Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/ee5d9b-c8e6-499a-aaeb-e5e742f4577f/1/AthXcPN3d2pXTWejaSWFar_6u9E.roa
File: AthXcPN3d2pXTWejaSWFar_6u9E.roa (raw, json)
Hash identifier: 0Jc/ucJOlcBUueOWMouhwaZJ1F+vOoQmrzxg5hVfcpE=
Subject key identifier: 02:D8:57:70:F3:77:77:6A:57:4D:67:A3:69:25:85:6A:BF:FA:BB:D1
Certificate issuer: /CN=651698c0cd983797915e7d793fb6d18c481e84c5
Certificate serial: 018E9E70A18B089A9394DA65C83AC8FAA76D
Authority key identifier: 65:16:98:C0:CD:98:37:97:91:5E:7D:79:3F:B6:D1:8C:48:1E:84:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZRaYwM2YN5eRXn15P7bRjEgehMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/ee5d9b-c8e6-499a-aaeb-e5e742f4577f/1/AthXcPN3d2pXTWejaSWFar_6u9E.roa
Signing time: Tue 02 Apr 2024 10:52:45 +0000
ROA not before: Tue 02 Apr 2024 10:52:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216213
IP address blocks: 2a14:17c0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:9e:70:a1:8b:08:9a:93:94:da:65:c8:3a:c8:fa:a7:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=651698c0cd983797915e7d793fb6d18c481e84c5
Validity
Not Before: Apr 2 10:52:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=02d85770f377776a574d67a36925856abffabbd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:91:c9:fd:63:4c:4b:98:cb:3b:a5:13:ea:fe:
a9:17:e8:d5:ad:93:1d:c4:34:05:60:c0:d5:5e:e2:
3f:94:56:69:b7:0e:f0:91:61:fb:86:36:30:5a:44:
27:da:f2:0c:a8:10:ce:7b:f3:f0:e2:b8:95:a4:2d:
2c:1c:af:bd:e4:2d:2f:da:8a:fb:38:3e:11:ca:c5:
f2:5d:c6:6d:72:b0:59:3c:40:04:63:84:7f:13:2e:
cb:23:34:d2:3d:e9:ac:ee:46:78:2a:dd:b8:38:31:
63:30:18:2b:f1:5a:66:5c:08:97:a8:92:87:d4:b5:
ae:8e:55:2c:60:cc:32:a3:a1:a5:74:cd:00:08:f6:
48:e6:4b:f2:46:e3:6d:d2:ab:9c:b3:82:09:4d:68:
e4:8b:9f:32:86:f9:a8:8f:54:c8:a7:0e:46:e0:ef:
2f:bb:b2:dc:57:3d:20:54:15:24:ea:f4:d4:9b:70:
80:47:77:af:fb:e6:77:9c:dc:3b:69:4d:88:7a:13:
27:6b:54:8c:6f:18:71:30:39:b4:ed:5a:e2:77:6d:
e7:25:26:90:9b:8f:69:93:24:51:d6:2d:82:c7:de:
96:5b:6d:1f:6a:8f:df:21:6e:9e:fe:b8:54:47:e8:
e0:c9:13:8f:3d:e4:c5:24:bb:4e:8e:2b:7e:d8:c3:
6e:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:D8:57:70:F3:77:77:6A:57:4D:67:A3:69:25:85:6A:BF:FA:BB:D1
X509v3 Authority Key Identifier:
keyid:65:16:98:C0:CD:98:37:97:91:5E:7D:79:3F:B6:D1:8C:48:1E:84:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZRaYwM2YN5eRXn15P7bRjEgehMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/ee5d9b-c8e6-499a-aaeb-e5e742f4577f/1/AthXcPN3d2pXTWejaSWFar_6u9E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/ee5d9b-c8e6-499a-aaeb-e5e742f4577f/1/ZRaYwM2YN5eRXn15P7bRjEgehMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:17c0::/29
Signature Algorithm: sha256WithRSAEncryption
b7:77:48:0f:de:33:27:9b:83:17:88:bc:60:5c:72:fb:0e:50:
64:9f:13:e7:d0:ac:10:91:5a:6d:d4:06:d9:3d:b3:3a:e4:8f:
43:f3:9a:5e:6f:a4:78:66:25:f4:86:16:b6:3d:5a:88:f5:f1:
52:af:ec:d1:9a:dc:ff:cc:68:d4:bc:00:3d:7f:50:56:c7:88:
6d:8d:6a:15:13:a2:c1:c7:2a:f3:9f:a6:42:27:58:2c:26:5d:
94:74:70:52:c7:81:15:b1:96:86:78:7a:22:d2:de:d6:ba:46:
f7:70:9a:10:8c:33:03:a7:d0:b0:76:ba:8d:83:27:ef:86:99:
58:32:45:dc:b2:49:29:f4:ee:5f:81:cb:5d:77:e2:f2:d0:1b:
5e:45:41:4c:ab:7b:13:25:a0:a6:4b:26:07:00:6a:68:26:f9:
6c:59:17:b6:c2:b7:8e:cb:29:eb:06:65:50:26:c6:b6:2f:11:
b8:39:4c:16:0a:76:bb:fe:d2:db:b7:e0:c4:c9:12:18:ff:51:
1a:7c:ff:09:48:ea:b8:a8:1d:72:57:1b:11:fb:2d:e3:16:ee:
75:ba:c7:46:d1:cd:cd:ca:b9:d4:ba:c8:e2:14:5d:7c:1c:81:
26:0c:08:18:d8:74:c8:89:fe:b7:91:34:74:32:90:34:8a:1a:
f8:7c:8d:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:15 2024 by rpki-client on console-fra.rpki-client.org