Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/dJBHV_koccnxqhAKHuQGRU66lFI.roa
File: dJBHV_koccnxqhAKHuQGRU66lFI.roa (raw, json)
Hash identifier: mOZTymkwol3S0LoJ2KnXCWsGmIF8EccgO3A4nlnPb+8=
Subject key identifier: 74:90:47:57:F9:28:71:C9:F1:AA:10:0A:1E:E4:06:45:4E:BA:94:52
Certificate issuer: /CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Certificate serial: 09026A68
Authority key identifier: 27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/dJBHV_koccnxqhAKHuQGRU66lFI.roa
Signing time: Sat 01 Jan 2022 15:03:01 +0000
ROA not before: Sat 01 Jan 2022 15:03:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25973
IP address blocks: 2001:668:117::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151153256 (0x9026a68)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Validity
Not Before: Jan 1 15:03:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=74904757f92871c9f1aa100a1ee406454eba9452
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:f3:14:59:91:58:6c:1e:f4:02:fe:08:53:b3:
19:74:e4:09:98:ed:65:04:3b:1f:ff:58:d8:70:6e:
0b:ad:53:65:53:23:6f:a0:23:c6:93:dd:b7:c6:f5:
aa:92:e6:86:df:8b:37:ef:bd:c7:a0:4f:40:49:df:
71:cd:4f:d2:ba:04:12:51:a8:62:19:53:07:d9:b6:
c7:39:ca:27:7a:28:db:f6:e4:72:eb:a9:47:3a:3d:
31:8f:64:6e:a6:67:34:03:28:89:13:51:42:c8:58:
a7:3d:af:17:b8:2b:6f:d0:45:43:2b:eb:4f:7c:c8:
5c:73:c1:5b:10:1f:ee:fc:e9:fb:6a:2b:be:54:1b:
3b:36:b8:6f:09:ce:b0:73:83:e9:79:d2:13:85:b1:
aa:a1:17:c3:1e:8c:e3:5a:d9:34:fe:7c:6e:dc:9d:
48:99:7a:e5:40:27:82:81:61:92:6b:86:0a:1c:9f:
6a:20:cb:a4:a0:5e:2b:47:7d:d6:ba:7b:31:80:aa:
18:51:a4:25:83:03:8a:af:55:d0:0c:be:0e:2e:6a:
82:dc:73:cd:96:1d:29:7e:1e:d6:29:6e:a8:52:9d:
c8:d4:da:54:05:15:5d:8e:f8:e8:83:9e:6a:6c:f2:
1f:56:dc:e7:22:a2:fe:4f:37:da:fd:60:bf:94:30:
d7:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:90:47:57:F9:28:71:C9:F1:AA:10:0A:1E:E4:06:45:4E:BA:94:52
X509v3 Authority Key Identifier:
keyid:27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/dJBHV_koccnxqhAKHuQGRU66lFI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:668:117::/48
Signature Algorithm: sha256WithRSAEncryption
e0:50:dc:f6:eb:b4:ff:77:10:e3:97:9c:09:0c:32:bc:f8:aa:
fd:8d:39:56:5d:a6:e2:a8:21:73:ab:2b:b4:c8:2f:ba:71:5b:
63:2c:a6:2c:d7:54:a5:42:12:de:46:32:81:d2:de:fb:2f:19:
d0:f3:78:5f:fd:29:15:09:19:4d:78:de:ed:33:0f:4a:a3:bb:
99:09:fb:c5:5c:f0:b5:f7:61:5e:9a:13:1d:76:6f:4a:fd:56:
d8:ed:0e:c4:8e:02:1b:14:c6:d3:a9:07:79:30:16:56:04:34:
9d:7c:ae:6f:de:51:d4:ef:96:fd:a4:fc:95:f6:59:fe:56:3f:
0b:e1:61:fb:db:bd:e5:70:6b:99:19:c5:5a:fe:26:0b:a0:a3:
a1:99:96:04:cd:c8:be:40:f6:17:a3:82:7e:54:53:88:ac:53:
09:89:7f:41:84:03:78:e0:ae:68:f8:c7:2b:4c:eb:94:81:ac:
dd:0e:18:91:78:37:12:4b:62:bc:ea:8e:a9:cc:5b:fb:ac:29:
5d:ca:e7:d1:56:9a:db:4b:e6:df:53:81:a3:25:80:e8:c4:f1:
73:ba:17:07:12:de:a4:9a:0c:99:07:b4:11:11:95:a4:8d:3b:
12:04:df:47:b4:66:b2:f0:c6:40:08:72:ae:35:30:26:9d:4c:
f1:68:67:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:18:48 2025 by rpki-client