Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/2e9456-37c3-4274-bc31-64ee464b6404/1/4j9SUVGXo0BIDxWCuywpDZSp00k.roa
File: 4j9SUVGXo0BIDxWCuywpDZSp00k.roa (raw, json)
Hash identifier: zmRt85uBGrxHDRc/Sczzqz8COGthbhBiXNdZeB+sI6E=
Subject key identifier: E2:3F:52:51:51:97:A3:40:48:0F:15:82:BB:2C:29:0D:94:A9:D3:49
Certificate issuer: /CN=3b1f8da9cb0e362c424196b20e604e94a83bc850
Certificate serial: 012A4487
Authority key identifier: 3B:1F:8D:A9:CB:0E:36:2C:42:41:96:B2:0E:60:4E:94:A8:3B:C8:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ox-NqcsONixCQZayDmBOlKg7yFA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/2e9456-37c3-4274-bc31-64ee464b6404/1/4j9SUVGXo0BIDxWCuywpDZSp00k.roa
Signing time: Sat 01 Jan 2022 01:56:55 +0000
ROA not before: Sat 01 Jan 2022 01:56:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204790
IP address blocks: 2a11:b980::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19547271 (0x12a4487)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b1f8da9cb0e362c424196b20e604e94a83bc850
Validity
Not Before: Jan 1 01:56:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e23f52515197a340480f1582bb2c290d94a9d349
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:bf:65:4b:a7:b0:7a:8d:56:ae:ef:cf:23:f7:
ac:27:67:b9:40:57:aa:6c:66:4b:7d:da:55:43:8d:
44:56:05:69:8a:21:a1:43:1a:dc:a6:dc:c9:7d:3d:
56:78:57:92:da:bf:5d:4e:54:b8:23:60:58:21:35:
23:d1:6a:71:de:57:ea:0f:64:4c:ab:65:3b:e2:ed:
93:7c:30:f4:30:22:ee:6e:4b:10:93:6a:35:59:ad:
b0:ca:0e:0a:e2:00:7d:49:cb:9c:86:2f:47:ea:c0:
43:e4:52:cc:3d:a2:54:9e:ea:65:ec:49:19:85:4d:
ab:b2:ad:49:de:c8:14:40:15:98:f2:80:36:27:4b:
cc:b2:b9:8e:c9:71:d9:8f:42:90:be:a3:38:16:9f:
25:a6:43:fd:0b:77:bd:18:78:81:f9:f5:b2:77:1b:
aa:a9:11:0d:d7:b4:8d:2c:83:31:18:a7:1f:b2:ab:
ce:b0:b7:1d:70:ef:a3:2d:44:23:cd:e6:e0:02:32:
2b:a0:00:26:5f:ad:5d:9c:47:7c:2a:e6:96:1e:f5:
cc:02:1d:04:bb:93:8d:ab:e2:1c:65:ba:b4:1e:80:
0a:37:89:ef:77:28:86:24:32:e1:3d:fb:e2:1c:b1:
08:a4:df:e7:4a:5f:69:3b:a9:b7:7a:d7:94:93:a5:
91:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:3F:52:51:51:97:A3:40:48:0F:15:82:BB:2C:29:0D:94:A9:D3:49
X509v3 Authority Key Identifier:
keyid:3B:1F:8D:A9:CB:0E:36:2C:42:41:96:B2:0E:60:4E:94:A8:3B:C8:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ox-NqcsONixCQZayDmBOlKg7yFA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/2e9456-37c3-4274-bc31-64ee464b6404/1/4j9SUVGXo0BIDxWCuywpDZSp00k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/2e9456-37c3-4274-bc31-64ee464b6404/1/Ox-NqcsONixCQZayDmBOlKg7yFA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:b980::/29
Signature Algorithm: sha256WithRSAEncryption
48:1f:10:24:fb:12:69:f1:02:1c:95:af:ad:50:6f:fb:9f:39:
6d:5f:41:2e:ed:cb:0a:18:66:0e:56:c3:c2:4b:7f:57:dd:07:
db:77:02:37:23:46:62:2d:58:97:7f:ce:bb:85:3d:9a:57:91:
c7:32:2e:da:0e:0e:a1:74:07:6e:10:3c:ee:06:a4:65:51:33:
d1:bb:2d:d2:e0:55:d4:c4:49:06:2f:e6:25:41:50:00:c9:b8:
2c:ff:06:8a:ee:25:90:e3:b1:21:34:ce:e4:a5:1b:bc:94:a9:
6b:b8:64:b8:e2:f0:bf:7b:60:0f:7b:04:94:82:82:4f:c1:4f:
67:dc:cc:fa:5e:f2:78:2a:be:74:97:aa:40:b0:73:cf:8e:b1:
26:5d:42:8b:39:24:c9:ce:c9:38:40:e0:7d:18:47:20:18:be:
d2:2a:8e:1c:48:73:fc:ef:7a:0d:17:a0:bc:48:36:69:8b:e4:
35:75:19:24:35:64:81:30:cc:1e:99:51:f1:71:3b:61:f8:16:
14:cb:b8:c3:37:b9:9c:e1:f2:68:52:9f:d3:da:d1:f7:86:1a:
b3:55:7f:0e:f0:b8:b1:66:d4:15:d4:2a:15:d7:ba:d0:e8:74:
80:86:30:8a:78:6d:16:18:f1:7e:84:95:ef:9b:c6:dc:b0:23:
41:fc:18:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:29 2024 by rpki-client on console-fra.rpki-client.org