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:73:be:ca:c5:d6:01:03:e4:fc:fb:2a:30:f6:
26:2f:49:45:d5:1b:03:72:92:e2:4e:f8:f0:3f:af:
bf:5a:9a:d7:4b:ce:89:cc:0d:29:19:65:58:93:a4:
1d:08:d8:42:e9:1d:b1:97:2b:13:46:8d:43:73:52:
f2:fe:ac:f4:cb:d6:55:40:c3:94:99:50:02:40:3a:
a1:8e:1c:57:7e:13:3f:c5:b7:16:cb:0d:32:e8:69:
85:9c:03:f9:19:d1:c4:9e:8d:b4:9e:c6:bd:ad:24:
5e:fc:44:3e:d0:4c:87:9a:de:06:82:45:2b:85:4e:
ae:7e:2f:87:d0:3d:aa:7d:9c:e5:90:06:e4:25:43:
a0:ac:1a:32:21:f1:3c:68:bf:a0:ff:b9:41:01:9d:
c9:5a:7e:92:e7:a9:c4:2f:e9:fb:a5:24:f0:52:0e:
f4:a7:6a:37:b0:42:cf:7f:4e:60:87:30:0e:9b:ee:
81:b5:50:ed:72:6a:1b:a5:ee:f7:1e:80:09:1c:d1:
67:ec:00:94:c5:90:68:0f:0e:6b:3b:bd:53:6d:c9:
76:59:1c:26:70:05:fb:aa:d0:b1:6e:f8:fc:89:47:
3f:d7:8f:b2:95:ee:9a:fa:ec:84:b1:dc:3a:e8:45:
e5:f7:36:dc:66:34:f6:bf:63:63:c0:cd:bf:2a:8e:
00:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:D5:39:6F:81:E1:7C:2B:87:DD:61:11:74:EB:13:C4:A9:D5:D3:4F
X509v3 Authority Key Identifier:
keyid:5D:4E:96:71:6C:B7:68:C9:E2:FC:5E:E7:B6:E5:BA:D6:85:1E:F2:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XU6WcWy3aMni_F7ntuW61oUe8oU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/2fad8b-414a-405a-b85d-cdf4c09e82f0/1/4NU5b4HhfCuH3WERdOsTxKnV008.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/2fad8b-414a-405a-b85d-cdf4c09e82f0/1/XU6WcWy3aMni_F7ntuW61oUe8oU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:bf00:80::/42
Signature Algorithm: sha256WithRSAEncryption
d2:36:a0:f0:d6:df:60:b1:ea:f7:1e:0e:e5:da:e9:4f:62:3c:
c4:fd:57:89:06:d8:51:ce:43:cc:7e:d2:68:84:47:a2:80:7f:
c0:6f:21:86:d9:a5:3e:29:15:52:7e:93:f6:10:09:fe:57:ce:
40:26:08:d6:57:76:33:60:4f:b5:ee:d8:53:eb:0f:5c:34:94:
0e:10:4c:0f:30:78:f2:6a:72:18:20:4a:5d:8e:bb:ee:84:d1:
6c:b2:06:c9:a7:75:47:56:01:b0:8c:b4:df:ea:b6:04:1b:df:
fa:4d:e1:03:fa:a2:0d:d7:cf:58:00:13:1a:75:9d:d1:ff:fc:
1d:63:c8:cf:a6:15:af:78:f6:68:62:d7:9e:7f:bc:52:b4:0e:
6d:d4:38:34:29:6b:0e:a8:f2:52:ef:35:ef:aa:76:d9:fe:01:
78:ae:b0:a3:ef:cd:6a:5f:13:9a:61:1d:a6:85:35:81:9b:84:
41:d6:30:2b:b4:d7:29:6a:fe:15:e1:35:63:cd:05:f0:64:35:
c6:a0:13:9f:42:73:67:71:de:61:7e:43:e5:b3:6e:14:e8:95:
c2:be:fd:b6:5c:04:2d:44:8c:e3:26:72:cc:a5:ba:67:e4:ab:
39:91:38:14:ad:89:13:06:e9:22:d0:fa:37:13:98:fc:47:66:
84:44:41:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:38 2024 by rpki-client on console-ams.rpki-client.org