Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/48f857-a436-4e42-b5c5-9491dc6c69b5/1/PxF4wwLtfN-glgdfZly7zTygQxs.roa
File: PxF4wwLtfN-glgdfZly7zTygQxs.roa (raw, json)
Hash identifier: 35Y8YclZ613xHbvqB0kxGI3881vPqP5k2OXK9B52Up4=
Subject key identifier: 3F:11:78:C3:02:ED:7C:DF:A0:96:07:5F:66:5C:BB:CD:3C:A0:43:1B
Certificate issuer: /CN=0860b784ac4f3585b91126cbcb8cf3f7de19d1ed
Certificate serial: 022F0432
Authority key identifier: 08:60:B7:84:AC:4F:35:85:B9:11:26:CB:CB:8C:F3:F7:DE:19:D1:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CGC3hKxPNYW5ESbLy4zz994Z0e0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/48f857-a436-4e42-b5c5-9491dc6c69b5/1/PxF4wwLtfN-glgdfZly7zTygQxs.roa
Signing time: Sat 01 Jan 2022 10:01:31 +0000
ROA not before: Sat 01 Jan 2022 10:01:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211398
IP address blocks: 2001:678:f30::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 36635698 (0x22f0432)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0860b784ac4f3585b91126cbcb8cf3f7de19d1ed
Validity
Not Before: Jan 1 10:01:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3f1178c302ed7cdfa096075f665cbbcd3ca0431b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:fe:99:81:be:60:87:1d:b7:43:f8:8c:56:ce:
ae:80:47:fc:6f:a6:0e:1f:ae:d7:4c:d9:41:11:1f:
80:b9:01:c8:d8:08:e2:e3:ef:ea:dd:74:76:29:4b:
2d:ce:ca:dd:f4:35:4f:ff:32:2a:d5:bb:15:e0:69:
2e:b0:3f:a2:4e:1f:b0:e5:0c:61:1e:de:0b:9a:50:
56:f2:02:a9:3a:77:04:86:3f:29:45:d0:cd:72:08:
83:15:ee:b5:bd:19:87:c7:c5:45:d2:02:08:4e:f0:
a5:cd:43:3b:a2:c4:e1:24:b4:43:5e:9c:c2:80:85:
e0:01:e9:94:0a:da:c2:6d:e1:48:91:c9:6b:f3:1c:
8c:d2:96:67:4e:48:bd:6f:21:1a:fc:4f:1a:86:1b:
25:f0:35:11:bd:79:20:80:a6:dd:61:56:4f:c4:b1:
74:ca:c6:bf:db:cb:ad:70:9e:51:48:8e:be:a7:5d:
02:10:cb:e5:0a:9e:6e:0f:58:b9:0a:31:81:33:c0:
e5:bb:ca:c2:ce:7a:9a:ca:a4:09:bf:41:0f:6b:bd:
50:90:ab:eb:3a:f0:09:3f:43:f1:27:29:2b:e0:65:
a6:ca:7b:71:f2:3a:b9:4e:ee:d2:d8:12:5f:b5:78:
b1:e1:bb:9e:b7:67:93:e2:d5:b7:ff:8b:77:2d:9f:
14:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:11:78:C3:02:ED:7C:DF:A0:96:07:5F:66:5C:BB:CD:3C:A0:43:1B
X509v3 Authority Key Identifier:
keyid:08:60:B7:84:AC:4F:35:85:B9:11:26:CB:CB:8C:F3:F7:DE:19:D1:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CGC3hKxPNYW5ESbLy4zz994Z0e0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/48f857-a436-4e42-b5c5-9491dc6c69b5/1/PxF4wwLtfN-glgdfZly7zTygQxs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/48f857-a436-4e42-b5c5-9491dc6c69b5/1/CGC3hKxPNYW5ESbLy4zz994Z0e0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:f30::/48
Signature Algorithm: sha256WithRSAEncryption
4c:14:43:fc:81:c2:76:1f:c1:fc:06:27:ee:51:14:44:58:83:
b4:df:90:5e:79:5f:b3:02:30:11:1f:e9:09:c2:08:c8:51:ee:
da:12:09:c5:d1:fc:63:78:1b:a8:4e:4d:4f:77:58:45:f3:96:
ef:71:1b:5f:ce:c0:54:7c:78:cb:c0:15:11:a5:11:b6:5d:f3:
ab:f5:8e:0a:84:08:da:76:8e:1e:73:54:91:9c:e5:d2:96:32:
09:7f:e9:75:c4:bc:0d:5f:4f:09:b2:76:ac:08:54:14:30:cc:
40:ea:24:37:e3:d5:2f:ae:0f:81:38:02:0c:16:45:14:26:0c:
a2:fb:5b:a5:4d:16:08:e0:ba:0a:d3:50:0f:7e:25:ab:6d:6e:
f3:2b:07:3e:61:01:30:50:c9:c1:1b:e5:e6:0d:74:41:b0:6b:
a4:3f:a2:7a:69:29:e8:69:bc:1d:f5:67:57:2b:26:d6:f2:29:
94:f3:fb:f4:ca:ee:57:24:df:b7:99:5d:47:88:35:d4:f4:e5:
21:92:c3:ab:66:ef:75:bd:5a:d2:a8:5d:b5:af:9e:2e:01:53:
a2:7f:3e:b9:f7:eb:74:5d:21:ee:72:e6:20:c0:dc:88:ec:b4:
d9:22:2f:6b:62:5e:af:c3:7b:14:0c:5d:4d:5f:2e:9b:fd:f3:
7e:ba:64:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:29 2024 by rpki-client on console-ams.rpki-client.org