Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/c050ea-0e26-4ef2-9fb9-345554f65a24/1/nG3ipavnOzgRLT2clHbqgZC8laE.roa
File: nG3ipavnOzgRLT2clHbqgZC8laE.roa (raw, json)
Hash identifier: 64YjUgIKAFBS79S1vLaBDT3E/Jh/7dxWBtAxZy83/hQ=
Subject key identifier: 9C:6D:E2:A5:AB:E7:3B:38:11:2D:3D:9C:94:76:EA:81:90:BC:95:A1
Certificate issuer: /CN=f5145b1a2f681355028cb62ab65781181b18664a
Certificate serial: 32D612DC
Authority key identifier: F5:14:5B:1A:2F:68:13:55:02:8C:B6:2A:B6:57:81:18:1B:18:66:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9RRbGi9oE1UCjLYqtleBGBsYZko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/c050ea-0e26-4ef2-9fb9-345554f65a24/1/nG3ipavnOzgRLT2clHbqgZC8laE.roa
Signing time: Sat 01 Jan 2022 08:02:47 +0000
ROA not before: Sat 01 Jan 2022 08:02:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42283
IP address blocks: 2001:4bc0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 852890332 (0x32d612dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5145b1a2f681355028cb62ab65781181b18664a
Validity
Not Before: Jan 1 08:02:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9c6de2a5abe73b38112d3d9c9476ea8190bc95a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:24:7f:56:63:1d:5e:f9:e0:f9:c2:9c:f2:e4:
0e:7a:bb:58:1d:c5:88:27:b0:ce:c9:72:e9:a8:f3:
35:4d:c3:0f:85:52:25:1c:5c:b3:a5:28:ce:0f:40:
ac:d8:28:f5:f3:21:c3:a1:24:37:43:e5:d2:ea:e9:
ab:b6:68:95:09:9f:53:fe:34:5d:57:7b:72:1d:51:
7b:bf:65:1d:d8:9c:0d:17:ee:14:2d:2e:85:4c:49:
6b:50:0b:41:e1:c5:38:94:16:ed:e8:39:1c:4b:35:
ad:5a:29:b3:7d:e7:f0:3a:ff:3b:70:82:16:22:ab:
85:3a:c7:03:62:9f:f0:9c:21:72:aa:89:3f:14:39:
39:5a:d9:35:4a:6c:f4:cb:06:5b:b8:3f:30:89:bb:
a2:39:52:cf:70:44:87:86:0c:07:c3:2c:0e:0f:55:
3d:b3:03:df:80:d4:b5:01:d9:a3:f8:32:a5:c8:86:
c3:4f:24:ee:e6:53:4a:2f:33:5f:f7:19:f8:aa:a3:
ac:e4:32:39:48:3c:7f:8b:89:c7:08:7a:88:ac:42:
02:da:8e:37:c5:e1:29:c0:ff:a9:6a:fd:79:aa:42:
e6:59:47:6f:79:df:e7:03:fe:b0:1b:ea:10:d5:73:
82:33:8b:86:be:3f:dd:0b:28:47:c8:98:95:04:54:
eb:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:6D:E2:A5:AB:E7:3B:38:11:2D:3D:9C:94:76:EA:81:90:BC:95:A1
X509v3 Authority Key Identifier:
keyid:F5:14:5B:1A:2F:68:13:55:02:8C:B6:2A:B6:57:81:18:1B:18:66:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9RRbGi9oE1UCjLYqtleBGBsYZko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/c050ea-0e26-4ef2-9fb9-345554f65a24/1/nG3ipavnOzgRLT2clHbqgZC8laE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/c050ea-0e26-4ef2-9fb9-345554f65a24/1/9RRbGi9oE1UCjLYqtleBGBsYZko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:4bc0::/32
Signature Algorithm: sha256WithRSAEncryption
24:e6:d3:5c:3e:24:0a:63:cd:55:df:0a:d9:c0:a7:d3:fc:07:
66:ca:22:41:10:a1:74:e5:0b:ec:7e:4a:3a:30:6e:28:f9:ff:
7a:b8:e4:ac:c5:d9:42:da:7d:c9:2b:be:60:1b:05:6b:b1:84:
b9:66:a0:56:61:4f:88:0e:32:7e:a9:98:07:5c:7e:f2:94:e8:
1e:82:64:bc:0e:82:97:f0:41:71:7e:e3:16:d1:68:d5:65:aa:
47:7a:db:ce:0e:85:50:09:90:0c:86:17:01:08:f8:34:39:e0:
15:05:3c:d3:26:db:c4:37:26:65:a6:45:dc:20:53:e1:89:07:
6f:60:42:27:c6:be:df:a3:ff:9e:1c:66:b2:44:67:ea:97:21:
35:73:9d:4d:70:27:e6:78:5a:b9:c2:c4:ab:1b:06:c1:51:a9:
f0:7f:52:c0:a2:9b:21:3f:5b:64:cb:88:4e:ed:4c:b8:2d:d7:
43:96:06:22:71:f0:75:84:74:ef:9a:d3:61:8c:df:ef:8b:59:
f5:1b:dd:11:11:9b:05:3f:80:97:c1:e0:62:e0:2e:9d:32:01:
c1:9a:6d:61:ca:c1:f4:27:91:7c:30:c5:82:71:9e:26:c2:c4:
14:4b:d6:10:6f:5c:6c:50:b3:8f:e1:f5:ca:7b:d5:6f:41:0d:
67:e1:97:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:50 2024 by rpki-client on console-ams.rpki-client.org