Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/cac553-ee80-4658-ac05-92824c9da37b/1/ZRv304gpKexLqJvz9FFeSINyCCk.roa
File: ZRv304gpKexLqJvz9FFeSINyCCk.roa (raw, json)
Hash identifier: ZJzYEo356h/EpaKn6G4Yw7pHZcaaAch94dNAgvBuJt4=
Subject key identifier: 65:1B:F7:D3:88:29:29:EC:4B:A8:9B:F3:F4:51:5E:48:83:72:08:29
Certificate issuer: /CN=8912e418225da95d6a21302407923ff94549572b
Certificate serial: 2AA8442A
Authority key identifier: 89:12:E4:18:22:5D:A9:5D:6A:21:30:24:07:92:3F:F9:45:49:57:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iRLkGCJdqV1qITAkB5I_-UVJVys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/cac553-ee80-4658-ac05-92824c9da37b/1/ZRv304gpKexLqJvz9FFeSINyCCk.roa
Signing time: Sat 01 Jan 2022 09:03:28 +0000
ROA not before: Sat 01 Jan 2022 09:03:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21314
IP address blocks: 2a02:28f8:fffe::/48 maxlen: 49
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 715670570 (0x2aa8442a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8912e418225da95d6a21302407923ff94549572b
Validity
Not Before: Jan 1 09:03:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=651bf7d3882929ec4ba89bf3f4515e4883720829
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:8d:71:33:ce:07:a5:54:ce:41:b4:4a:79:c9:
1b:88:2c:c9:d2:d5:24:7a:cf:cd:31:1b:2a:f4:2f:
64:31:6d:9b:fc:fd:b6:77:c9:12:21:8b:2e:80:a3:
ef:dc:80:08:89:d8:c0:49:2b:fe:f3:f7:1e:7d:1c:
09:d7:5c:b4:78:a5:c3:7f:2f:db:4a:b6:68:9c:96:
3b:58:04:15:eb:85:55:f8:88:25:8e:b0:fa:69:c1:
65:0c:e3:11:31:07:a3:f1:ff:f5:37:03:5d:1f:0d:
b1:47:79:a6:b2:6b:1e:f4:74:c2:c9:99:3d:cc:31:
ac:4a:01:77:0b:02:3a:b8:f9:0b:a5:62:39:04:5c:
00:25:d4:1d:a1:da:df:5b:16:6e:7a:2c:9f:cd:23:
10:79:95:0f:8b:5c:a7:94:5a:e9:ef:1b:cf:8f:5d:
55:ad:53:13:58:d4:41:a8:02:e7:a0:6e:55:47:16:
0a:e6:8c:fc:b1:6d:60:17:e9:6a:2d:39:57:b0:7d:
68:42:ec:3b:b9:1a:eb:61:48:a1:2a:ac:10:ff:d3:
ce:99:3d:83:90:0b:ab:7f:c5:70:83:07:e4:33:cc:
c7:eb:29:68:14:c9:d8:b2:87:c2:9e:94:39:15:d5:
46:62:0a:36:4d:96:84:63:49:55:ca:fd:1c:a7:e2:
65:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:1B:F7:D3:88:29:29:EC:4B:A8:9B:F3:F4:51:5E:48:83:72:08:29
X509v3 Authority Key Identifier:
keyid:89:12:E4:18:22:5D:A9:5D:6A:21:30:24:07:92:3F:F9:45:49:57:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iRLkGCJdqV1qITAkB5I_-UVJVys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/cac553-ee80-4658-ac05-92824c9da37b/1/ZRv304gpKexLqJvz9FFeSINyCCk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/cac553-ee80-4658-ac05-92824c9da37b/1/iRLkGCJdqV1qITAkB5I_-UVJVys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:28f8:fffe::/48
Signature Algorithm: sha256WithRSAEncryption
b3:14:9b:2c:66:24:02:3e:3e:c1:61:37:99:c3:50:dd:95:e4:
17:54:9a:b0:14:ba:aa:7c:82:30:29:41:75:b6:79:5f:59:cf:
13:2f:e3:bf:a6:32:26:9d:28:52:84:81:a0:3f:38:a3:34:6f:
da:6b:00:57:aa:bb:00:8c:08:b4:4f:40:d3:43:59:d3:d9:3d:
01:51:75:85:5f:aa:9a:20:63:27:3b:bd:ed:ba:5a:e1:eb:c0:
50:ec:76:32:38:40:05:a8:41:1b:f5:e3:ca:86:fe:f8:f6:6a:
87:1d:72:ac:a2:14:76:f6:22:a4:82:16:bd:cb:5e:55:9e:1d:
14:7d:07:19:48:ca:c8:ef:d8:92:62:58:9b:0f:74:7a:b5:e4:
65:87:03:20:36:35:70:6e:75:b7:6a:40:bb:22:1d:24:66:f4:
9a:7b:35:0c:85:f2:9c:2f:b3:10:5e:b1:4c:20:d3:b7:21:34:
84:88:42:e8:38:18:bd:07:a8:a6:3a:91:33:1f:29:d1:d1:da:
57:4f:22:50:12:5f:5d:c4:bb:1c:92:77:d6:14:8c:cb:2b:47:
2b:80:c8:21:99:46:a6:d1:9b:b1:00:30:39:8f:98:50:9b:42:
81:df:40:5a:56:13:c9:e4:e8:e3:ce:81:cd:72:77:23:04:88:
3a:e9:13:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:32 2024 by rpki-client on console-ams.rpki-client.org