Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/f0ca51-3619-425d-88c5-c50183ce42e3/1/vkNscEon6zYWOioN_Zjgtz9GrLc.roa
File: vkNscEon6zYWOioN_Zjgtz9GrLc.roa (raw, json)
Hash identifier: VZrk57yhWn2U1VPBk9UiG+xJ1UReXsB3FhfU+VBcsa4=
Subject key identifier: BE:43:6C:70:4A:27:EB:36:16:3A:2A:0D:FD:98:E0:B7:3F:46:AC:B7
Certificate issuer: /CN=246d5c913452997968c721cca0c3ce0847c5c7db
Certificate serial: 0185C6123470EC07A6174965AF23B04CC3F8
Authority key identifier: 24:6D:5C:91:34:52:99:79:68:C7:21:CC:A0:C3:CE:08:47:C5:C7:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JG1ckTRSmXloxyHMoMPOCEfFx9s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/f0ca51-3619-425d-88c5-c50183ce42e3/1/vkNscEon6zYWOioN_Zjgtz9GrLc.roa
Signing time: Wed 18 Jan 2023 18:09:19 +0000
ROA not before: Wed 18 Jan 2023 18:09:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43624
IP address blocks: 2a11:3c01::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:c6:12:34:70:ec:07:a6:17:49:65:af:23:b0:4c:c3:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=246d5c913452997968c721cca0c3ce0847c5c7db
Validity
Not Before: Jan 18 18:09:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=be436c704a27eb36163a2a0dfd98e0b73f46acb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:b9:d0:d4:10:e5:cc:e9:11:98:09:ff:b2:e8:
cb:08:2a:0e:d7:8d:4d:0b:f1:5f:9a:83:b4:d3:83:
c8:dc:90:fa:79:3f:87:d2:6c:35:a7:9f:5e:a0:89:
dc:9a:c9:4f:7b:5e:c2:1a:de:c7:4c:3e:c0:10:a5:
3f:db:4c:46:92:cd:ce:95:ca:e8:a2:e2:53:d6:05:
6d:b4:4f:2f:2c:65:b2:ff:a2:14:0b:d2:a3:65:91:
3b:a2:e7:c5:cd:ed:ad:40:a7:f5:d4:6e:38:73:a0:
c9:2e:d7:ad:63:d8:26:87:53:e9:ac:ce:eb:ba:3c:
68:6d:68:9e:c5:b8:ea:61:96:34:0b:f0:60:05:32:
92:1b:7c:e4:fc:31:28:02:85:0e:a1:a5:08:84:41:
65:31:02:9d:c5:fd:f7:40:db:a1:2a:37:9a:db:a9:
3c:d3:c3:04:4f:9b:7f:c3:89:c5:55:1e:58:88:d1:
51:90:bc:6f:ff:b1:0a:a8:f3:63:dc:9c:e6:ae:6b:
0f:13:e2:a9:69:47:fd:4a:12:ff:5b:f6:70:a3:8f:
b3:84:2e:be:76:71:07:36:59:42:fb:4d:d8:bc:4b:
1b:3a:f9:f3:f0:e2:8a:f8:03:c6:86:8d:ac:d5:e3:
fa:c4:d3:2b:1f:9b:85:9c:3a:1f:85:22:fc:d2:30:
d7:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:43:6C:70:4A:27:EB:36:16:3A:2A:0D:FD:98:E0:B7:3F:46:AC:B7
X509v3 Authority Key Identifier:
keyid:24:6D:5C:91:34:52:99:79:68:C7:21:CC:A0:C3:CE:08:47:C5:C7:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JG1ckTRSmXloxyHMoMPOCEfFx9s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/f0ca51-3619-425d-88c5-c50183ce42e3/1/vkNscEon6zYWOioN_Zjgtz9GrLc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/f0ca51-3619-425d-88c5-c50183ce42e3/1/JG1ckTRSmXloxyHMoMPOCEfFx9s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:3c01::/32
Signature Algorithm: sha256WithRSAEncryption
00:05:b8:7c:a1:33:fb:3c:fa:24:97:cc:03:d3:2e:55:33:b7:
c9:fa:28:5f:4b:12:d9:d2:60:52:cd:29:60:f2:f5:41:02:94:
87:04:11:3c:f6:42:df:3f:b5:c7:ad:51:e9:ff:51:63:54:78:
a0:f0:9f:7d:fc:60:c5:51:03:59:c3:fb:1e:6e:72:fa:5e:99:
04:c1:f2:4a:32:57:c2:e0:11:b4:e5:44:70:35:40:db:65:93:
35:74:83:15:64:1b:4a:88:a7:99:ff:c1:5b:af:ba:70:ad:ee:
1f:ec:4c:55:ea:1a:05:28:7f:2c:ee:cf:96:d4:fc:e4:d9:d0:
30:14:21:80:1f:99:3c:46:75:d0:07:e5:b4:07:9d:b6:b3:9a:
5f:63:98:ec:95:32:e2:f0:48:ac:f5:22:ef:d4:53:db:81:63:
3b:80:28:12:89:89:77:c6:e5:c6:4f:81:2a:f8:55:fb:3a:6d:
70:e1:cc:22:52:31:5d:c0:bc:1b:46:b0:b6:aa:4a:a0:6e:51:
23:c1:c1:65:38:e0:96:7e:22:35:01:24:52:fa:a7:bf:a9:f2:
5d:b6:31:8d:dd:f7:28:4d:9f:6b:cd:66:62:78:aa:2a:ee:56:
6f:d7:8f:e0:a2:b2:a2:b6:cf:1e:8a:4e:8e:1d:24:7a:a7:63:
df:77:05:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:57 2024 by rpki-client on console-fra.rpki-client.org