Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/ffb906-676e-4e0a-82f6-11f83d70c898/1/mRlgXMZKjQVj-8Ve3o_tui2g6AY.roa
File: mRlgXMZKjQVj-8Ve3o_tui2g6AY.roa (raw, json)
Hash identifier: mxsqCz6jYOrzGvt4Uvn9ixyJz14BFCpcMZuQElbB0iU=
Subject key identifier: 99:19:60:5C:C6:4A:8D:05:63:FB:C5:5E:DE:8F:ED:BA:2D:A0:E8:06
Certificate issuer: /CN=7f2c92a79f62fcb919e795ab5de313f4bda71ddf
Certificate serial: 01856E82159A5CD1B4A70212479C0F756C0F
Authority key identifier: 7F:2C:92:A7:9F:62:FC:B9:19:E7:95:AB:5D:E3:13:F4:BD:A7:1D:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fyySp59i_LkZ55WrXeMT9L2nHd8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/ffb906-676e-4e0a-82f6-11f83d70c898/1/mRlgXMZKjQVj-8Ve3o_tui2g6AY.roa
Signing time: Sun 01 Jan 2023 18:04:57 +0000
ROA not before: Sun 01 Jan 2023 18:04:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34734
IP address blocks: 2a11:3980::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:82:15:9a:5c:d1:b4:a7:02:12:47:9c:0f:75:6c:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f2c92a79f62fcb919e795ab5de313f4bda71ddf
Validity
Not Before: Jan 1 18:04:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9919605cc64a8d0563fbc55ede8fedba2da0e806
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:90:2a:6b:2d:26:19:f8:b4:a9:cc:79:8a:58:
be:d6:ac:f3:29:fc:a4:e0:37:c4:88:12:fc:9b:10:
76:41:da:99:e2:9a:74:57:d4:74:07:74:29:d7:02:
fe:e4:02:43:bc:1e:24:53:0d:68:d0:36:34:d6:27:
1d:f1:28:52:11:8a:92:33:9f:04:7a:1f:84:59:14:
e2:f6:05:d9:43:55:95:da:1f:8d:bd:d7:6f:9b:2f:
bf:16:e0:16:84:a6:30:46:41:4b:c2:21:13:74:1d:
b9:fd:3e:27:14:a0:3f:62:6c:89:61:c2:1e:41:12:
48:65:7e:86:ec:15:05:5d:4d:42:0b:d9:bf:b8:c1:
79:87:18:1b:14:38:ef:a7:a8:36:64:72:ed:20:6d:
ae:78:22:5f:dc:90:9c:e2:69:7a:45:18:62:8f:7a:
53:51:e1:17:cd:82:f1:f5:db:f0:2b:fc:0d:75:11:
97:93:3f:ed:26:5b:d4:3a:4a:5d:f4:fd:a6:be:ed:
53:ca:72:b5:e8:52:62:e5:cb:91:1b:5f:ee:1d:7c:
30:56:00:a3:ae:75:b8:ba:46:54:cb:0d:84:bf:37:
cd:59:c1:08:1f:f3:30:d5:1e:08:70:4d:f1:df:b2:
f4:cc:44:cc:b5:d6:f8:2b:53:94:53:30:01:4d:23:
5f:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:19:60:5C:C6:4A:8D:05:63:FB:C5:5E:DE:8F:ED:BA:2D:A0:E8:06
X509v3 Authority Key Identifier:
keyid:7F:2C:92:A7:9F:62:FC:B9:19:E7:95:AB:5D:E3:13:F4:BD:A7:1D:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fyySp59i_LkZ55WrXeMT9L2nHd8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/ffb906-676e-4e0a-82f6-11f83d70c898/1/mRlgXMZKjQVj-8Ve3o_tui2g6AY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/ffb906-676e-4e0a-82f6-11f83d70c898/1/fyySp59i_LkZ55WrXeMT9L2nHd8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:3980::/29
Signature Algorithm: sha256WithRSAEncryption
01:5e:0e:90:9d:8f:df:85:72:2d:1f:eb:ae:23:11:4b:0e:51:
9c:fc:2c:34:4f:42:f0:c1:30:56:c7:fc:7a:43:0d:f3:d8:94:
d6:e1:e8:33:ad:6f:30:56:85:30:56:4d:af:07:eb:ee:8e:6d:
1f:2d:c9:84:1a:9e:ef:dc:25:44:5d:0e:f5:cf:0f:5f:4d:4b:
9f:be:66:56:ae:bf:7e:e2:56:b4:e4:fb:f3:8a:51:66:03:23:
5c:5f:1d:87:f2:63:e2:fa:db:c7:2b:80:83:1e:ad:ef:f8:8d:
93:d2:80:07:61:8c:de:a1:40:3e:2b:e0:6e:c9:05:74:40:2b:
6a:35:9f:cb:72:8a:19:3c:1d:fe:56:c6:b9:29:e8:fc:fd:47:
cd:9a:f1:2e:4c:1d:74:7b:7d:ca:c5:66:fe:c3:0d:33:3d:e2:
e2:20:28:1c:e3:a2:72:02:b3:3a:d4:10:29:21:87:8d:26:ae:
ef:e6:52:6f:05:69:aa:f6:75:dc:1f:d3:01:82:76:90:1d:0c:
8e:2a:52:83:e3:67:d9:6b:4d:b1:62:f5:e7:2c:28:96:8c:fd:
48:47:dc:a6:ed:ce:be:82:f4:34:29:d7:39:11:ba:88:0e:04:
cf:0a:ab:c9:77:9a:70:0b:4f:17:e6:3c:3e:d9:4b:13:bf:ae:
1d:05:32:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:23 2024 by rpki-client on console-fra.rpki-client.org