Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/dN3TJNJ6fmjdc2r0UJzxMQkDmrQ.roa
File: dN3TJNJ6fmjdc2r0UJzxMQkDmrQ.roa (raw, json)
Hash identifier: i/5i1QII+hKo7F6zmhDDkFXy0uMFIyKJpgp64rUYbO4=
Subject key identifier: 74:DD:D3:24:D2:7A:7E:68:DD:73:6A:F4:50:9C:F1:31:09:03:9A:B4
Certificate issuer: /CN=798f7b1fd802b3dc6abd7a5cda786a6311e1d63d
Certificate serial: 01828C470A2A1D6F667C37FFECFD75D86F75
Authority key identifier: 79:8F:7B:1F:D8:02:B3:DC:6A:BD:7A:5C:DA:78:6A:63:11:E1:D6:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eY97H9gCs9xqvXpc2nhqYxHh1j0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/dN3TJNJ6fmjdc2r0UJzxMQkDmrQ.roa
Signing time: Thu 11 Aug 2022 09:40:41 +0000
ROA not before: Thu 11 Aug 2022 09:40:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7721
IP address blocks: 2a12:3fc2:6666::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:8c:47:0a:2a:1d:6f:66:7c:37:ff:ec:fd:75:d8:6f:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=798f7b1fd802b3dc6abd7a5cda786a6311e1d63d
Validity
Not Before: Aug 11 09:40:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=74ddd324d27a7e68dd736af4509cf13109039ab4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:ed:0e:7d:df:25:ea:94:ed:67:b1:79:2f:ac:
11:e3:97:7f:e1:8a:ce:3e:12:c1:5e:e1:ad:41:3b:
dd:e1:f3:e8:4e:3c:99:e9:45:f0:13:66:a8:ea:4a:
20:27:43:3d:1f:52:fd:f2:af:2d:90:13:e7:89:d0:
db:27:98:00:35:a7:4a:81:1b:26:90:c4:88:74:9a:
84:ca:76:0b:9a:fa:0e:71:15:26:cc:1c:0b:ef:db:
c8:80:b7:79:50:08:e1:11:52:ea:27:e0:ad:e9:ea:
2e:98:16:e6:2d:bb:a2:27:c0:5d:74:ee:5b:29:aa:
2d:ba:ff:35:c1:b1:2e:fb:96:19:8e:02:8e:fc:52:
90:d4:fa:2a:cd:e0:b8:c9:f3:01:b8:70:bf:35:48:
68:49:24:91:b5:1a:59:f5:cb:d8:94:63:dd:15:f7:
b9:dd:cb:0b:f2:37:36:e7:94:7f:16:88:a4:89:99:
92:39:4c:d8:c0:6d:14:7d:d0:77:2a:f9:37:48:e2:
a2:b2:c8:cc:30:7f:63:3d:60:ae:d9:c4:4d:ea:f5:
3b:6c:c8:2e:51:18:24:42:cd:37:10:2e:c0:87:e5:
c5:0b:ae:bd:85:a1:ca:7a:b5:0e:a4:21:e4:7a:35:
77:c6:ad:5e:1c:06:9f:e9:04:69:76:bf:e8:4c:9b:
31:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:DD:D3:24:D2:7A:7E:68:DD:73:6A:F4:50:9C:F1:31:09:03:9A:B4
X509v3 Authority Key Identifier:
keyid:79:8F:7B:1F:D8:02:B3:DC:6A:BD:7A:5C:DA:78:6A:63:11:E1:D6:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eY97H9gCs9xqvXpc2nhqYxHh1j0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/dN3TJNJ6fmjdc2r0UJzxMQkDmrQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/eY97H9gCs9xqvXpc2nhqYxHh1j0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:3fc2:6666::/48
Signature Algorithm: sha256WithRSAEncryption
9c:c7:85:b2:3a:ad:8b:04:b8:2e:70:b5:70:07:05:82:43:ba:
e3:5c:87:89:57:34:30:67:05:3b:1c:39:a1:f1:b2:39:16:92:
90:88:f9:42:3d:72:a2:a5:bd:62:55:73:05:82:33:02:ee:8c:
fb:54:4e:55:33:6c:e4:31:44:e5:34:e8:de:6a:f9:6b:3d:80:
88:1b:2c:cc:5d:62:5c:32:b5:f2:0f:85:78:7a:ed:b4:12:a6:
8e:8f:bb:c2:57:7a:a6:5c:3f:9a:da:da:d0:b8:51:4d:72:9a:
25:17:86:e8:f5:ee:af:80:8b:3f:4b:4e:b2:2a:5f:57:36:a9:
81:ac:34:a8:a7:e3:05:9b:52:1a:ed:b6:82:1e:fe:a4:33:e7:
27:14:da:c6:5d:bd:8e:7a:c5:a8:c9:51:c6:5e:5d:5b:9a:0d:
17:e4:af:e4:78:80:25:a0:ea:04:d3:e6:08:42:e9:cb:c4:48:
d7:6b:0d:01:e9:cc:50:83:4a:d2:12:19:a4:41:9c:76:97:e8:
59:a6:a1:66:7b:75:c1:98:3c:20:0e:c0:6c:e3:52:18:66:ba:
6e:7e:22:5a:5c:f1:33:52:98:bb:46:07:58:c0:65:16:b8:c1:
d6:8c:78:08:ff:2d:b4:42:e0:49:36:d3:10:62:57:a0:2c:2b:
7a:d5:78:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:03:17 2025 by rpki-client