Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/cc1041-e57d-4703-974b-cd2d8865edc5/1/dgSadmhgp2DUIe7IT4VNFPNpdDI.roa
File: dgSadmhgp2DUIe7IT4VNFPNpdDI.roa (raw, json)
Hash identifier: qfw866fjeXnhT2Cn3uA2HrVC1MEDsGlePMld7VU7Ll8=
Subject key identifier: 76:04:9A:76:68:60:A7:60:D4:21:EE:C8:4F:85:4D:14:F3:69:74:32
Certificate issuer: /CN=cdb4d7a7928d81f0e5f6c491ea5f2b7c587b9d9d
Certificate serial: 01856F54A15698FE874286B460468A6E2B3E
Authority key identifier: CD:B4:D7:A7:92:8D:81:F0:E5:F6:C4:91:EA:5F:2B:7C:58:7B:9D:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zbTXp5KNgfDl9sSR6l8rfFh7nZ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/cc1041-e57d-4703-974b-cd2d8865edc5/1/dgSadmhgp2DUIe7IT4VNFPNpdDI.roa
Signing time: Sun 01 Jan 2023 21:54:55 +0000
ROA not before: Sun 01 Jan 2023 21:54:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 22773
IP address blocks: 2a12:f880::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:54:a1:56:98:fe:87:42:86:b4:60:46:8a:6e:2b:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdb4d7a7928d81f0e5f6c491ea5f2b7c587b9d9d
Validity
Not Before: Jan 1 21:54:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=76049a766860a760d421eec84f854d14f3697432
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:08:cc:6e:33:98:23:ce:f8:ed:33:6b:86:b0:
99:84:d3:ad:6e:93:74:3a:fe:b1:5b:04:38:3e:52:
44:d3:42:f5:4f:aa:63:56:93:81:1b:84:43:64:c2:
90:2e:aa:ff:f0:a7:47:81:74:02:cc:38:aa:b6:2c:
bd:c8:46:23:34:a3:38:e6:14:e7:aa:34:88:2e:5e:
ce:d2:50:da:e2:08:ab:e9:e0:d4:4b:4e:e2:21:ff:
ad:b6:26:f6:85:72:54:74:4b:01:a8:8f:fd:ef:70:
ef:a4:20:3a:18:35:05:9f:9b:c4:71:95:6c:ac:93:
c0:c1:5e:7c:30:58:fd:01:29:8f:68:c4:3e:8d:88:
b9:3b:a9:b8:55:6c:3e:bc:bc:38:c6:75:64:b0:3b:
cc:57:c0:82:20:f7:48:7e:c0:c1:d5:24:fa:50:65:
6a:7a:48:44:77:bd:8e:d4:c6:68:08:7e:d2:44:9f:
e7:19:2e:4f:dd:56:8a:70:3f:d7:35:30:55:a7:17:
0e:b2:f5:47:e2:d2:2b:04:6d:4e:58:f6:c3:fb:69:
a4:7d:67:97:b7:2d:33:1d:7b:d3:fd:17:f1:ed:a4:
06:73:1f:2f:23:68:ec:02:da:7b:7c:6e:f7:fc:b0:
91:ca:d5:1e:21:e1:91:50:49:85:ed:e9:42:1d:06:
b5:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:04:9A:76:68:60:A7:60:D4:21:EE:C8:4F:85:4D:14:F3:69:74:32
X509v3 Authority Key Identifier:
keyid:CD:B4:D7:A7:92:8D:81:F0:E5:F6:C4:91:EA:5F:2B:7C:58:7B:9D:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zbTXp5KNgfDl9sSR6l8rfFh7nZ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/cc1041-e57d-4703-974b-cd2d8865edc5/1/dgSadmhgp2DUIe7IT4VNFPNpdDI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/cc1041-e57d-4703-974b-cd2d8865edc5/1/zbTXp5KNgfDl9sSR6l8rfFh7nZ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:f880::/29
Signature Algorithm: sha256WithRSAEncryption
82:13:d7:a8:de:44:6a:42:23:e4:7d:3b:85:5c:84:34:59:a6:
6a:24:74:09:4f:b5:aa:6c:89:65:2c:e1:33:46:5b:ae:16:11:
2f:cd:a5:8c:e9:81:3b:9f:a9:15:32:8e:a7:9b:64:97:90:24:
d9:60:08:d0:e1:67:fc:cb:e6:fc:b3:fd:48:6b:22:4c:a6:75:
62:3d:a5:93:3c:38:25:8a:1f:00:47:3c:8f:dc:1f:64:bc:c0:
fb:d6:65:97:0e:d5:1b:d7:e7:17:02:e6:45:04:3b:8b:5c:51:
85:42:77:bc:02:6d:9b:88:7c:ca:71:1e:81:5a:d5:04:36:49:
c8:b0:36:f1:d1:35:d6:30:09:98:dc:f4:8a:b3:c3:f0:21:08:
bd:00:5a:c0:cc:19:23:5a:96:0e:b8:38:b6:04:7e:00:13:4a:
cf:a0:dd:c5:c5:58:63:7c:12:2c:13:2d:7b:8f:5b:ed:b6:c9:
4c:5a:70:1d:5d:41:dc:fe:79:d4:36:4e:f8:dd:d7:4b:2f:64:
32:79:8c:58:95:66:3f:1d:f5:09:49:88:15:14:7a:00:83:3b:
7d:bd:ea:c7:22:1b:c5:9a:39:23:2e:52:2f:f2:5f:3f:8a:84:
60:36:e6:74:26:9d:97:89:60:f1:8f:f4:33:1f:07:6b:d2:3c:
c4:e6:14:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:48 2024 by rpki-client on console-fra.rpki-client.org