Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/0d814f-d9f7-4d68-8bfc-3a1c25d83105/1/nlE0F6k3Sf242x1JMTWsvp7rvqQ.roa
File: nlE0F6k3Sf242x1JMTWsvp7rvqQ.roa (raw, json)
Hash identifier: U/aikDGuTm0f4+6IKck+G275GyKTaKiz/0MFtyY6Rcs=
Subject key identifier: 9E:51:34:17:A9:37:49:FD:B8:DB:1D:49:31:35:AC:BE:9E:EB:BE:A4
Certificate issuer: /CN=144ccce7224da99cbc5433da41cfd582fa60d3b6
Certificate serial: 0185729ED24DB607171148591A16C8F4E305
Authority key identifier: 14:4C:CC:E7:22:4D:A9:9C:BC:54:33:DA:41:CF:D5:82:FA:60:D3:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FEzM5yJNqZy8VDPaQc_Vgvpg07Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/0d814f-d9f7-4d68-8bfc-3a1c25d83105/1/nlE0F6k3Sf242x1JMTWsvp7rvqQ.roa
Signing time: Mon 02 Jan 2023 13:14:49 +0000
ROA not before: Mon 02 Jan 2023 13:14:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 18779
IP address blocks: 2a11:8ec0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:9e:d2:4d:b6:07:17:11:48:59:1a:16:c8:f4:e3:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=144ccce7224da99cbc5433da41cfd582fa60d3b6
Validity
Not Before: Jan 2 13:14:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9e513417a93749fdb8db1d493135acbe9eebbea4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:65:43:8b:1a:17:16:1b:d4:97:f4:9b:2c:e2:
ad:4a:e8:04:0f:c3:69:8b:1c:01:ff:ed:2d:96:69:
26:90:d3:e9:90:e7:38:2b:96:bb:f2:ed:33:85:79:
e2:5c:24:ad:8a:6d:7b:df:f2:2a:f6:94:46:9e:a8:
3b:6d:2e:b2:85:05:f1:41:53:6e:e2:d0:6b:04:ab:
7e:a2:1b:d6:44:f2:f6:6c:46:d6:ee:c9:1c:06:f2:
70:45:23:25:eb:22:86:f0:d1:40:06:20:33:f7:8a:
84:8e:08:2a:5d:ac:23:07:5e:12:a6:c0:1f:15:0d:
b4:24:85:64:b5:e9:60:a8:c8:ed:bc:95:bd:9c:8f:
75:6a:cb:26:9b:c2:3c:92:73:6c:c9:f6:40:44:f6:
4d:05:8b:27:a9:d5:94:09:8c:15:ef:05:c7:00:4d:
88:b5:2a:e8:4e:5b:d2:42:50:67:9c:fa:8a:78:58:
ce:72:9e:7b:e8:66:d3:1b:f2:3a:1e:17:bf:fe:22:
86:37:71:2b:cc:4b:cd:e6:e4:1f:6a:01:2b:61:cd:
01:5f:77:29:6c:9b:ef:f8:55:29:1b:fc:45:4d:94:
b4:33:5e:93:fc:ae:5a:17:1a:36:85:e0:2d:8b:7b:
fb:37:1c:aa:83:66:4a:1d:06:ec:92:fb:53:a0:11:
bf:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:51:34:17:A9:37:49:FD:B8:DB:1D:49:31:35:AC:BE:9E:EB:BE:A4
X509v3 Authority Key Identifier:
keyid:14:4C:CC:E7:22:4D:A9:9C:BC:54:33:DA:41:CF:D5:82:FA:60:D3:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FEzM5yJNqZy8VDPaQc_Vgvpg07Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/0d814f-d9f7-4d68-8bfc-3a1c25d83105/1/nlE0F6k3Sf242x1JMTWsvp7rvqQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/0d814f-d9f7-4d68-8bfc-3a1c25d83105/1/FEzM5yJNqZy8VDPaQc_Vgvpg07Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:8ec0::/29
Signature Algorithm: sha256WithRSAEncryption
9c:8d:75:02:1d:53:2e:01:d6:48:6d:c7:41:18:1f:d0:f7:96:
3d:3a:7c:3c:28:89:e6:4b:ca:f2:93:2a:16:51:d4:f3:4d:17:
af:ef:3c:17:9d:da:6d:c5:76:5a:bf:7d:0b:54:20:41:dc:9b:
a5:0b:67:e6:9c:ee:16:93:6c:7a:2f:cb:fb:4b:58:64:c6:25:
89:f3:46:22:7f:13:6a:39:ae:df:68:93:e4:8e:a9:a2:8c:17:
56:9f:19:42:35:5a:b1:0c:18:88:af:b6:6e:4c:b8:f1:92:c4:
fb:14:4d:7a:3c:76:84:d3:5f:f9:03:2f:ad:35:70:f8:d5:e7:
82:12:5e:6a:ce:95:4d:8d:9d:50:c1:94:06:fe:9e:13:93:b1:
88:d7:81:8b:02:c3:ed:7d:ec:1f:74:a7:c7:bd:5f:2e:3c:6e:
6c:25:f7:37:6e:af:b0:46:44:54:c4:5b:1f:d3:db:2a:6d:1a:
f6:f7:8f:9f:f3:55:2b:01:35:80:50:60:60:e1:74:6f:bc:e1:
78:42:5c:44:c2:d7:07:04:12:9a:9a:8e:c5:48:e4:0d:b7:90:
7c:af:b3:bc:85:45:ab:7d:6b:76:47:e6:99:2d:22:85:0a:f4:
73:f8:69:bf:1c:96:d2:b2:5f:05:62:13:70:c2:3e:14:88:e3:
90:7e:ce:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:00 2024 by rpki-client on console-ams.rpki-client.org