Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/843f8a-dfa4-4bb8-9b07-dfc1930bbf84/1/rTafyw8r01MTHM9uja7la73Hm1E.roa
File: rTafyw8r01MTHM9uja7la73Hm1E.roa (raw, json)
Hash identifier: AXngKxnXhIOubAiVliFXgsCGf754WD8FK+rJ2bGrkWI=
Subject key identifier: AD:36:9F:CB:0F:2B:D3:53:13:1C:CF:6E:8D:AE:E5:6B:BD:C7:9B:51
Certificate issuer: /CN=a669dd121b8b5deb5129f3fdbaeba7ce3d6325ca
Certificate serial: 7E38DE
Authority key identifier: A6:69:DD:12:1B:8B:5D:EB:51:29:F3:FD:BA:EB:A7:CE:3D:63:25:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pmndEhuLXetRKfP9uuunzj1jJco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/843f8a-dfa4-4bb8-9b07-dfc1930bbf84/1/rTafyw8r01MTHM9uja7la73Hm1E.roa
Signing time: Sat 01 Jan 2022 02:55:45 +0000
ROA not before: Sat 01 Jan 2022 02:55:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 62.3.2.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8272094 (0x7e38de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a669dd121b8b5deb5129f3fdbaeba7ce3d6325ca
Validity
Not Before: Jan 1 02:55:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ad369fcb0f2bd353131ccf6e8daee56bbdc79b51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:dc:03:d1:e3:ef:94:e6:b8:34:40:f5:d3:41:
b4:01:be:e1:66:25:78:03:0d:d3:c8:55:94:67:ad:
42:af:53:e4:6a:d1:c7:94:ee:80:7a:c6:15:23:04:
58:16:3a:6c:25:6c:c6:9d:f8:51:fe:50:3e:d9:64:
5c:d5:5f:9d:8a:50:d6:2b:ba:8d:3f:bb:a0:e3:b0:
b6:3f:22:08:13:2e:7f:32:53:4f:c1:97:2c:05:d6:
5a:05:8e:d4:aa:50:de:24:86:db:46:6f:67:b5:e4:
93:42:a7:9c:01:36:b5:b9:39:a6:6c:d8:df:86:93:
2f:33:3b:07:bb:7e:1e:1c:7f:b2:88:11:bf:2d:2b:
f0:07:01:77:4b:50:f1:80:c9:ed:95:bf:49:da:46:
0b:7d:67:aa:a7:91:5b:c4:10:9e:5b:5e:8b:8c:b5:
f4:f4:57:1b:6e:99:d1:17:ae:28:a0:8d:a2:8d:17:
16:3c:be:f5:6a:3f:a3:d3:fe:21:bb:b2:67:03:3c:
ee:8c:b9:aa:8f:67:93:5f:ce:f1:3f:90:33:ad:26:
af:fa:e9:af:07:7e:cb:5a:6c:79:30:3f:57:50:28:
a0:c2:27:a8:c3:43:d2:58:ea:cf:42:06:91:0c:5b:
7d:76:5d:de:bb:32:d0:35:89:ce:4f:83:39:4d:56:
ab:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:36:9F:CB:0F:2B:D3:53:13:1C:CF:6E:8D:AE:E5:6B:BD:C7:9B:51
X509v3 Authority Key Identifier:
keyid:A6:69:DD:12:1B:8B:5D:EB:51:29:F3:FD:BA:EB:A7:CE:3D:63:25:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pmndEhuLXetRKfP9uuunzj1jJco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/843f8a-dfa4-4bb8-9b07-dfc1930bbf84/1/rTafyw8r01MTHM9uja7la73Hm1E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/843f8a-dfa4-4bb8-9b07-dfc1930bbf84/1/pmndEhuLXetRKfP9uuunzj1jJco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.3.2.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:30:ad:36:bb:e0:22:b2:2f:0a:7c:1e:66:2b:3c:b5:83:5f:
22:ef:c9:88:e1:3c:03:4d:e8:d3:cf:eb:95:0c:eb:45:bb:cb:
1d:7a:42:03:6a:6b:e3:d0:05:dd:18:c7:f3:f6:7c:ea:10:60:
e9:db:fe:25:c2:44:7d:77:9a:c2:55:60:a1:f9:06:c4:1a:08:
93:4c:c9:98:56:6c:be:ce:0f:0d:68:75:ed:f5:01:e8:3c:0e:
e8:c7:4c:4f:6d:c5:bb:89:d8:85:f8:e6:e7:92:85:7c:36:1d:
7e:80:24:80:96:28:d9:c0:17:e6:60:9c:91:fe:14:28:60:bf:
16:3b:b7:a7:25:0f:92:50:d2:d9:95:e3:de:f5:22:38:05:29:
47:81:12:d1:35:95:00:87:4a:40:bf:34:42:a5:1b:34:30:29:
19:e2:29:90:be:2f:92:07:a1:c8:ae:6f:83:4c:26:d9:b2:8a:
03:21:91:b5:71:44:25:d9:82:e1:48:e6:9d:00:c2:f1:59:42:
c4:18:0c:f3:63:23:a2:72:9e:02:98:e3:ae:23:81:e5:e0:3d:
e8:dc:73:fa:08:55:bd:9b:9b:69:6f:e9:52:ff:ab:ef:fb:9a:
48:d2:8b:1c:80:27:05:87:c4:5f:43:d4:52:87:55:1e:57:03:
33:d3:f0:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:49 2024 by rpki-client on console-fra.rpki-client.org