Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/dbecfc-1fde-4c46-834c-19be17db55f9/1/Zm5Y8BVkPVokNt5jtQ4kyGHHrr4.roa
File: Zm5Y8BVkPVokNt5jtQ4kyGHHrr4.roa (raw, json)
Hash identifier: be1CGbnqRjP5wko+MlwZE4dvvGmrOvkM5YVHjwUcDxo=
Subject key identifier: 66:6E:58:F0:15:64:3D:5A:24:36:DE:63:B5:0E:24:C8:61:C7:AE:BE
Certificate issuer: /CN=7d00ccf61fa633675bc7c652c7946be09c2c465f
Certificate serial: AD8069
Authority key identifier: 7D:00:CC:F6:1F:A6:33:67:5B:C7:C6:52:C7:94:6B:E0:9C:2C:46:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQDM9h-mM2dbx8ZSx5Rr4JwsRl8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/dbecfc-1fde-4c46-834c-19be17db55f9/1/Zm5Y8BVkPVokNt5jtQ4kyGHHrr4.roa
Signing time: Sat 01 Jan 2022 08:04:29 +0000
ROA not before: Sat 01 Jan 2022 08:04:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204790
IP address blocks: 2a11:5b40::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11370601 (0xad8069)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d00ccf61fa633675bc7c652c7946be09c2c465f
Validity
Not Before: Jan 1 08:04:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=666e58f015643d5a2436de63b50e24c861c7aebe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:23:06:43:ef:da:db:fe:01:a8:2c:96:7b:0a:
1e:d8:96:ac:03:bb:d2:2d:d5:1b:71:e5:bf:e5:6c:
6e:9b:e6:99:06:78:20:7c:6e:5f:58:83:9b:10:32:
d4:02:7d:3d:59:19:cf:b8:83:9b:75:84:3d:64:62:
d8:79:28:2b:8b:7f:93:69:32:ff:4b:69:7a:c1:88:
7f:b1:0c:71:e8:bf:2c:17:17:e0:15:a2:bc:63:ca:
55:49:5f:2f:e0:45:57:f1:70:9f:55:79:2e:a1:6b:
2c:7a:3f:65:e5:3f:26:e7:c5:dd:bd:b3:19:d2:a0:
36:40:cc:2e:fe:b9:e3:c3:19:57:ad:62:63:40:91:
fd:24:d2:db:4e:f8:6a:5c:7d:bf:c1:75:ca:a4:a9:
55:9d:45:3e:da:a2:d4:62:d4:2b:7b:56:e2:74:9c:
4c:27:15:16:20:ed:cd:ed:de:4e:7e:1c:01:61:ad:
57:6b:5e:cb:21:3c:8e:79:b1:3d:4d:2c:09:db:56:
a7:c4:c6:1a:8e:6b:85:67:6f:8b:37:3b:3b:8e:91:
77:25:0a:83:fe:d5:7e:14:c0:82:2d:a0:b3:fe:b3:
8a:34:b6:29:0c:c2:95:ac:a9:a1:ea:75:27:d3:3c:
d3:cf:2a:28:6a:6a:47:ee:3b:b0:0c:44:93:b0:b8:
c7:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:6E:58:F0:15:64:3D:5A:24:36:DE:63:B5:0E:24:C8:61:C7:AE:BE
X509v3 Authority Key Identifier:
keyid:7D:00:CC:F6:1F:A6:33:67:5B:C7:C6:52:C7:94:6B:E0:9C:2C:46:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQDM9h-mM2dbx8ZSx5Rr4JwsRl8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/dbecfc-1fde-4c46-834c-19be17db55f9/1/Zm5Y8BVkPVokNt5jtQ4kyGHHrr4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/dbecfc-1fde-4c46-834c-19be17db55f9/1/fQDM9h-mM2dbx8ZSx5Rr4JwsRl8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:5b40::/29
Signature Algorithm: sha256WithRSAEncryption
7d:1a:df:e1:58:9d:f7:9d:f5:7b:4e:71:81:4d:b8:db:eb:0b:
3b:33:11:e0:f3:64:ef:02:e8:4e:43:25:1d:02:3e:2e:e7:0e:
4f:94:bc:8c:29:69:37:28:ef:2c:0a:e2:b3:46:8c:1b:32:29:
f7:b8:93:38:79:6c:ba:e4:a1:74:80:ee:30:a7:2a:57:a9:fe:
68:93:65:8e:8e:91:73:90:9b:eb:32:2e:8a:5e:79:fe:1a:32:
e1:1b:ed:3b:cf:85:8f:f7:af:4f:1c:a0:12:79:2c:7e:36:63:
32:53:31:af:d7:25:d3:01:2c:f5:8a:f0:53:00:68:76:dd:1a:
a6:92:6f:4c:65:9b:31:38:35:35:2f:2a:8d:a9:e8:08:dc:df:
70:6b:4c:bc:26:1f:78:7c:70:45:f7:fd:d4:93:c5:1b:e2:3f:
b7:6f:d5:80:a9:b0:a4:28:42:71:fd:12:e2:fa:48:7f:71:e6:
76:22:17:28:e8:31:dc:b8:04:49:95:ff:be:5e:ff:03:ea:38:
7a:a2:ac:76:6a:58:e6:ea:36:14:e9:44:14:40:8f:dd:6c:df:
7e:ae:ac:a2:01:2c:c9:7a:ef:a1:67:8a:f4:34:b4:7e:02:28:
20:13:03:83:8b:f6:fd:1f:03:e5:f2:6a:d9:bb:b6:8c:b9:95:
12:25:d5:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:01 2024 by rpki-client on console-fra.rpki-client.org