Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/2fad8b-414a-405a-b85d-cdf4c09e82f0/1/4P0dC5RkqCa6wp6mcQ70k-l1G3I.roa
File: 4P0dC5RkqCa6wp6mcQ70k-l1G3I.roa (raw, json)
Hash identifier: YEHInP+msCMz95r6IUml/3tiHRHNLeucwxPoPH60QAY=
Subject key identifier: E0:FD:1D:0B:94:64:A8:26:BA:C2:9E:A6:71:0E:F4:93:E9:75:1B:72
Certificate issuer: /CN=5d4e96716cb768c9e2fc5ee7b6e5bad6851ef285
Certificate serial: 075AF24B
Authority key identifier: 5D:4E:96:71:6C:B7:68:C9:E2:FC:5E:E7:B6:E5:BA:D6:85:1E:F2:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XU6WcWy3aMni_F7ntuW61oUe8oU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/2fad8b-414a-405a-b85d-cdf4c09e82f0/1/4P0dC5RkqCa6wp6mcQ70k-l1G3I.roa
Signing time: Sat 01 Jan 2022 03:51:45 +0000
ROA not before: Sat 01 Jan 2022 03:51:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208069
IP address blocks: 2a0f:bf00:40::/42 maxlen: 42
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123400779 (0x75af24b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d4e96716cb768c9e2fc5ee7b6e5bad6851ef285
Validity
Not Before: Jan 1 03:51:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e0fd1d0b9464a826bac29ea6710ef493e9751b72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:70:9a:7c:73:0f:83:aa:04:e6:7c:53:a2:ff:
66:54:f8:92:c3:90:6d:f2:d1:71:b9:b2:61:74:cb:
b0:ef:0e:f5:b5:42:38:1d:82:d6:ca:0f:4d:eb:c9:
8f:85:da:e0:54:fe:34:7e:b3:aa:b8:11:0d:f1:e5:
5c:5b:71:4a:da:7f:52:ab:da:3d:2b:43:41:05:1c:
6a:85:64:7f:b8:62:de:fb:23:74:33:85:07:a0:cb:
bf:ad:12:ce:8f:98:46:03:7c:07:f0:ad:6e:f0:e6:
07:96:03:23:8d:1d:30:7a:41:95:ee:74:68:b8:30:
c3:26:51:9c:75:d9:a5:49:43:a3:b2:f8:2e:95:d1:
9b:b0:3a:07:a5:d1:80:98:a6:8e:32:fe:6f:af:a5:
ab:91:33:7c:c2:96:75:db:3e:d2:ef:44:2b:3a:a6:
5e:59:e4:1c:bb:70:4c:55:5a:1c:88:64:8a:1f:b2:
52:89:43:5f:f6:67:7f:6a:45:23:03:7b:29:4f:9a:
18:b7:0b:06:6b:42:5f:ba:e0:70:3b:65:4b:71:e4:
58:7b:3d:b7:a2:5d:fa:16:b4:ec:b5:20:01:a8:6d:
5b:80:70:cb:76:eb:61:dd:54:89:e3:eb:10:7e:48:
14:d1:43:92:4c:fc:a4:60:ee:26:1f:f2:b4:ec:59:
b7:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:FD:1D:0B:94:64:A8:26:BA:C2:9E:A6:71:0E:F4:93:E9:75:1B:72
X509v3 Authority Key Identifier:
keyid:5D:4E:96:71:6C:B7:68:C9:E2:FC:5E:E7:B6:E5:BA:D6:85:1E:F2:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XU6WcWy3aMni_F7ntuW61oUe8oU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/2fad8b-414a-405a-b85d-cdf4c09e82f0/1/4P0dC5RkqCa6wp6mcQ70k-l1G3I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/2fad8b-414a-405a-b85d-cdf4c09e82f0/1/XU6WcWy3aMni_F7ntuW61oUe8oU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:bf00:40::/42
Signature Algorithm: sha256WithRSAEncryption
83:9d:de:a4:05:e3:72:ba:3d:f4:85:b1:76:ef:f7:88:ca:7b:
96:d0:9e:11:97:e3:0c:2e:d3:e5:6d:d7:a6:91:d2:fa:23:6c:
49:8e:e9:2a:c1:a5:7e:fb:f6:47:6b:5c:8c:30:dd:5a:aa:b8:
05:ad:f5:04:6d:87:af:98:ea:ad:32:2d:a0:46:c8:fe:f7:85:
c2:e8:72:cd:cf:31:0b:20:2d:22:e9:fc:71:c5:22:3a:56:de:
d4:5d:61:bb:9e:a5:8d:d4:3f:59:91:b5:04:af:84:7c:2b:90:
03:1e:17:52:f9:7b:8e:3a:30:40:f7:78:b5:19:ad:57:ed:56:
bc:1c:b5:50:9f:d5:09:98:d9:6c:2c:5c:80:de:5d:10:e0:40:
f3:83:27:fd:39:0f:02:2c:2d:d2:94:83:ad:be:11:33:7e:9b:
70:89:03:67:1a:ed:a8:ae:03:5e:b4:ad:35:a3:1b:08:83:74:
56:1a:9f:0d:57:48:96:c5:b5:a7:7a:03:99:16:d0:4e:34:24:
70:b7:d4:45:42:9f:31:e3:7b:e6:ad:a0:47:06:83:6b:6d:f1:
4f:d8:e2:b0:cd:f3:e0:52:2b:c5:07:d7:4d:82:95:2e:e0:04:
ac:ad:8f:8a:2a:0f:ae:4a:0a:63:64:a8:8c:3a:1c:20:f2:f1:
33:88:e8:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:38 2024 by rpki-client on console-ams.rpki-client.org