Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/ee8b47-e98c-4c6d-a73e-43ca3646a5a9/1/_JvPvnlUzQmpxPpmuDSygCQ28a4.roa
File: _JvPvnlUzQmpxPpmuDSygCQ28a4.roa (raw, json)
Hash identifier: PwP1ai7EshUCaur6zYs54Oc445jKHe682h18lrJ21M4=
Subject key identifier: FC:9B:CF:BE:79:54:CD:09:A9:C4:FA:66:B8:34:B2:80:24:36:F1:AE
Certificate issuer: /CN=20a9a34cbd15c2038ff6f1f7110819889217fa4d
Certificate serial: 023998A8
Authority key identifier: 20:A9:A3:4C:BD:15:C2:03:8F:F6:F1:F7:11:08:19:88:92:17:FA:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IKmjTL0VwgOP9vH3EQgZiJIX-k0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/ee8b47-e98c-4c6d-a73e-43ca3646a5a9/1/_JvPvnlUzQmpxPpmuDSygCQ28a4.roa
Signing time: Sat 01 Jan 2022 03:57:04 +0000
ROA not before: Sat 01 Jan 2022 03:57:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211509
IP address blocks: 2001:678:3f4::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 37329064 (0x23998a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20a9a34cbd15c2038ff6f1f7110819889217fa4d
Validity
Not Before: Jan 1 03:57:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fc9bcfbe7954cd09a9c4fa66b834b2802436f1ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:36:3d:a3:7a:a6:c8:bf:b8:a1:d6:2d:ff:c8:
ce:30:df:9a:e2:fa:67:15:96:a0:cb:24:25:58:a2:
68:5f:59:2e:0f:17:1d:4a:6d:d4:07:8f:e1:42:53:
13:9c:98:a9:b7:20:43:25:4f:84:2b:c4:df:48:0d:
af:84:d4:4f:ba:6e:4c:45:1d:23:71:71:bd:4e:53:
66:0f:c6:3b:4c:3c:ad:2d:f2:9e:67:5a:35:f8:9e:
13:7f:04:2d:d8:7a:da:5b:bb:ac:84:c8:6a:c9:e7:
c0:f8:82:ac:8b:81:48:61:31:21:49:1d:e8:ad:13:
8f:ec:2d:39:4b:e1:ae:89:12:70:cb:7e:4d:58:e7:
a1:43:be:c7:77:50:39:4d:dd:7f:15:43:6f:74:79:
c1:32:cf:6d:9a:5a:70:a8:09:16:48:f7:6e:de:5f:
2b:5f:fa:18:c2:1f:ae:41:e4:fe:3b:cd:f3:d0:1f:
00:93:d3:69:8f:c3:45:83:75:c0:9e:ed:38:29:7b:
0e:ea:e1:1c:3e:8e:64:e1:d4:af:b3:c0:4a:6b:3e:
f8:1a:2c:28:ba:f8:91:18:b4:fc:01:15:b1:c3:cf:
56:7f:03:42:c4:5f:d2:90:80:9a:da:1c:6d:0a:b7:
27:4d:41:e7:4e:96:93:c6:e2:ec:bb:8c:4c:2b:f2:
7d:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:9B:CF:BE:79:54:CD:09:A9:C4:FA:66:B8:34:B2:80:24:36:F1:AE
X509v3 Authority Key Identifier:
keyid:20:A9:A3:4C:BD:15:C2:03:8F:F6:F1:F7:11:08:19:88:92:17:FA:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IKmjTL0VwgOP9vH3EQgZiJIX-k0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/ee8b47-e98c-4c6d-a73e-43ca3646a5a9/1/_JvPvnlUzQmpxPpmuDSygCQ28a4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/ee8b47-e98c-4c6d-a73e-43ca3646a5a9/1/IKmjTL0VwgOP9vH3EQgZiJIX-k0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:3f4::/48
Signature Algorithm: sha256WithRSAEncryption
92:a7:ba:f9:eb:f1:27:13:50:23:c3:b9:66:46:9f:0b:55:c0:
a2:95:10:7f:9e:d1:83:90:01:cc:2a:17:cf:3e:a8:99:1a:70:
a4:bd:69:b8:07:83:97:71:c1:fe:ac:7b:be:d8:2c:57:4c:bc:
fd:5b:51:6f:18:94:c1:45:4d:12:be:9e:7f:cc:e2:b6:fc:a5:
a6:52:6a:6f:89:d3:8b:76:28:d6:41:2b:6a:f1:a7:79:8b:42:
cf:1f:6a:da:91:41:61:80:95:15:3c:ff:02:78:31:4f:d2:9c:
0a:d1:34:3c:80:5e:00:10:73:a2:62:29:64:bc:69:bc:23:76:
5f:a7:eb:70:d6:3d:39:27:24:46:17:53:17:46:b3:21:24:35:
e5:85:f9:b7:92:10:e8:54:13:3a:2a:7b:61:b3:9f:cb:a5:6e:
cb:26:cf:eb:12:af:4c:b1:e9:2c:c2:94:72:58:f6:e3:44:49:
60:9f:4f:6c:35:f7:b5:1c:15:e3:91:0c:7f:d7:6f:db:64:4f:
9b:07:fc:49:21:80:8d:fc:59:a0:23:03:f4:74:a0:a9:35:27:
7d:c2:1c:58:46:14:44:8c:be:c6:ab:5d:23:4f:91:95:e7:47:
08:a6:06:b1:e3:6f:7c:06:40:65:7c:fd:af:13:97:f7:d6:ab:
1d:a2:a5:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:12 2023 by rpki-client on console-ams.rpki-client.org