Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5fbf50-f139-4585-8953-536dd6cbe532/1/XjKYPzuKwA32GxfmOxvZe14ZJkI.roa
File: XjKYPzuKwA32GxfmOxvZe14ZJkI.roa (raw, json)
Hash identifier: jz5Y6XbNQMmsz+txFCH/rEV+PiPAOe20tDCHfSKn+PA=
Subject key identifier: 5E:32:98:3F:3B:8A:C0:0D:F6:1B:17:E6:3B:1B:D9:7B:5E:19:26:42
Certificate issuer: /CN=054f1eb8b3072796fee42922863a0bb6697f5c97
Certificate serial: 018CC5DC8031CB4544102760E02DC6A516D2
Authority key identifier: 05:4F:1E:B8:B3:07:27:96:FE:E4:29:22:86:3A:0B:B6:69:7F:5C:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BU8euLMHJ5b-5CkihjoLtml_XJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5fbf50-f139-4585-8953-536dd6cbe532/1/XjKYPzuKwA32GxfmOxvZe14ZJkI.roa
Signing time: Mon 01 Jan 2024 16:30:11 +0000
ROA not before: Mon 01 Jan 2024 16:30:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 22773
IP address blocks: 2a12:db80::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:80:31:cb:45:44:10:27:60:e0:2d:c6:a5:16:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=054f1eb8b3072796fee42922863a0bb6697f5c97
Validity
Not Before: Jan 1 16:30:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5e32983f3b8ac00df61b17e63b1bd97b5e192642
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:05:d0:a2:81:17:94:07:3a:52:5b:80:f6:e2:
66:91:1e:1b:6b:6e:77:bb:7a:b7:e9:d1:ec:9e:55:
47:b1:fc:ef:53:b6:eb:61:0c:1d:d0:0c:bc:46:9e:
49:f9:b4:ba:14:d2:51:81:fb:af:80:20:05:2d:5b:
21:a5:46:94:3c:fa:62:5f:65:90:2b:d9:71:4c:bd:
4a:ad:92:8e:38:41:10:f1:e8:6e:4c:2e:aa:22:70:
32:bf:46:26:4f:bc:4c:7c:e0:80:83:61:9e:3c:83:
c4:6a:9d:46:a1:f0:63:b3:79:eb:db:72:7d:09:4f:
a3:13:dd:e8:d2:ab:44:99:8e:05:eb:50:a4:e1:21:
d3:9c:96:2a:41:cf:5d:9a:3d:70:06:3c:d3:62:e5:
95:d9:6a:c1:8c:22:d3:0e:ec:d4:99:66:ae:ee:3c:
ad:36:92:b8:cd:22:1f:e7:8b:46:fe:e9:1b:69:b5:
08:8d:8f:4e:d3:4c:50:51:5c:50:f6:c9:ef:f5:d3:
62:1f:ce:96:87:23:95:1e:e7:bd:68:ab:39:59:43:
fa:56:b6:bf:f4:53:55:b1:54:28:ff:60:2f:73:b3:
4e:fa:05:06:2f:3c:f1:47:28:8a:93:9f:f7:6e:57:
82:5d:b3:e7:ea:c9:45:aa:15:2b:e2:fd:c5:ee:c5:
7a:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:32:98:3F:3B:8A:C0:0D:F6:1B:17:E6:3B:1B:D9:7B:5E:19:26:42
X509v3 Authority Key Identifier:
keyid:05:4F:1E:B8:B3:07:27:96:FE:E4:29:22:86:3A:0B:B6:69:7F:5C:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BU8euLMHJ5b-5CkihjoLtml_XJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5fbf50-f139-4585-8953-536dd6cbe532/1/XjKYPzuKwA32GxfmOxvZe14ZJkI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5fbf50-f139-4585-8953-536dd6cbe532/1/BU8euLMHJ5b-5CkihjoLtml_XJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:db80::/29
Signature Algorithm: sha256WithRSAEncryption
58:be:25:b2:36:5b:b0:6b:92:c8:29:1f:4f:a1:e9:9a:a4:26:
93:3a:91:ba:b3:4b:85:5c:5b:dd:27:88:a6:88:ce:cb:9e:87:
d8:ac:8b:33:05:fc:95:34:69:dc:af:11:aa:89:a0:cf:8b:0e:
82:3a:5a:73:53:d2:08:09:dd:55:25:21:d4:05:da:aa:5e:ae:
70:b2:b3:9e:56:33:06:eb:66:af:64:8e:50:19:d0:db:23:f1:
57:59:82:42:fc:c5:aa:bb:92:86:a3:c0:0d:4e:b2:cd:96:7d:
0b:74:c4:9f:04:93:20:e4:e8:25:f2:f5:c8:27:a8:c1:10:8e:
11:c6:de:2f:89:92:6e:4f:b6:66:91:de:d7:dd:f0:7e:81:62:
2b:1c:d9:22:19:f7:da:29:4c:6b:f2:45:ff:54:27:a8:e1:6e:
2e:13:3b:17:4e:50:dd:9b:68:ec:22:a2:a2:61:36:04:14:e5:
3f:3a:27:50:e6:90:64:16:4a:da:c0:f1:1e:3a:32:6a:4b:78:
f2:3d:fa:cd:7b:a1:78:39:ab:1e:f5:3f:c0:34:7c:3f:36:cf:
c7:15:16:b3:9e:9f:b9:b0:84:e1:e4:0d:03:2f:10:4c:ec:b8:
68:2a:8f:43:77:03:40:13:59:92:6f:12:eb:e3:3a:92:80:83:
b5:79:ee:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:32 2024 by rpki-client on console-fra.rpki-client.org