Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/90269f-46b4-4e03-9b61-bd9f444a0d70/1/8zIbGC4T5YjXGexxSjafGAR1zb0.roa
File: 8zIbGC4T5YjXGexxSjafGAR1zb0.roa (raw, json)
Hash identifier: ycN7lkA7MdMDnMHuGFxqfln63gxv6UpHIEqq/4mHaVE=
Subject key identifier: F3:32:1B:18:2E:13:E5:88:D7:19:EC:71:4A:36:9F:18:04:75:CD:BD
Certificate issuer: /CN=fe5ef4b0f268d1ec24ccf542b4811d307aef0034
Certificate serial: 018572E81534F0254538C66695087026C11C
Authority key identifier: FE:5E:F4:B0:F2:68:D1:EC:24:CC:F5:42:B4:81:1D:30:7A:EF:00:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_l70sPJo0ewkzPVCtIEdMHrvADQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/90269f-46b4-4e03-9b61-bd9f444a0d70/1/8zIbGC4T5YjXGexxSjafGAR1zb0.roa
Signing time: Mon 02 Jan 2023 14:34:50 +0000
ROA not before: Mon 02 Jan 2023 14:34:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 22773
IP address blocks: 2a11:e3c0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:e8:15:34:f0:25:45:38:c6:66:95:08:70:26:c1:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe5ef4b0f268d1ec24ccf542b4811d307aef0034
Validity
Not Before: Jan 2 14:34:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f3321b182e13e588d719ec714a369f180475cdbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:06:90:4d:47:f9:09:ec:75:6d:75:9c:62:c9:
62:94:39:a0:ba:0b:4d:b8:4d:cd:1c:05:8a:eb:9b:
9d:6c:f4:d1:2e:e1:c3:5f:63:55:01:ba:32:73:cb:
8e:3b:a6:34:a4:7f:65:83:d7:bd:12:d2:ee:2f:2b:
53:65:03:52:4b:d1:a4:23:bb:5d:d4:66:cc:98:57:
03:b0:3b:ba:bf:3e:1c:e2:de:18:30:e7:10:cd:c0:
c4:99:e5:6c:60:11:b5:cb:d9:37:26:1d:b1:d5:48:
08:f6:cf:f0:a0:d7:0b:d3:ab:d9:08:37:17:46:7f:
ce:f5:ed:f5:1c:17:c2:09:de:d1:38:77:86:8d:8c:
fc:49:4d:41:81:6f:e0:f0:bf:4c:c5:66:ee:71:ba:
78:ff:d1:6b:df:9b:77:61:c7:a5:2d:6e:f3:7d:17:
23:08:e3:2e:04:28:5b:50:d1:02:77:31:f0:0e:18:
89:47:36:d9:fb:0a:4e:8d:65:38:2f:7f:ac:43:35:
64:67:8b:dd:32:5d:f1:b9:ee:a7:3f:1b:ed:8c:6b:
26:e3:e0:b3:0a:2a:f9:da:eb:d8:ad:4f:14:9a:c7:
7e:03:b5:75:e1:05:57:24:fb:06:84:97:ce:09:cb:
54:b8:f1:20:e1:4b:59:17:40:66:61:9c:50:86:cb:
4d:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:32:1B:18:2E:13:E5:88:D7:19:EC:71:4A:36:9F:18:04:75:CD:BD
X509v3 Authority Key Identifier:
keyid:FE:5E:F4:B0:F2:68:D1:EC:24:CC:F5:42:B4:81:1D:30:7A:EF:00:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_l70sPJo0ewkzPVCtIEdMHrvADQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/90269f-46b4-4e03-9b61-bd9f444a0d70/1/8zIbGC4T5YjXGexxSjafGAR1zb0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/90269f-46b4-4e03-9b61-bd9f444a0d70/1/_l70sPJo0ewkzPVCtIEdMHrvADQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:e3c0::/29
Signature Algorithm: sha256WithRSAEncryption
70:58:5e:7e:eb:69:a7:bc:6a:14:8b:45:aa:3d:d0:03:fd:de:
78:38:16:d8:a0:4c:89:07:1c:37:18:ae:21:3c:fb:db:68:67:
69:cf:0d:0c:1c:4e:35:7c:cb:18:17:c0:07:b0:e9:e2:e2:fc:
03:d4:e9:57:99:07:da:fb:63:7e:7d:d0:b3:73:16:9b:f1:43:
8e:9f:91:75:e5:5a:21:fc:98:ba:50:e7:65:df:d4:a8:2f:22:
14:cc:36:dd:94:4b:50:f6:ab:44:ae:7a:8e:09:d2:2b:f8:a8:
68:76:ad:56:89:fb:cf:d0:07:17:5f:18:9b:8f:c4:f7:f3:3e:
cd:dd:fb:8d:18:ff:04:1b:02:49:b9:2a:d4:f4:bd:00:0d:4a:
45:a4:75:12:e9:8f:45:57:23:ef:6b:3b:50:9c:e8:b3:cb:6c:
2b:5f:88:b8:a6:0f:a0:0e:b6:38:f7:1f:59:9a:cd:be:80:66:
94:57:52:57:ec:86:dd:a7:0c:aa:1e:39:af:fe:2e:87:e5:9d:
66:cf:f0:a6:96:cd:1e:b9:52:a7:0c:01:fa:34:44:39:18:84:
a8:24:94:50:00:fd:5d:7a:46:5f:75:af:c1:af:e7:d9:05:ea:
bb:45:12:08:3e:c7:df:13:43:40:6c:9c:92:c6:e0:1a:1f:2a:
53:58:45:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:56 2024 by rpki-client on console-ams.rpki-client.org