Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/d03109-e2dc-4bc9-ba2e-d649e227097f/1/Zgq_zPYiIf5gIwQ4-lyYHdZ1pTQ.roa
File: Zgq_zPYiIf5gIwQ4-lyYHdZ1pTQ.roa (raw, json)
Hash identifier: VUWg0RMX2ay7DrHWqWtno1p/nuSD59JIbdci6mUxNgA=
Subject key identifier: 66:0A:BF:CC:F6:22:21:FE:60:23:04:38:FA:5C:98:1D:D6:75:A5:34
Certificate issuer: /CN=52502a29ac06b65e932e1bd97d7fcf29c371cb3d
Certificate serial: 018570799226F908B90E5430B6D539FFE8F0
Authority key identifier: 52:50:2A:29:AC:06:B6:5E:93:2E:1B:D9:7D:7F:CF:29:C3:71:CB:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UlAqKawGtl6TLhvZfX_PKcNxyz0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/d03109-e2dc-4bc9-ba2e-d649e227097f/1/Zgq_zPYiIf5gIwQ4-lyYHdZ1pTQ.roa
Signing time: Mon 02 Jan 2023 03:14:53 +0000
ROA not before: Mon 02 Jan 2023 03:14:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57027
IP address blocks: 2a09:2b80::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:79:92:26:f9:08:b9:0e:54:30:b6:d5:39:ff:e8:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52502a29ac06b65e932e1bd97d7fcf29c371cb3d
Validity
Not Before: Jan 2 03:14:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=660abfccf62221fe60230438fa5c981dd675a534
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:c9:e4:d6:d4:b5:69:d2:7d:1b:1a:8b:73:3f:
4c:42:6f:18:a5:37:0e:ea:a1:df:f7:e5:4d:3d:bd:
86:83:f0:33:82:1b:67:72:24:31:dd:25:3a:4a:d2:
bc:58:f0:ce:df:f8:e4:ad:62:13:af:b8:8f:bd:b1:
e7:ad:18:21:b2:57:77:e1:2c:f3:cf:1b:0c:59:74:
98:25:30:09:63:60:64:97:e8:c9:72:54:61:cd:2c:
24:42:45:62:88:56:29:6e:6f:95:9e:8e:e2:3b:e2:
fd:90:9c:79:36:0e:27:23:ee:85:0e:d1:76:a9:09:
b6:90:b5:2d:3e:6f:75:41:b3:54:55:55:bb:6e:0d:
f4:d5:b1:e7:9b:55:ad:59:99:71:cf:51:c4:4a:4a:
48:f2:3f:79:4a:fd:47:a0:08:24:72:99:03:b4:ca:
78:97:82:e7:7b:53:a0:8a:f6:59:60:88:d8:99:87:
1a:b7:7f:e6:82:6a:8d:07:60:41:96:53:1c:f1:a8:
47:8b:54:77:05:3e:e5:8f:44:c2:98:84:eb:53:68:
7f:11:2d:5e:b3:1e:51:42:74:b3:44:42:77:3c:3a:
19:9f:35:93:98:46:a1:51:7b:fd:1b:e8:f7:c7:2e:
3f:72:0a:24:60:44:30:17:bb:c9:17:e5:49:50:6d:
d4:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:0A:BF:CC:F6:22:21:FE:60:23:04:38:FA:5C:98:1D:D6:75:A5:34
X509v3 Authority Key Identifier:
keyid:52:50:2A:29:AC:06:B6:5E:93:2E:1B:D9:7D:7F:CF:29:C3:71:CB:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UlAqKawGtl6TLhvZfX_PKcNxyz0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/d03109-e2dc-4bc9-ba2e-d649e227097f/1/Zgq_zPYiIf5gIwQ4-lyYHdZ1pTQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/d03109-e2dc-4bc9-ba2e-d649e227097f/1/UlAqKawGtl6TLhvZfX_PKcNxyz0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:2b80::/48
Signature Algorithm: sha256WithRSAEncryption
37:c3:7a:d2:1e:15:fc:d9:3a:8b:36:27:85:ca:af:e9:f8:4c:
e8:32:39:c7:64:e9:e7:f2:a0:19:30:97:bc:c5:04:9f:42:35:
43:df:af:67:3d:23:9d:87:46:d9:b7:b0:ae:cb:5c:e9:9f:39:
6b:18:5c:14:4c:f8:f3:73:cd:02:ad:50:3f:7c:f9:9a:45:1d:
a0:a4:ed:73:db:84:4d:ce:61:44:a7:01:1f:19:e9:97:b4:33:
42:91:73:bd:ff:6b:9e:bc:a8:4f:9b:09:65:80:f7:0f:b1:00:
68:ff:e0:ae:c8:a9:58:b6:40:48:2c:a8:3c:dd:68:15:a8:fe:
da:d1:e9:66:b6:e0:85:a7:bd:09:be:9e:e8:2c:64:d7:99:e6:
54:c7:9b:4f:58:fc:ad:60:16:36:68:35:93:c0:68:62:86:a7:
cb:70:db:43:cf:7e:1e:53:3e:02:cd:16:db:35:30:25:45:3b:
82:51:15:a2:01:c8:43:96:57:06:00:2e:53:41:82:60:47:c8:
c7:ab:6a:31:8c:a7:d7:d3:71:21:95:4c:0b:54:89:43:08:b5:
34:53:96:cc:0b:3b:6c:61:de:53:50:a7:f4:bb:66:94:25:3c:
a0:bc:4c:63:b2:df:b8:14:7b:f9:5b:de:f5:f9:0d:df:63:5c:
65:1c:cb:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:37 2024 by rpki-client on console-ams.rpki-client.org