Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/96c836-9cac-4fc8-b138-91ad9dfb67f8/1/9YTHxX0utiCEdrG8bTKjLRVks1g.roa
File: 9YTHxX0utiCEdrG8bTKjLRVks1g.roa (raw, json)
Hash identifier: NOZ9TfY0Pc7geZyTrdLa8QCBu4TxW35s+wnT2wGPbOY=
Subject key identifier: F5:84:C7:C5:7D:2E:B6:20:84:76:B1:BC:6D:32:A3:2D:15:64:B3:58
Certificate issuer: /CN=7694332879b014e040ac4c66e825ee2d6b844330
Certificate serial: 018CC2DAD123A86385123E23E7CBAE7D98F2
Authority key identifier: 76:94:33:28:79:B0:14:E0:40:AC:4C:66:E8:25:EE:2D:6B:84:43:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dpQzKHmwFOBArExm6CXuLWuEQzA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/96c836-9cac-4fc8-b138-91ad9dfb67f8/1/9YTHxX0utiCEdrG8bTKjLRVks1g.roa
Signing time: Mon 01 Jan 2024 02:29:29 +0000
ROA not before: Mon 01 Jan 2024 02:29:29 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204675
IP address blocks: 2001:678:5dc::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:da:d1:23:a8:63:85:12:3e:23:e7:cb:ae:7d:98:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7694332879b014e040ac4c66e825ee2d6b844330
Validity
Not Before: Jan 1 02:29:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f584c7c57d2eb6208476b1bc6d32a32d1564b358
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:f3:6b:0b:76:22:1c:51:4d:b1:a9:74:3c:71:
bc:d4:f8:1c:f8:32:c3:9b:2b:40:23:8e:2f:9f:f1:
33:50:d8:6b:e1:ca:d8:ca:65:e8:3b:b2:df:fd:dc:
08:15:ae:ba:e7:36:6e:d1:e3:b2:c7:57:ac:fb:80:
11:2e:f9:ce:97:df:6b:ed:d1:00:04:6d:80:52:85:
6d:2f:92:6f:91:e6:29:a7:91:9c:2b:92:b3:f0:63:
d1:f5:0d:64:f7:71:74:51:aa:01:33:7b:63:81:b4:
ff:5a:30:17:15:6a:f8:49:eb:7c:ed:7c:16:d1:ef:
c8:15:bb:31:54:e7:d3:ef:ad:63:c9:ec:c1:01:87:
b7:71:54:19:46:4e:6d:ec:c5:2d:8f:6b:bf:09:bf:
2e:63:bd:ea:4d:3b:2c:20:0f:a0:a6:4d:a5:bd:aa:
ea:89:43:58:b3:db:4f:fa:d0:87:e6:e0:51:f0:f4:
f3:43:27:7a:9c:4f:38:7a:13:33:80:49:d0:cd:dd:
68:28:19:97:ff:b2:f1:b3:1b:46:89:96:fe:df:f8:
5b:e6:3c:30:f9:c5:a1:1a:b4:51:1f:aa:72:e0:81:
cb:53:df:d9:6c:4a:46:2d:4e:eb:33:65:52:aa:bc:
b1:58:40:8b:da:65:13:d0:c6:97:ab:fb:08:e3:d8:
45:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:84:C7:C5:7D:2E:B6:20:84:76:B1:BC:6D:32:A3:2D:15:64:B3:58
X509v3 Authority Key Identifier:
keyid:76:94:33:28:79:B0:14:E0:40:AC:4C:66:E8:25:EE:2D:6B:84:43:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dpQzKHmwFOBArExm6CXuLWuEQzA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/96c836-9cac-4fc8-b138-91ad9dfb67f8/1/9YTHxX0utiCEdrG8bTKjLRVks1g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/96c836-9cac-4fc8-b138-91ad9dfb67f8/1/dpQzKHmwFOBArExm6CXuLWuEQzA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:5dc::/48
Signature Algorithm: sha256WithRSAEncryption
38:26:f8:88:a9:26:f3:32:d5:c2:d3:2b:c6:25:90:01:c1:2d:
f0:89:f5:9a:0c:96:a5:df:b9:e0:94:d5:44:bc:b3:35:5c:bf:
12:72:a8:e4:42:ac:77:8c:24:8f:07:f3:78:08:54:0c:bc:fd:
2f:31:fe:e8:0b:75:72:86:0c:8d:d9:30:29:56:65:0b:b8:b8:
5f:ad:23:ee:36:41:58:db:e3:8e:f5:66:88:e5:bf:88:22:79:
03:b7:55:91:72:7e:30:2c:b4:54:31:ff:d7:03:aa:be:3d:2e:
c1:76:bd:6a:72:bd:f4:09:2a:da:52:7a:be:b0:ed:78:d0:97:
75:9f:36:70:ca:04:bf:60:be:12:65:3f:e4:14:08:4a:d0:e3:
32:3c:10:41:3b:f0:f4:fd:1e:4a:3e:50:bd:0d:86:89:23:69:
37:85:e5:5e:3f:8a:87:ab:41:fe:34:b4:ee:af:51:50:87:1d:
ec:b9:6c:3e:58:d8:2c:5a:31:4c:c1:86:f1:16:38:31:a1:28:
ae:e4:b4:60:a2:15:20:0e:7e:cc:4a:46:f5:40:85:1c:e7:8c:
b5:e9:59:4c:e8:98:fc:5f:5e:0b:d4:96:ff:d1:05:d0:e9:98:
da:7b:df:87:97:9e:0f:ca:66:7e:d7:2b:ae:b4:a0:4b:31:29:
e7:0a:06:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 27 14:54:24 2024 by rpki-client on console-ams.rpki-client.org