Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/52a569-7e40-4bba-bca4-5cda0bf78a2d/1/37z_dkNmB9kb-PAn6JabwGMNuZY.roa
File: 37z_dkNmB9kb-PAn6JabwGMNuZY.roa (raw, json)
Hash identifier: N9zEs28YaPxT8gyJj+2VtFXByEC/1DRCAo1azM9nrr8=
Subject key identifier: DF:BC:FF:76:43:66:07:D9:1B:F8:F0:27:E8:96:9B:C0:63:0D:B9:96
Certificate issuer: /CN=b7fce81402478a686d213f9a1b061a6180fa2883
Certificate serial: 149E577C
Authority key identifier: B7:FC:E8:14:02:47:8A:68:6D:21:3F:9A:1B:06:1A:61:80:FA:28:83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t_zoFAJHimhtIT-aGwYaYYD6KIM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/52a569-7e40-4bba-bca4-5cda0bf78a2d/1/37z_dkNmB9kb-PAn6JabwGMNuZY.roa
Signing time: Sat 01 Jan 2022 09:56:18 +0000
ROA not before: Sat 01 Jan 2022 09:56:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47869
IP address blocks: 2001:67c:28c::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 345921404 (0x149e577c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b7fce81402478a686d213f9a1b061a6180fa2883
Validity
Not Before: Jan 1 09:56:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dfbcff76436607d91bf8f027e8969bc0630db996
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:bb:e1:00:9a:a4:71:b6:f2:ca:51:27:fa:40:
ea:73:50:69:68:4f:7d:cb:44:a6:3a:0d:a7:1d:20:
d6:19:21:26:8d:34:70:34:a8:e4:cc:5c:00:f2:21:
a9:d7:05:af:17:52:d0:25:6b:12:2c:d3:fd:f5:ce:
0c:94:1c:de:75:09:10:59:35:73:55:0d:1d:b7:dc:
21:15:de:ce:94:4f:e8:41:fd:59:c3:e7:ab:10:87:
61:42:98:4c:b7:a3:77:87:1a:47:97:c1:05:a3:4e:
66:dd:ce:62:3c:18:a4:6f:37:a5:7c:99:4d:12:e1:
a6:21:31:1f:93:ab:9a:24:48:28:82:1e:4d:31:b6:
a5:a2:06:96:42:32:d9:8a:5c:37:ea:ae:66:fe:ff:
c3:b1:56:41:74:c9:c1:c1:8b:9e:d6:95:46:7e:f5:
83:57:ea:3d:d3:5b:9e:81:06:ef:65:d8:62:09:1c:
fb:5b:9b:99:09:6d:fc:98:19:c9:b4:1b:93:d6:98:
36:1e:89:f1:6a:ea:b4:26:9a:8e:24:b8:b3:a1:66:
72:54:e2:5f:9e:d8:47:e0:36:42:fe:40:a8:1e:64:
c7:df:f9:2f:8c:09:16:ac:2b:cb:75:4f:90:95:62:
a2:b3:14:cb:2c:d7:0a:86:76:24:62:72:0c:d8:75:
7d:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:BC:FF:76:43:66:07:D9:1B:F8:F0:27:E8:96:9B:C0:63:0D:B9:96
X509v3 Authority Key Identifier:
keyid:B7:FC:E8:14:02:47:8A:68:6D:21:3F:9A:1B:06:1A:61:80:FA:28:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t_zoFAJHimhtIT-aGwYaYYD6KIM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/52a569-7e40-4bba-bca4-5cda0bf78a2d/1/37z_dkNmB9kb-PAn6JabwGMNuZY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/52a569-7e40-4bba-bca4-5cda0bf78a2d/1/t_zoFAJHimhtIT-aGwYaYYD6KIM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:28c::/48
Signature Algorithm: sha256WithRSAEncryption
06:0c:61:0a:c1:37:7b:0a:aa:5c:74:7a:2c:97:74:7f:a4:ca:
f1:f3:b0:1a:95:92:63:a0:cd:40:fa:b8:17:72:59:67:79:b7:
19:04:2b:cc:3c:a6:fc:40:f7:93:6d:ba:6a:b4:df:d3:3f:80:
2e:e1:41:c9:ab:7b:63:9a:78:77:d2:2c:23:e7:23:5c:39:3d:
af:ca:2a:40:48:69:e5:4c:1f:7b:34:cc:37:bb:fd:4a:ee:6a:
aa:58:8a:9a:a4:e6:8d:20:72:eb:c5:1c:7f:ed:99:c7:2f:84:
55:b0:9f:53:b1:84:27:14:dd:0f:d3:21:08:55:d5:e4:45:9b:
ee:5d:3a:da:8b:eb:0f:05:0c:eb:64:bd:73:fc:76:17:d4:12:
d9:b4:83:0b:f1:f0:f2:2d:f9:99:11:53:1b:4c:c2:83:25:5b:
39:58:f7:64:19:c2:a5:08:61:49:f0:9f:ca:48:e9:37:fc:15:
9e:39:1b:ea:25:85:ea:94:dc:65:86:aa:c7:67:b3:c8:4e:cf:
9c:31:2d:4c:f5:bc:aa:a4:bc:32:67:7c:41:b3:22:46:96:73:
11:04:81:65:ed:bf:ef:47:c3:27:46:4f:df:d7:af:79:05:b0:
45:a9:42:66:7d:6e:ed:a3:2a:90:d5:f4:3c:52:92:05:85:38:
d2:f7:13:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:40 2024 by rpki-client on console-ams.rpki-client.org