Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/826b7c-4754-4abd-9875-e1b20077ed93/1/dngALJPwolFD2goOnrgeHmoyFgE.roa
File: dngALJPwolFD2goOnrgeHmoyFgE.roa (raw, json)
Hash identifier: uX+GVTTaG9WUmjbaGnVOp5j4khw511EaJyU9i88HwDk=
Subject key identifier: 76:78:00:2C:93:F0:A2:51:43:DA:0A:0E:9E:B8:1E:1E:6A:32:16:01
Certificate issuer: /CN=5289a5765a9e836fd0fa811f760f0dcebe8f18ce
Certificate serial: 018CC94C13B18896C825A25BB68E604EA383
Authority key identifier: 52:89:A5:76:5A:9E:83:6F:D0:FA:81:1F:76:0F:0D:CE:BE:8F:18:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Uomldlqeg2_Q-oEfdg8Nzr6PGM4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/826b7c-4754-4abd-9875-e1b20077ed93/1/dngALJPwolFD2goOnrgeHmoyFgE.roa
Signing time: Tue 02 Jan 2024 08:30:55 +0000
ROA not before: Tue 02 Jan 2024 08:30:55 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197996
IP address blocks: 2a03:1880::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4c:13:b1:88:96:c8:25:a2:5b:b6:8e:60:4e:a3:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5289a5765a9e836fd0fa811f760f0dcebe8f18ce
Validity
Not Before: Jan 2 08:30:55 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7678002c93f0a25143da0a0e9eb81e1e6a321601
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:f1:c4:c6:19:dc:3b:5e:81:c8:cb:bd:35:da:
85:9e:a3:70:13:84:bd:cb:72:39:3c:d4:33:a5:33:
b5:c4:c1:7e:a4:06:8b:0b:f2:cb:22:17:aa:4a:19:
da:e0:ef:b4:a6:ba:c4:f6:aa:b2:5b:6d:79:b2:ab:
7d:6b:ec:53:2f:77:a5:18:a3:f1:7f:9f:2e:ac:bf:
b3:8d:a5:ef:80:81:52:84:26:e2:60:af:c1:c6:fe:
73:22:02:b6:fb:a5:df:97:a5:0e:13:e9:13:b3:ae:
55:35:52:6d:20:46:7c:16:80:75:19:40:23:05:79:
6c:0e:80:10:6b:1b:0b:5a:f1:f9:8c:7f:4d:b8:2d:
80:36:8a:e6:ac:b1:37:aa:fa:6a:8a:25:6a:45:49:
66:34:39:08:63:2e:d7:cd:ec:e4:73:41:85:ec:cd:
54:e5:f7:bd:a7:ea:ac:8a:43:85:bd:fe:c3:1f:f0:
62:9a:05:1a:5c:a3:8a:5d:9f:50:2c:dd:a2:e9:59:
8f:4d:8b:a6:94:b2:c1:80:b2:14:fa:0e:30:62:9d:
d3:c9:ef:c4:1e:4b:a6:e7:e1:db:87:40:87:ce:28:
58:9d:a2:c6:83:4a:41:07:55:f5:5e:95:f6:45:0d:
62:50:4d:d3:81:39:d3:6b:3a:48:c2:86:ec:01:18:
1d:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:78:00:2C:93:F0:A2:51:43:DA:0A:0E:9E:B8:1E:1E:6A:32:16:01
X509v3 Authority Key Identifier:
keyid:52:89:A5:76:5A:9E:83:6F:D0:FA:81:1F:76:0F:0D:CE:BE:8F:18:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Uomldlqeg2_Q-oEfdg8Nzr6PGM4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/826b7c-4754-4abd-9875-e1b20077ed93/1/dngALJPwolFD2goOnrgeHmoyFgE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/826b7c-4754-4abd-9875-e1b20077ed93/1/Uomldlqeg2_Q-oEfdg8Nzr6PGM4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:1880::/32
Signature Algorithm: sha256WithRSAEncryption
65:b5:19:eb:11:05:42:e5:ad:af:e5:66:5d:79:1c:ef:8f:95:
1f:8b:d6:d3:55:67:e9:cf:4a:c0:0f:56:c9:ed:86:93:66:51:
9a:bb:1a:09:e7:5b:c3:07:7a:c6:0d:fa:86:02:1b:2c:20:f0:
9c:6b:57:77:34:9b:55:c3:61:55:c1:ee:be:32:ac:50:56:6c:
52:5b:ec:2b:21:89:6b:0f:ac:dc:c4:42:f4:d2:c8:0a:45:1f:
29:55:30:ec:c4:ec:f8:65:22:b6:f6:98:86:53:74:2b:46:43:
5d:fa:53:ce:a3:5d:a6:f3:bf:ff:bf:77:a4:93:36:eb:78:ab:
af:82:bc:af:36:c9:89:45:f6:04:3b:be:e9:78:82:12:c1:6d:
9a:c6:f3:24:46:09:b4:7d:ee:ea:d7:d2:ed:64:2c:11:6a:bc:
c5:9f:07:77:05:71:bb:e7:0d:5c:71:4a:66:ce:d1:59:4e:a7:
8b:61:94:62:a0:12:6b:16:f4:0e:31:2c:a6:e6:78:6d:fb:cd:
22:2a:c9:27:86:7f:d5:b3:cd:57:b6:01:b7:be:2d:a7:7c:f0:
24:1e:04:82:c6:34:ba:4a:35:f9:4e:c1:b7:ff:25:9f:53:d0:
34:0c:99:d7:94:95:9f:3a:6c:cb:65:55:81:77:15:96:ff:92:
8a:ad:0c:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 16 13:21:11 2024 by rpki-client on console-ams.rpki-client.org