Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/5e4da1-82df-4268-9c92-2a37822e95ac/1/kP1lvZPuFJYj548WQiC3ifWmj6o.roa
File: kP1lvZPuFJYj548WQiC3ifWmj6o.roa (raw, json)
Hash identifier: p5tv0l84dHUpjstrt2Q0O0ok/RahKToXr5vAiy761WE=
Subject key identifier: 90:FD:65:BD:93:EE:14:96:23:E7:8F:16:42:20:B7:89:F5:A6:8F:AA
Certificate issuer: /CN=2a2caea2eed113867ad773b7b35809d386a803b2
Certificate serial: 01856FF028DB8A31F0D74B48BAD5760C88D3
Authority key identifier: 2A:2C:AE:A2:EE:D1:13:86:7A:D7:73:B7:B3:58:09:D3:86:A8:03:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kiyuou7RE4Z613O3s1gJ04aoA7I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/5e4da1-82df-4268-9c92-2a37822e95ac/1/kP1lvZPuFJYj548WQiC3ifWmj6o.roa
Signing time: Mon 02 Jan 2023 00:44:48 +0000
ROA not before: Mon 02 Jan 2023 00:44:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207780
IP address blocks: 2001:67c:360::/48 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f0:28:db:8a:31:f0:d7:4b:48:ba:d5:76:0c:88:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a2caea2eed113867ad773b7b35809d386a803b2
Validity
Not Before: Jan 2 00:44:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=90fd65bd93ee149623e78f164220b789f5a68faa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:32:4f:d6:85:4c:fb:9c:be:1e:37:56:c9:29:
92:6f:a0:cf:1f:50:22:f6:40:64:38:09:99:3c:17:
ea:ff:93:9a:c3:dd:f4:45:61:44:fa:06:1c:91:f8:
85:a4:33:87:91:8c:23:3d:4d:59:07:1b:e6:41:66:
83:7c:62:fd:e6:b6:19:5c:49:80:44:1d:71:6f:7e:
90:fe:f9:59:81:1a:a7:b0:e3:c8:03:e0:5d:39:ef:
c6:40:80:96:de:b8:3e:c1:8f:32:3a:a4:d0:ed:21:
bb:36:5d:77:ed:ff:46:10:a6:1e:70:16:9a:49:9a:
ec:1b:11:c8:7a:fb:eb:26:12:36:d5:de:b9:51:ee:
02:58:8a:59:98:f4:fd:cc:55:cf:f8:e2:a8:0c:d4:
f6:e9:64:bf:bb:70:b1:bf:d6:53:97:e2:5d:b7:73:
5f:f2:47:3b:e4:06:34:da:c5:11:37:f0:de:fb:16:
7c:5d:ef:a2:51:1d:e9:96:5e:01:af:09:65:2f:1b:
29:c6:d5:f8:ed:93:4d:d8:7d:63:6d:62:3a:41:fa:
64:ce:02:8b:a1:ae:2b:91:d8:85:52:c9:ff:78:8d:
11:40:c4:35:d3:4d:15:0e:2b:39:c6:fc:e8:f6:3e:
38:f1:91:a4:f1:2b:8b:fd:d2:f8:60:b1:52:6b:62:
31:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:FD:65:BD:93:EE:14:96:23:E7:8F:16:42:20:B7:89:F5:A6:8F:AA
X509v3 Authority Key Identifier:
keyid:2A:2C:AE:A2:EE:D1:13:86:7A:D7:73:B7:B3:58:09:D3:86:A8:03:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kiyuou7RE4Z613O3s1gJ04aoA7I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/5e4da1-82df-4268-9c92-2a37822e95ac/1/kP1lvZPuFJYj548WQiC3ifWmj6o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/5e4da1-82df-4268-9c92-2a37822e95ac/1/Kiyuou7RE4Z613O3s1gJ04aoA7I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:360::/48
Signature Algorithm: sha256WithRSAEncryption
67:f8:2e:49:cb:b4:07:38:16:15:3a:95:ca:da:55:8d:34:00:
7f:aa:bd:8e:89:6a:7a:ee:5f:6d:30:56:55:f1:00:57:fd:23:
be:14:e2:31:2f:19:d8:1f:fc:89:f1:68:f7:27:93:1a:48:05:
4c:66:51:8c:76:d0:31:84:23:3b:0d:00:a1:50:e5:96:b1:4f:
24:78:d7:3e:f2:5d:22:2d:fc:61:52:14:07:85:ba:c1:4e:15:
23:62:c7:93:3d:7b:7a:05:ec:ab:a5:60:b6:74:5e:cd:7a:3a:
15:b1:b6:d0:24:fb:f3:76:cd:a4:65:91:cd:56:3e:8a:62:bf:
3e:c5:b2:a7:cf:6a:8d:f8:0b:ba:32:e7:31:93:3a:67:20:2e:
26:c3:b7:45:8a:3a:b4:4e:40:e2:c1:7f:5c:2f:17:d4:74:9d:
9d:fa:87:eb:d8:10:c0:d2:b3:0e:70:7a:dd:12:cf:17:b4:7d:
18:4c:74:bb:e3:5f:c6:06:58:07:d9:1f:55:4b:e9:9d:a9:21:
1d:79:51:f6:f5:e6:15:9e:e8:c7:5c:78:72:0c:89:1f:5f:97:
0e:9b:f5:1d:39:40:c4:a6:4f:ae:77:8a:7d:3e:34:df:07:d5:
4b:bd:b8:c7:6e:d5:59:f7:e7:f4:3f:ae:3e:71:32:7f:fa:51:
5d:e7:b3:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:39 2024 by rpki-client on console-ams.rpki-client.org