Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/f6cb73-974f-4d11-baa7-52878eacdbf3/1/lX9N01m6tpCD0FuiIftCbreFN-M.roa
File: lX9N01m6tpCD0FuiIftCbreFN-M.roa (raw, json)
Hash identifier: VsD4ROkCZf1XrHhSV4wMFXjDQKpU/6tQnyH3kCTsS58=
Subject key identifier: 95:7F:4D:D3:59:BA:B6:90:83:D0:5B:A2:21:FB:42:6E:B7:85:37:E3
Certificate issuer: /CN=2770ca5cf0fcb3e1823d33d0cd9825aa1a98a107
Certificate serial: 018571A7B2E7EAB37B6B50FA692170ADA945
Authority key identifier: 27:70:CA:5C:F0:FC:B3:E1:82:3D:33:D0:CD:98:25:AA:1A:98:A1:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J3DKXPD8s-GCPTPQzZglqhqYoQc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/f6cb73-974f-4d11-baa7-52878eacdbf3/1/lX9N01m6tpCD0FuiIftCbreFN-M.roa
Signing time: Mon 02 Jan 2023 08:44:53 +0000
ROA not before: Mon 02 Jan 2023 08:44:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210274
IP address blocks: 2a0d:51c0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:a7:b2:e7:ea:b3:7b:6b:50:fa:69:21:70:ad:a9:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2770ca5cf0fcb3e1823d33d0cd9825aa1a98a107
Validity
Not Before: Jan 2 08:44:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=957f4dd359bab69083d05ba221fb426eb78537e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:84:99:9c:bf:bb:bd:7f:d4:32:d3:0b:6d:4f:
88:18:d7:f6:25:30:35:c2:e5:be:14:87:1b:12:59:
20:c4:25:fd:e1:e5:de:2d:b6:0b:1d:44:85:c0:08:
e7:c7:28:2d:dc:4c:24:35:98:0c:99:1b:fa:4e:29:
61:f7:fb:f5:65:76:3d:5e:3f:56:41:5d:8a:cb:ba:
1c:42:09:f9:d6:63:d5:2b:45:14:e1:98:63:04:05:
70:fa:ce:cb:35:49:89:a4:07:16:0a:4d:fc:9c:d2:
03:35:b7:c2:38:69:6d:1d:3f:c3:ca:3b:48:91:59:
71:49:11:40:7f:c3:68:cc:ea:a3:6c:4c:0e:3e:95:
7f:5a:59:48:2c:8e:fc:8c:ce:00:62:50:d9:b5:75:
44:d1:af:b5:a9:d3:a9:68:73:16:96:f9:92:27:b5:
2a:03:fd:7a:64:70:25:d3:c3:7b:d5:d4:43:30:1a:
21:53:13:c2:df:71:d1:16:e9:09:ce:b8:2a:87:16:
ef:88:1e:72:3b:c1:cb:2a:87:e0:09:a1:f9:85:4b:
9d:ba:0a:02:51:da:cc:c6:59:69:a6:e5:e8:d3:d2:
fc:c9:f6:1d:25:a3:80:01:4d:df:01:78:a6:20:b1:
aa:23:2f:8b:bc:eb:2c:86:d2:87:1f:9d:9c:0e:87:
95:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:7F:4D:D3:59:BA:B6:90:83:D0:5B:A2:21:FB:42:6E:B7:85:37:E3
X509v3 Authority Key Identifier:
keyid:27:70:CA:5C:F0:FC:B3:E1:82:3D:33:D0:CD:98:25:AA:1A:98:A1:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J3DKXPD8s-GCPTPQzZglqhqYoQc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/f6cb73-974f-4d11-baa7-52878eacdbf3/1/lX9N01m6tpCD0FuiIftCbreFN-M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/f6cb73-974f-4d11-baa7-52878eacdbf3/1/J3DKXPD8s-GCPTPQzZglqhqYoQc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:51c0::/29
Signature Algorithm: sha256WithRSAEncryption
81:1b:8b:d0:49:06:1c:ed:12:71:dd:d4:63:9f:09:5d:e9:67:
14:46:a6:20:2e:08:20:8f:a2:f9:92:f8:6a:6d:c4:b8:ab:f7:
be:3c:7c:39:aa:df:5d:c4:83:8c:63:23:6a:7d:e2:be:9a:61:
b2:bf:b5:0c:04:39:1a:55:05:68:d1:56:6d:ed:7a:d6:04:7b:
04:d3:f2:04:a0:36:91:33:42:f0:4c:85:55:b7:b9:55:9e:cd:
22:d6:24:d9:4d:71:63:9c:c0:0a:c4:f6:30:7a:c1:e8:3c:dc:
24:79:22:f7:5c:52:0b:a4:a8:7b:05:d6:ff:4a:3f:79:13:6d:
31:bb:31:91:a5:12:8e:34:de:05:c5:77:bc:d2:d4:4d:d5:6e:
b2:5b:e3:b8:a6:64:39:56:8f:c3:de:41:d6:13:8e:99:46:b4:
d7:7b:81:8a:3b:12:f0:8e:98:ee:84:10:92:98:77:bf:e6:66:
0f:cd:ed:74:4b:bd:31:76:b7:c0:b0:40:f2:99:e8:61:78:ae:
d6:03:c1:77:2b:65:cc:8f:6c:e1:f4:04:bb:35:c8:82:fd:76:
bc:0d:45:70:03:c9:89:71:c6:f2:99:56:75:e4:e0:60:09:89:
9d:a2:0c:3f:4d:5e:9d:2c:55:e7:21:67:e0:c8:a4:60:d6:89:
3f:d6:db:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:50 2024 by rpki-client on console-ams.rpki-client.org