Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/ea373e-1cf1-496b-a2cf-062f8160a5e3/1/mdKNwMpqbzYaiKGwKrf83LxFEhA.roa
File: mdKNwMpqbzYaiKGwKrf83LxFEhA.roa (raw, json)
Hash identifier: gmY/8+8emSqtYGW2AY5bWGtJF0qGKNu1MSfE9bV4Sfw=
Subject key identifier: 99:D2:8D:C0:CA:6A:6F:36:1A:88:A1:B0:2A:B7:FC:DC:BC:45:12:10
Certificate issuer: /CN=664c0dde9d1c6173b1ab7e21c69ab8bdd95f0361
Certificate serial: 0131FC3D
Authority key identifier: 66:4C:0D:DE:9D:1C:61:73:B1:AB:7E:21:C6:9A:B8:BD:D9:5F:03:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZkwN3p0cYXOxq34hxpq4vdlfA2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/ea373e-1cf1-496b-a2cf-062f8160a5e3/1/mdKNwMpqbzYaiKGwKrf83LxFEhA.roa
Signing time: Sat 01 Jan 2022 02:56:52 +0000
ROA not before: Sat 01 Jan 2022 02:56:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204790
IP address blocks: 2a11:ce80::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20053053 (0x131fc3d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=664c0dde9d1c6173b1ab7e21c69ab8bdd95f0361
Validity
Not Before: Jan 1 02:56:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=99d28dc0ca6a6f361a88a1b02ab7fcdcbc451210
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:bf:12:2e:8f:98:ef:cb:fa:7a:ad:22:19:31:
df:32:6c:23:e9:db:b0:3d:51:d4:08:99:6f:5e:53:
6b:fb:f8:65:67:63:eb:0b:89:b2:dd:93:5b:a0:92:
1f:9f:c7:15:cb:47:ef:e1:de:9b:67:dc:06:2f:b8:
b2:d4:3e:9c:4a:d4:28:2d:b5:0d:7b:9c:02:e2:fe:
a1:73:ef:73:4b:9e:93:f6:c9:1b:75:01:7c:0d:fa:
c6:8a:86:50:35:f2:bf:4a:29:e6:08:e2:42:24:ad:
5a:d1:29:86:47:aa:3e:b6:bf:f5:07:f7:7e:7f:15:
65:4b:92:42:d2:bd:5e:76:83:99:7b:ff:12:84:b2:
c5:30:12:7b:44:62:af:f3:2c:27:90:2e:a6:c3:84:
50:43:8a:50:f7:14:79:f1:c5:8e:bb:b4:42:c7:69:
7c:60:fb:db:89:ea:3b:bd:87:82:6d:d7:d3:59:c3:
ba:7c:fe:68:16:b3:78:d8:a7:15:68:93:54:9d:61:
ca:34:e3:b1:4c:81:8c:1a:ea:00:b2:50:a4:d2:00:
e1:d6:77:88:f0:5d:8e:98:b7:24:01:a6:4b:c7:e5:
2a:2b:2a:f9:30:c5:60:46:f2:7d:9c:84:c3:96:02:
f1:3c:82:99:69:e0:dd:4a:57:2d:cf:13:80:c2:1a:
80:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:D2:8D:C0:CA:6A:6F:36:1A:88:A1:B0:2A:B7:FC:DC:BC:45:12:10
X509v3 Authority Key Identifier:
keyid:66:4C:0D:DE:9D:1C:61:73:B1:AB:7E:21:C6:9A:B8:BD:D9:5F:03:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZkwN3p0cYXOxq34hxpq4vdlfA2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/ea373e-1cf1-496b-a2cf-062f8160a5e3/1/mdKNwMpqbzYaiKGwKrf83LxFEhA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/ea373e-1cf1-496b-a2cf-062f8160a5e3/1/ZkwN3p0cYXOxq34hxpq4vdlfA2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:ce80::/29
Signature Algorithm: sha256WithRSAEncryption
9c:c6:27:55:6f:9a:08:85:35:1f:fa:2d:fd:55:83:2a:e9:82:
a3:85:55:e5:71:ac:f6:d6:f2:e9:a0:e8:c8:88:da:af:34:59:
92:f0:8c:56:d2:3d:3f:01:5b:70:63:1a:95:9c:69:85:40:b5:
d8:f6:86:9c:03:91:38:c1:e8:b9:2b:aa:d9:0e:1d:1e:45:a8:
92:96:45:bc:92:30:d2:82:a1:25:89:d3:5d:ac:ce:90:14:5d:
1e:42:54:92:cb:72:80:6e:3b:08:4c:cd:62:f9:9e:af:fa:e0:
ce:e3:72:18:89:ae:a3:07:90:8e:03:c3:18:42:2a:a0:39:c5:
80:7b:b3:36:8a:5c:4d:65:8f:ab:e0:a6:67:06:ca:58:49:00:
74:04:b9:eb:a5:88:d7:52:a6:4b:8c:c4:8a:8b:85:bb:2f:c9:
52:52:a1:de:00:9a:ad:e8:ca:d4:cd:25:cc:62:00:3c:f6:ab:
75:28:eb:20:21:97:3d:d7:6f:f3:0e:6e:57:bf:ea:e2:d5:cc:
98:ae:1d:4e:a5:44:45:db:09:9b:d6:51:3b:80:ed:55:74:d9:
2b:ce:7f:50:d3:45:06:ab:b3:7d:4c:a0:bd:f1:e4:75:c9:4d:
05:65:66:5d:ff:57:01:b4:b9:b9:14:a9:c9:2f:96:79:bd:90:
40:01:02:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:43 2024 by rpki-client on console-ams.rpki-client.org