Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/75e648-7de2-4e6d-b901-760b408cb0eb/1/3pn5iBa9s8kicYXHofX-K0Pj8PY.roa
File: 3pn5iBa9s8kicYXHofX-K0Pj8PY.roa (raw, json)
Hash identifier: mQj5RDKrVnOKrKvC/Djii2GnT1KYzxvRyXArvLdgTds=
Subject key identifier: DE:99:F9:88:16:BD:B3:C9:22:71:85:C7:A1:F5:FE:2B:43:E3:F0:F6
Certificate issuer: /CN=c06386f1458ea6253b1b5ca3fb1f135c58cb3318
Certificate serial: 018E12CB8AF1E594E8020051B1C1AC5F09D7
Authority key identifier: C0:63:86:F1:45:8E:A6:25:3B:1B:5C:A3:FB:1F:13:5C:58:CB:33:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wGOG8UWOpiU7G1yj-x8TXFjLMxg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/75e648-7de2-4e6d-b901-760b408cb0eb/1/3pn5iBa9s8kicYXHofX-K0Pj8PY.roa
Signing time: Wed 06 Mar 2024 08:05:12 +0000
ROA not before: Wed 06 Mar 2024 08:05:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207487
IP address blocks: 2001:678:c18::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:12:cb:8a:f1:e5:94:e8:02:00:51:b1:c1:ac:5f:09:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c06386f1458ea6253b1b5ca3fb1f135c58cb3318
Validity
Not Before: Mar 6 08:05:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=de99f98816bdb3c9227185c7a1f5fe2b43e3f0f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:7d:13:74:70:0e:87:82:32:91:e0:e3:95:a3:
1c:5e:a6:95:16:2f:98:1b:ce:b4:4b:63:4b:de:3b:
f5:8f:ec:d6:ac:23:f8:b9:32:e0:a9:b4:16:27:93:
dc:ec:f1:6c:8f:5d:e6:69:8a:10:7a:13:a2:21:c3:
e3:94:40:fd:ec:0d:22:51:f8:2c:0a:36:1e:32:a6:
57:ef:1c:40:3a:1b:b5:a0:f1:19:0b:36:44:48:7a:
25:60:68:52:24:8f:41:d4:ac:66:1c:38:47:48:8b:
d1:4a:6b:19:4c:7e:69:4c:45:3a:b8:3b:66:6a:51:
8d:a8:c3:73:1e:4b:73:53:29:22:32:b6:38:1f:67:
c1:56:9d:ae:b8:62:8e:b4:e1:86:db:d9:dd:64:97:
c3:9c:e1:f1:8f:16:f8:db:ad:97:f5:13:ae:21:72:
3d:4e:10:6b:5c:51:0e:ab:2a:1f:60:6c:bf:aa:2f:
95:b0:ab:b6:ce:ec:43:25:4e:ae:90:42:dc:d4:2f:
7b:f1:03:1d:3d:49:08:ad:68:fc:71:4d:24:1a:e9:
a6:87:98:b8:eb:dc:4a:30:f4:ad:50:0a:b5:2d:1a:
6b:b2:6e:a3:4f:19:16:b7:38:57:ce:dd:17:8a:ce:
2c:95:8a:9f:34:6e:ff:03:d2:cd:43:e0:4f:57:7b:
99:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:99:F9:88:16:BD:B3:C9:22:71:85:C7:A1:F5:FE:2B:43:E3:F0:F6
X509v3 Authority Key Identifier:
keyid:C0:63:86:F1:45:8E:A6:25:3B:1B:5C:A3:FB:1F:13:5C:58:CB:33:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wGOG8UWOpiU7G1yj-x8TXFjLMxg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/75e648-7de2-4e6d-b901-760b408cb0eb/1/3pn5iBa9s8kicYXHofX-K0Pj8PY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/75e648-7de2-4e6d-b901-760b408cb0eb/1/wGOG8UWOpiU7G1yj-x8TXFjLMxg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:c18::/48
Signature Algorithm: sha256WithRSAEncryption
19:c2:93:1e:c5:8b:31:bc:04:53:18:26:9a:c8:78:a3:ef:be:
d7:c6:0d:5d:8e:cd:41:7f:1e:7a:de:af:e5:95:42:33:ee:9a:
f2:e7:31:77:a3:3b:04:d1:04:6f:e6:72:ff:34:6a:fc:c2:0a:
26:69:c4:18:da:3f:c0:8b:3b:ec:9d:78:2e:7c:e6:54:4f:ec:
00:73:a5:6f:ec:fe:86:a1:4f:7c:d5:f6:cf:f6:1f:b2:19:1d:
d3:ff:23:f8:4c:6b:24:a7:ed:9d:e9:24:46:2b:ed:bf:23:a1:
6c:80:6b:3b:4b:a4:34:c6:8b:ee:2a:a9:1b:c8:e3:47:2f:2e:
38:bb:40:58:c1:cd:4b:4f:38:3f:fc:d4:34:45:49:99:d6:7a:
5c:4c:60:9e:a8:15:13:c0:87:84:22:fd:2b:18:02:9f:9d:74:
a1:b4:26:4d:11:04:db:45:09:7f:7a:cf:1d:1f:0e:dd:ef:d5:
53:e1:a9:2f:9c:6d:e1:c8:76:8e:6f:6d:61:59:f8:d0:88:f6:
23:08:3f:ea:48:29:cc:97:1a:08:bb:da:81:83:0d:93:c0:cc:
e5:cc:bb:97:be:ab:cf:3c:7d:32:52:ff:8a:de:af:4f:ce:c9:
57:15:31:d0:47:8b:ca:68:72:30:9f:9d:ee:ce:b1:88:d7:bb:
b0:48:f3:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:31 2024 by rpki-client on console-ams.rpki-client.org