Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/3bb9d8-bf54-4e8f-83e5-3ffc01fcbfb6/1/jgDt0IWQASU1Lx7vPb-aUS8SC6M.roa
File: jgDt0IWQASU1Lx7vPb-aUS8SC6M.roa (raw, json)
Hash identifier: JyYNYZRHCA7JWTQ/W5DWAKV/zESF6EbJugz8oiog3nM=
Subject key identifier: 8E:00:ED:D0:85:90:01:25:35:2F:1E:EF:3D:BF:9A:51:2F:12:0B:A3
Certificate issuer: /CN=33f5ce1fc37927cb5a4e67b176c7a63b32ff6e89
Certificate serial: 01856F8B9BE54B2A67DE2065A515E6EEC667
Authority key identifier: 33:F5:CE:1F:C3:79:27:CB:5A:4E:67:B1:76:C7:A6:3B:32:FF:6E:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M_XOH8N5J8taTmexdsemOzL_bok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/3bb9d8-bf54-4e8f-83e5-3ffc01fcbfb6/1/jgDt0IWQASU1Lx7vPb-aUS8SC6M.roa
Signing time: Sun 01 Jan 2023 22:54:58 +0000
ROA not before: Sun 01 Jan 2023 22:54:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 22773
IP address blocks: 2a0b:3c00::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:8b:9b:e5:4b:2a:67:de:20:65:a5:15:e6:ee:c6:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33f5ce1fc37927cb5a4e67b176c7a63b32ff6e89
Validity
Not Before: Jan 1 22:54:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8e00edd085900125352f1eef3dbf9a512f120ba3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:6f:b4:ed:ee:53:c8:0e:07:ee:45:f4:72:c7:
9d:bb:24:67:30:67:71:0e:d9:ec:c9:4c:89:bc:65:
32:f1:9e:a1:b1:33:a5:38:17:80:90:af:e7:a6:2c:
d0:07:e4:71:a8:d8:39:8f:df:9e:51:0a:e6:c2:dd:
20:e8:24:50:24:ac:26:91:0b:18:20:b6:36:48:89:
ed:a8:83:0d:f9:9c:3e:79:f2:fe:89:bb:8a:d2:7e:
eb:76:18:fc:13:7b:bd:fe:ac:a2:ca:bc:93:59:9e:
8b:b7:3b:0c:9b:01:d1:5c:36:f2:fd:41:b8:1a:4f:
63:56:fd:0c:0c:a7:64:37:2e:0e:5d:8f:03:b4:5f:
d2:83:ff:83:32:58:c6:b2:e5:a7:aa:77:ae:2a:32:
57:99:36:8e:9a:6f:7d:d7:1e:48:49:24:28:10:db:
84:75:3f:78:9c:27:0b:0e:86:3a:78:5a:30:c2:47:
db:18:b7:21:18:bc:aa:75:3b:d2:9d:2c:2e:fc:93:
62:d8:ca:3b:b6:14:c7:76:cd:47:8a:8a:17:3c:05:
cf:dd:1f:65:25:10:01:00:b9:f2:ba:b0:fb:50:20:
55:d7:f7:e2:4a:c5:86:35:9a:5b:7a:5b:4e:4c:35:
65:01:05:a7:8a:e7:71:f9:a8:69:49:8c:33:27:ac:
bb:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:00:ED:D0:85:90:01:25:35:2F:1E:EF:3D:BF:9A:51:2F:12:0B:A3
X509v3 Authority Key Identifier:
keyid:33:F5:CE:1F:C3:79:27:CB:5A:4E:67:B1:76:C7:A6:3B:32:FF:6E:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M_XOH8N5J8taTmexdsemOzL_bok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/3bb9d8-bf54-4e8f-83e5-3ffc01fcbfb6/1/jgDt0IWQASU1Lx7vPb-aUS8SC6M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/3bb9d8-bf54-4e8f-83e5-3ffc01fcbfb6/1/M_XOH8N5J8taTmexdsemOzL_bok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:3c00::/29
Signature Algorithm: sha256WithRSAEncryption
6e:39:fc:4d:b6:e0:73:e5:3a:bb:1f:d0:8b:48:13:e7:5f:86:
5b:6f:aa:a1:fe:0c:ce:b7:26:9d:ec:ce:ce:ed:7a:a6:33:93:
74:28:33:aa:7f:2e:4a:a8:eb:22:f8:ba:8f:3f:51:45:57:40:
a0:b8:8e:0d:9c:6e:06:bf:93:06:5a:9c:8c:4b:61:a6:72:57:
00:00:85:e5:c8:c1:72:6e:29:1e:c9:be:6e:05:5e:10:03:60:
e1:1f:ea:e7:98:e5:d2:fa:ab:e4:08:4f:6b:d0:48:3d:ec:1a:
35:b0:3f:fa:ca:62:78:fc:15:ed:8a:3f:4e:ba:fb:ce:3e:2c:
bb:f1:d6:52:88:96:99:bd:83:3b:38:72:ea:5c:c8:05:5f:fc:
a4:1f:f2:87:58:0f:fe:ad:57:04:aa:a8:39:87:de:7f:88:2d:
9b:3e:97:0e:7e:ee:27:fa:5b:70:5e:66:cf:a4:24:11:c9:96:
6c:d0:be:9b:12:7a:e7:9f:e3:57:19:f9:83:2c:4a:a9:f6:d1:
11:5f:b5:aa:f5:dd:de:7c:c0:b9:34:dc:87:1d:1d:d9:66:02:
3c:c7:bb:f2:25:5e:40:ff:67:fd:d9:a2:a7:09:2f:34:5a:b6:
76:b9:85:cc:d6:2f:81:22:4e:7b:11:64:90:d7:ad:05:d5:de:
20:bd:a3:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:21 2024 by rpki-client on console-fra.rpki-client.org