Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/40b689-3658-4f63-8921-be18563ca50e/1/ZUs1NCVG7Nlkj7gkaNQPuw1ZQiY.roa
File: ZUs1NCVG7Nlkj7gkaNQPuw1ZQiY.roa (raw, json)
Hash identifier: sPtmS8H1ubvNfsWA24rQpznspjsAJGElDbC7u+TY86I=
Subject key identifier: 65:4B:35:34:25:46:EC:D9:64:8F:B8:24:68:D4:0F:BB:0D:59:42:26
Certificate issuer: /CN=f45d87c133103f3ceaeb87e3a29e8e51da7b961f
Certificate serial: 08535EDD
Authority key identifier: F4:5D:87:C1:33:10:3F:3C:EA:EB:87:E3:A2:9E:8E:51:DA:7B:96:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9F2HwTMQPzzq64fjop6OUdp7lh8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/40b689-3658-4f63-8921-be18563ca50e/1/ZUs1NCVG7Nlkj7gkaNQPuw1ZQiY.roa
Signing time: Sat 01 Jan 2022 09:55:03 +0000
ROA not before: Sat 01 Jan 2022 09:55:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 2a0e:a780::/29 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139681501 (0x8535edd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f45d87c133103f3ceaeb87e3a29e8e51da7b961f
Validity
Not Before: Jan 1 09:55:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=654b35342546ecd9648fb82468d40fbb0d594226
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:a4:6c:48:07:b3:f1:a3:d7:4f:fc:06:96:83:
ef:3d:dd:38:34:78:d6:fd:5d:2a:f9:bc:17:c6:e5:
1c:19:2c:4a:5f:dc:b6:06:42:54:21:a6:b3:94:1a:
68:03:e7:f9:e7:db:f1:69:63:d9:c7:1b:03:b5:f1:
bf:e9:56:25:89:e4:a1:c2:98:c8:9d:b4:14:76:da:
f0:71:a8:1a:ce:47:e7:43:a1:bd:f1:bc:88:29:b2:
a2:bd:bc:ef:37:30:b8:b9:e7:a4:37:5a:93:28:1c:
56:bb:53:08:7a:49:2e:89:cc:46:12:1b:d4:fc:13:
11:84:71:b2:39:96:68:79:d4:e5:81:e3:b2:b9:f0:
cc:4f:66:0c:9d:6d:02:2e:fd:89:14:72:1b:9a:c5:
1a:7d:2c:47:90:95:52:df:ae:d0:8e:1a:7d:eb:de:
ce:b4:79:59:6c:b6:b5:52:a5:80:b7:e4:01:a6:27:
1d:5a:a5:9c:be:ae:04:a8:0d:b4:2b:ed:b0:34:b0:
4c:e6:11:c8:17:1c:2c:04:68:c2:4f:0a:72:33:22:
2b:5d:d7:d2:90:5f:01:b2:3a:aa:c0:48:ef:bc:17:
e1:cf:bd:e0:19:25:c6:2a:1f:9b:12:e2:6d:28:cb:
fd:49:98:2a:d9:b0:25:a0:c5:e0:fb:e4:10:28:30:
7e:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:4B:35:34:25:46:EC:D9:64:8F:B8:24:68:D4:0F:BB:0D:59:42:26
X509v3 Authority Key Identifier:
keyid:F4:5D:87:C1:33:10:3F:3C:EA:EB:87:E3:A2:9E:8E:51:DA:7B:96:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9F2HwTMQPzzq64fjop6OUdp7lh8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/40b689-3658-4f63-8921-be18563ca50e/1/ZUs1NCVG7Nlkj7gkaNQPuw1ZQiY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/40b689-3658-4f63-8921-be18563ca50e/1/9F2HwTMQPzzq64fjop6OUdp7lh8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:a780::/29
Signature Algorithm: sha256WithRSAEncryption
68:27:0a:bf:a0:b5:a3:30:32:d7:5f:48:f6:bf:6f:d7:a3:5b:
78:a3:f3:8d:75:b3:02:e7:79:5b:18:bf:40:98:0f:cb:e5:47:
88:ac:aa:73:2c:36:10:33:97:66:64:64:2a:26:52:8b:f3:92:
b7:87:36:be:e9:af:31:b1:59:96:3e:a3:a9:8e:d4:8b:f0:9e:
3d:3b:03:e2:48:3d:ed:b0:c1:47:b3:70:2c:67:96:8a:20:c5:
51:6d:05:68:aa:19:03:9c:c2:69:1c:91:ca:ad:66:8b:70:30:
05:20:a8:5c:48:93:af:a5:a7:e2:23:92:fa:a7:c8:79:8e:46:
3e:37:47:20:2a:57:8e:a1:3f:c9:a1:48:52:99:a4:7b:fd:9e:
f7:aa:2c:9d:06:38:9f:b9:35:23:6d:c5:59:41:63:33:f1:b6:
6d:37:0c:59:7c:ba:47:5e:fc:b1:90:c9:ea:70:83:d2:d9:63:
1b:0f:0a:08:37:ef:c3:ef:46:35:d7:3b:b9:6b:9f:f4:90:fd:
d3:37:44:08:50:f8:3c:50:57:ea:c1:16:ab:2e:23:63:9d:27:
4e:c8:a4:8c:be:57:42:1d:04:86:bc:58:26:c1:de:9d:f7:12:
32:ac:1e:ed:51:5f:ce:d4:1f:8c:70:87:86:28:74:26:0e:a8:
3e:3b:9a:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:06 2023 by rpki-client on console-fra.rpki-client.org