Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/6f0cb6-ab28-4e49-8b2d-8b0cb4432ac6/1/2l_gh3FY-Th1GhgxpxX96oqcONs.roa
File: 2l_gh3FY-Th1GhgxpxX96oqcONs.roa (raw, json)
Hash identifier: X8aSDqmMhvpVXu6eNfXL8j2E2t3lb/hXsG5pj8mKkck=
Subject key identifier: DA:5F:E0:87:71:58:F9:38:75:1A:18:31:A7:15:FD:EA:8A:9C:38:DB
Certificate issuer: /CN=3c3784403d86b2d85b3d1d1e02d3dc00a0413d41
Certificate serial: 01856BCA4CA8B8AC99C1BD836F83FCB00E56
Authority key identifier: 3C:37:84:40:3D:86:B2:D8:5B:3D:1D:1E:02:D3:DC:00:A0:41:3D:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PDeEQD2GsthbPR0eAtPcAKBBPUE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/6f0cb6-ab28-4e49-8b2d-8b0cb4432ac6/1/2l_gh3FY-Th1GhgxpxX96oqcONs.roa
Signing time: Sun 01 Jan 2023 05:24:58 +0000
ROA not before: Sun 01 Jan 2023 05:24:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 22773
IP address blocks: 2a12:9800::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:ca:4c:a8:b8:ac:99:c1:bd:83:6f:83:fc:b0:0e:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c3784403d86b2d85b3d1d1e02d3dc00a0413d41
Validity
Not Before: Jan 1 05:24:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=da5fe0877158f938751a1831a715fdea8a9c38db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:4b:2a:af:3d:8f:7d:d7:b0:b1:66:51:78:0e:
1b:7c:96:87:82:86:bc:02:99:8f:e9:2d:ab:52:72:
4e:ed:5a:55:29:8b:be:41:a3:cf:4a:74:96:83:7b:
4f:0f:df:0c:e4:fe:8a:84:e9:68:e5:55:1d:9d:09:
a4:ba:98:d8:5c:5c:76:20:15:bc:fb:3c:74:a0:58:
2b:cc:dd:fb:5d:09:07:e9:c7:83:b8:3b:57:eb:65:
f9:f0:97:64:82:06:e1:54:19:36:98:cc:de:67:27:
88:2a:e5:1d:1a:cd:6c:61:69:fe:e3:c2:9b:ff:0c:
89:c3:a5:a8:e3:96:65:73:a0:b8:6e:78:47:83:af:
ef:39:dd:4a:fc:c2:fc:76:d2:39:d7:f0:ab:f8:25:
38:b6:3a:2b:ee:e2:1a:ef:8c:01:94:19:26:0d:dc:
c9:53:7e:be:1e:1e:46:47:c7:96:58:eb:b7:37:ba:
4f:1e:4c:7c:22:e1:37:59:c2:7f:45:89:3d:b6:35:
23:dd:c2:54:e2:aa:d5:3f:84:ed:21:40:69:ef:3f:
50:10:e8:b8:96:87:ca:ad:d4:65:0a:b2:95:76:60:
1a:75:12:a2:23:94:fb:99:85:23:af:a5:1c:83:8e:
a4:82:af:f8:4c:5c:0d:98:1e:79:a6:de:fd:99:8c:
69:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:5F:E0:87:71:58:F9:38:75:1A:18:31:A7:15:FD:EA:8A:9C:38:DB
X509v3 Authority Key Identifier:
keyid:3C:37:84:40:3D:86:B2:D8:5B:3D:1D:1E:02:D3:DC:00:A0:41:3D:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PDeEQD2GsthbPR0eAtPcAKBBPUE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/6f0cb6-ab28-4e49-8b2d-8b0cb4432ac6/1/2l_gh3FY-Th1GhgxpxX96oqcONs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/6f0cb6-ab28-4e49-8b2d-8b0cb4432ac6/1/PDeEQD2GsthbPR0eAtPcAKBBPUE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:9800::/29
Signature Algorithm: sha256WithRSAEncryption
0d:4a:2d:a4:e4:37:d1:36:92:b1:dd:5c:3e:e7:3d:4c:5e:72:
8b:96:e0:4b:15:ab:e3:01:18:f5:19:18:28:62:5c:f1:5c:38:
3c:8f:a3:2a:6e:14:70:54:3a:e3:5d:c2:9b:fc:1a:c2:17:1a:
83:7a:33:6a:31:c6:2e:08:3e:c6:f0:17:f2:bb:65:a1:95:21:
3d:ac:e0:55:69:e8:b3:da:46:c6:e3:a4:0d:cd:5e:ca:38:5d:
27:87:74:a6:9a:a0:9d:3f:0e:56:0b:d6:5a:33:34:c1:27:5d:
b1:ec:06:48:52:19:50:a7:1b:d6:bd:40:9b:28:98:5f:47:b3:
5f:a8:ee:43:61:56:f3:6b:2c:04:a9:1b:4e:3d:fa:ef:3a:3d:
03:df:80:75:f4:68:23:cf:11:e8:6b:12:a4:6c:8b:0f:0f:ad:
de:3b:1e:29:5a:54:4b:b6:b3:57:49:2f:0c:6b:ed:d8:56:39:
e7:78:2d:bd:bc:36:da:a1:f1:f9:39:a4:60:cb:e3:a4:6e:53:
de:f4:6f:63:6f:52:f3:83:a1:81:cb:64:78:db:5d:82:7e:f0:
18:ad:4a:2c:0a:54:9f:de:8e:44:b8:ad:d0:b2:e5:ef:d4:13:
e6:da:07:d7:98:7f:d5:96:c6:9f:d4:6e:6b:08:a5:fd:be:17:
c5:f3:47:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:59 2024 by rpki-client on console-fra.rpki-client.org