Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/307681-55ae-453a-83fd-1349c4922dd9/1/CILZNmRjMl6hiiTfbngRM6NGoZc.roa
File: CILZNmRjMl6hiiTfbngRM6NGoZc.roa (raw, json)
Hash identifier: NPac1MD4blzRxmVSFYDQP8fwMwHPrfRDic/pwUUPg5A=
Subject key identifier: 08:82:D9:36:64:63:32:5E:A1:8A:24:DF:6E:78:11:33:A3:46:A1:97
Certificate issuer: /CN=b0311619a6764dbf55b5c27f11506a3be2dfcbbd
Certificate serial: 083FBB17
Authority key identifier: B0:31:16:19:A6:76:4D:BF:55:B5:C2:7F:11:50:6A:3B:E2:DF:CB:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sDEWGaZ2Tb9VtcJ_EVBqO-Lfy70.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/307681-55ae-453a-83fd-1349c4922dd9/1/CILZNmRjMl6hiiTfbngRM6NGoZc.roa
Signing time: Sat 01 Jan 2022 11:57:41 +0000
ROA not before: Sat 01 Jan 2022 11:57:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44167
IP address blocks: 2a0d:7100:b::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138394391 (0x83fbb17)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0311619a6764dbf55b5c27f11506a3be2dfcbbd
Validity
Not Before: Jan 1 11:57:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0882d9366463325ea18a24df6e781133a346a197
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:a9:28:1c:e1:91:eb:89:68:88:4e:13:31:47:
56:78:c5:39:9d:80:70:2e:a4:0d:7d:fd:51:68:6f:
bf:ea:35:a5:a6:d3:1d:26:5b:31:6f:c3:b7:d4:15:
d5:56:35:57:80:d0:36:9a:86:ad:92:db:0a:89:dd:
73:b1:17:4b:98:54:83:9c:02:7f:1b:6a:19:5a:4b:
f3:0b:79:42:3e:25:a0:73:fe:dd:2c:e0:1a:6a:17:
32:af:5d:4f:fa:37:60:5c:f6:de:80:c8:98:56:e5:
b6:16:63:54:e0:a2:d3:20:11:2b:4f:ff:05:01:40:
20:b5:c0:6f:c3:cf:1a:bc:a3:07:90:75:91:cf:a1:
6f:79:90:94:72:97:49:01:3c:4e:74:a3:ce:cc:4f:
31:3f:cf:19:d8:c8:ce:6f:df:56:d7:0a:97:3a:0a:
ac:46:78:b5:c8:d5:d8:63:c8:9d:5f:4f:23:6f:02:
8f:1b:84:41:c9:34:ca:38:88:c6:6e:18:33:b7:b9:
11:4b:6f:37:cc:6f:0a:ff:8b:ff:f6:42:84:32:b7:
ff:17:ba:50:46:02:c1:a2:b3:52:72:18:26:9d:93:
b5:94:fa:27:3a:56:f9:1d:8a:04:e3:8b:ae:ed:3c:
55:df:f6:e8:ae:6b:92:2d:f5:60:6c:1e:3b:1b:d5:
b3:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:82:D9:36:64:63:32:5E:A1:8A:24:DF:6E:78:11:33:A3:46:A1:97
X509v3 Authority Key Identifier:
keyid:B0:31:16:19:A6:76:4D:BF:55:B5:C2:7F:11:50:6A:3B:E2:DF:CB:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sDEWGaZ2Tb9VtcJ_EVBqO-Lfy70.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/307681-55ae-453a-83fd-1349c4922dd9/1/CILZNmRjMl6hiiTfbngRM6NGoZc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/307681-55ae-453a-83fd-1349c4922dd9/1/sDEWGaZ2Tb9VtcJ_EVBqO-Lfy70.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:7100:b::/48
Signature Algorithm: sha256WithRSAEncryption
8f:e0:aa:78:7a:b7:75:c0:e8:c9:de:ed:b5:38:62:a9:58:d1:
eb:49:e4:80:27:5a:69:ab:e3:62:ee:da:df:af:c6:98:0b:75:
a2:40:46:00:35:7c:da:d4:ef:85:cc:c5:ce:2a:9b:d6:7e:f4:
ed:66:17:0c:6b:9a:3e:64:69:85:1d:4a:77:13:d5:27:40:c5:
85:e4:01:f0:af:f0:d2:c8:f7:6f:51:3a:2d:d2:7b:f8:6f:43:
5c:8a:48:38:be:e5:04:7f:a2:5b:54:a8:fb:20:12:14:35:2e:
f7:0b:07:c8:d7:ed:8e:9e:58:20:2d:73:58:04:87:ed:ac:a4:
39:7c:37:05:82:dd:c5:e8:83:4b:a0:b2:0f:dc:b4:d8:50:80:
79:5c:b5:15:e7:21:af:74:67:4a:10:df:01:83:91:75:e1:84:
a4:33:f3:69:71:99:99:0d:b3:b8:df:cf:82:c0:cd:4a:d9:72:
ef:df:85:ea:57:9a:77:f5:48:3f:22:a3:1d:59:53:7c:57:3e:
03:5c:06:34:7e:ef:8f:7a:eb:2d:1e:a5:d4:02:70:df:d3:18:
4b:34:b0:30:8e:ff:0a:14:8d:9d:a4:8f:38:4a:e7:aa:b6:77:
11:3c:01:8a:d3:56:6a:0d:43:fd:63:46:9e:f5:ac:52:ea:96:
46:62:9d:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:34 2024 by rpki-client on console-fra.rpki-client.org