Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/5525ae-4401-40a6-9059-c63050257066/1/ldplkmZqPVZkNeL1HZlkLwwWkII.roa
File: ldplkmZqPVZkNeL1HZlkLwwWkII.roa (raw, json)
Hash identifier: l7dExVL31RrReJRMwFdULHTuoIHeraJZ/fSckBTI4UU=
Subject key identifier: 95:DA:65:92:66:6A:3D:56:64:35:E2:F5:1D:99:64:2F:0C:16:90:82
Certificate issuer: /CN=d9e2760d70a0d6b7a047130edbd996d041e9d300
Certificate serial: 018CC56EC9844887D9B4D3026487D85F9674
Authority key identifier: D9:E2:76:0D:70:A0:D6:B7:A0:47:13:0E:DB:D9:96:D0:41:E9:D3:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2eJ2DXCg1regRxMO29mW0EHp0wA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/5525ae-4401-40a6-9059-c63050257066/1/ldplkmZqPVZkNeL1HZlkLwwWkII.roa
Signing time: Mon 01 Jan 2024 14:30:21 +0000
ROA not before: Mon 01 Jan 2024 14:30:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 22773
IP address blocks: 2a12:7580::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:c9:84:48:87:d9:b4:d3:02:64:87:d8:5f:96:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9e2760d70a0d6b7a047130edbd996d041e9d300
Validity
Not Before: Jan 1 14:30:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=95da6592666a3d566435e2f51d99642f0c169082
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:ab:bf:c1:15:6b:85:28:0d:58:4e:8e:46:8c:
78:ce:7e:da:b3:3a:a5:d6:75:0a:00:bc:b9:45:88:
e5:82:89:31:e3:6c:8c:12:34:af:43:7e:06:04:a4:
ac:f5:08:cf:ff:aa:9f:a5:6c:d0:69:0a:35:ce:da:
09:00:03:cd:10:c3:fd:cf:e0:59:4c:10:70:7a:95:
6b:e1:e0:6a:18:75:27:c1:93:ae:ce:6c:73:da:6b:
f2:95:8c:ae:9c:04:5c:29:7d:9e:ac:1b:c5:74:66:
de:22:58:a0:7c:3d:61:1f:be:ae:07:57:7c:a6:45:
66:23:32:1d:fe:d4:3b:ca:a0:15:82:93:14:dd:f2:
cd:8d:e8:d9:47:ac:b9:4e:53:aa:fb:f8:bb:e0:66:
00:59:01:c4:3a:4f:4e:31:a5:99:12:7b:1c:ac:70:
3c:32:9f:b8:c1:53:cb:9b:8e:fd:4a:71:2b:2f:9d:
a5:0e:a7:48:d2:2d:76:40:58:25:c2:ee:3a:8f:6c:
45:c4:28:3c:cf:bb:df:8f:a0:b2:c1:f8:5f:b8:69:
cd:57:5e:5e:d7:b9:bd:06:18:90:01:04:87:4f:ff:
15:eb:35:ce:97:bf:fc:c8:5f:53:dc:59:6c:86:54:
9a:8f:95:38:2c:82:90:e5:fd:cd:83:39:ff:96:3d:
35:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:DA:65:92:66:6A:3D:56:64:35:E2:F5:1D:99:64:2F:0C:16:90:82
X509v3 Authority Key Identifier:
keyid:D9:E2:76:0D:70:A0:D6:B7:A0:47:13:0E:DB:D9:96:D0:41:E9:D3:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2eJ2DXCg1regRxMO29mW0EHp0wA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/5525ae-4401-40a6-9059-c63050257066/1/ldplkmZqPVZkNeL1HZlkLwwWkII.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/5525ae-4401-40a6-9059-c63050257066/1/2eJ2DXCg1regRxMO29mW0EHp0wA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:7580::/29
Signature Algorithm: sha256WithRSAEncryption
2d:28:ef:f2:bc:df:c4:e4:78:38:8a:09:85:e2:ef:d0:56:67:
0b:30:e1:a1:e3:ce:9a:55:45:0b:a7:95:59:1e:db:5b:3d:2b:
b5:70:0e:6d:db:49:2f:70:b1:3d:02:1d:7a:f4:f5:da:68:03:
cf:c7:73:cc:4c:d1:ec:d0:3d:c2:e2:27:d1:20:5e:42:cf:41:
e5:02:32:d8:51:29:c4:49:13:da:25:a0:a7:42:23:67:a9:fb:
5f:9e:8f:f0:79:47:86:a6:09:d6:ae:18:08:1b:4d:0e:ce:c1:
94:de:19:12:61:b8:d0:33:8e:41:b8:bc:6e:dc:1e:61:8f:c1:
cd:a1:e0:5d:6e:c6:91:ce:2b:70:89:1c:66:04:db:eb:80:86:
45:ad:7d:b6:b2:d5:f1:d6:bc:c1:37:75:aa:ee:b6:a9:d4:5d:
af:6f:9a:fe:ef:0b:21:77:2d:f4:e2:12:d3:6e:88:f7:4a:9e:
61:ea:34:64:2b:ff:73:80:0b:8a:fa:3b:2e:8d:97:43:54:7e:
27:f2:c5:ee:2f:db:21:21:02:1e:0c:50:5a:9d:28:93:75:13:
91:06:02:6b:1e:9a:d8:7d:e6:51:cd:93:9c:0e:e9:7f:1e:6b:
c9:08:0f:e3:e4:f6:3f:2c:e8:11:30:7b:09:bb:1b:82:c7:8e:
be:5e:9c:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:21 2024 by rpki-client on console-fra.rpki-client.org