Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/3a803c-872d-4927-afa7-15374177739d/1/xEJwMFm64ga7mCYZbMYuGflNZjY.roa
File: xEJwMFm64ga7mCYZbMYuGflNZjY.roa (raw, json)
Hash identifier: sbA5HykJFJFKqNo0Pp0Gp/35V05n7g4jgXUTjxOJpvY=
Subject key identifier: C4:42:70:30:59:BA:E2:06:BB:98:26:19:6C:C6:2E:19:F9:4D:66:36
Certificate issuer: /CN=7f65bff64d8a87977e334d89c4e38c0d1095af63
Certificate serial: 018CFD08C9F6465CEAAF67C5638AD52C6185
Authority key identifier: 7F:65:BF:F6:4D:8A:87:97:7E:33:4D:89:C4:E3:8C:0D:10:95:AF:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f2W_9k2Kh5d-M02JxOOMDRCVr2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/3a803c-872d-4927-afa7-15374177739d/1/xEJwMFm64ga7mCYZbMYuGflNZjY.roa
Signing time: Fri 12 Jan 2024 09:37:40 +0000
ROA not before: Fri 12 Jan 2024 09:37:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197376
IP address blocks: 2a05:5fc1::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:fd:08:c9:f6:46:5c:ea:af:67:c5:63:8a:d5:2c:61:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f65bff64d8a87977e334d89c4e38c0d1095af63
Validity
Not Before: Jan 12 09:37:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c442703059bae206bb9826196cc62e19f94d6636
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:eb:8f:21:ec:81:0f:7e:bb:16:cf:d5:ad:e9:
0c:ac:db:75:66:29:39:83:f6:5a:98:c7:ed:a2:46:
cf:b7:d5:b8:7d:b9:af:f9:76:f0:6d:25:f9:2a:1d:
88:33:81:07:5c:ec:31:21:e4:96:68:b8:b1:c5:8e:
c3:5f:6f:7f:a4:44:1a:d5:aa:01:7c:aa:41:5b:61:
97:c7:a9:ae:18:fb:1d:cb:35:2e:34:b6:99:94:0e:
13:3e:d6:c2:46:71:04:49:4a:97:75:62:c1:4f:b4:
31:8f:ad:86:24:71:3b:66:cb:c2:80:93:22:cd:44:
82:5a:fe:c6:a5:72:14:f6:5e:61:5e:31:bf:c8:61:
f1:0d:2d:f2:77:87:fe:a3:bb:35:ca:27:d7:fd:07:
67:82:26:53:21:53:f3:e4:d9:d5:09:36:32:07:55:
42:ac:3a:22:00:66:c9:76:8d:82:33:a1:48:2c:6c:
45:8d:f9:03:0a:37:93:c8:03:5c:6d:46:17:e2:07:
54:07:96:e6:92:fc:ad:9f:64:05:3a:7f:d4:07:d0:
2b:3a:3d:20:9d:b4:11:57:f0:3d:df:2c:a4:32:11:
6c:61:a2:05:a4:49:d9:cf:da:e9:02:66:c6:a0:97:
ce:a4:a2:48:58:2e:b3:71:c6:83:cc:42:07:55:3f:
6a:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:42:70:30:59:BA:E2:06:BB:98:26:19:6C:C6:2E:19:F9:4D:66:36
X509v3 Authority Key Identifier:
keyid:7F:65:BF:F6:4D:8A:87:97:7E:33:4D:89:C4:E3:8C:0D:10:95:AF:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2W_9k2Kh5d-M02JxOOMDRCVr2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/3a803c-872d-4927-afa7-15374177739d/1/xEJwMFm64ga7mCYZbMYuGflNZjY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/3a803c-872d-4927-afa7-15374177739d/1/f2W_9k2Kh5d-M02JxOOMDRCVr2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:5fc1::/32
Signature Algorithm: sha256WithRSAEncryption
28:3e:fd:84:d2:14:ae:8b:3e:04:c5:b1:5a:d1:f9:36:67:4f:
1a:e5:c5:62:39:25:e1:a5:a0:85:0b:52:e7:94:6e:8e:b6:ba:
c5:6b:bd:e6:fd:8a:f5:39:8f:bf:8e:7c:a7:f7:a4:da:85:ed:
78:24:32:ac:3d:59:72:0b:bc:6d:a1:3f:9e:14:2b:97:aa:4e:
2a:ce:96:a8:9f:b3:5a:26:e6:5b:f8:df:b9:c2:3a:1e:a3:97:
21:39:1c:fe:0f:ec:33:60:ca:35:77:67:e3:66:35:5e:c9:04:
6d:22:7a:55:0c:9a:0e:21:35:9a:f8:d0:b8:e6:b8:2f:15:f6:
f7:cb:26:39:0f:ff:e7:8a:97:f3:44:89:27:62:9c:da:8f:d9:
8b:a7:ef:e8:f6:8d:14:58:f1:11:04:fb:74:62:a8:79:5d:42:
61:51:df:7d:1b:51:bc:61:7c:c0:a8:ad:ef:08:88:f8:ea:d2:
8b:b0:08:4c:a4:ac:5a:ab:08:7f:d8:35:47:7b:ca:5b:64:c8:
c4:6b:88:2c:30:0b:c7:bc:15:b4:f3:d8:18:a6:e1:d5:2c:2f:
13:d7:97:82:16:ec:1c:77:61:6f:b0:e9:55:fa:74:f3:9e:b1:
2d:cd:11:be:82:41:df:ed:28:37:ed:5f:1f:33:b3:e5:1e:cc:
a5:21:bd:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:23 2024 by rpki-client on console-fra.rpki-client.org