Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/7f631d-d0a1-4e23-96f8-1b2b2faf1cac/1/BndvijpN6jzCNARCL9Lo_hjh1Q0.roa
File: BndvijpN6jzCNARCL9Lo_hjh1Q0.roa (raw, json)
Hash identifier: fOSWXsIGhN5c8DshNTunzY4AIF6YVVwlc256r3hR50I=
Subject key identifier: 06:77:6F:8A:3A:4D:EA:3C:C2:34:04:42:2F:D2:E8:FE:18:E1:D5:0D
Certificate issuer: /CN=68a839cc8159fc5d3d75dedf62aadb81c40eabed
Certificate serial: 018E0D2EE673D0E1C6F301B0DB619BF620C7
Authority key identifier: 68:A8:39:CC:81:59:FC:5D:3D:75:DE:DF:62:AA:DB:81:C4:0E:AB:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aKg5zIFZ_F09dd7fYqrbgcQOq-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/7f631d-d0a1-4e23-96f8-1b2b2faf1cac/1/BndvijpN6jzCNARCL9Lo_hjh1Q0.roa
Signing time: Tue 05 Mar 2024 05:56:01 +0000
ROA not before: Tue 05 Mar 2024 05:56:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216213
IP address blocks: 2a13:4a80::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:0d:2e:e6:73:d0:e1:c6:f3:01:b0:db:61:9b:f6:20:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68a839cc8159fc5d3d75dedf62aadb81c40eabed
Validity
Not Before: Mar 5 05:56:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=06776f8a3a4dea3cc23404422fd2e8fe18e1d50d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:ab:40:bb:00:3b:a9:87:de:61:56:6a:4d:45:
60:77:54:35:15:8c:a3:82:10:c0:24:7f:f6:74:7b:
1b:b6:a7:dd:e6:55:0c:c6:e8:c1:b6:d1:17:27:92:
e2:db:fd:eb:00:dc:62:0e:0f:82:18:fd:08:bf:46:
59:65:c6:00:54:fd:f8:cf:e0:d8:9e:49:8b:06:4d:
0a:c3:ce:54:b7:05:11:6e:9b:d7:87:25:a3:e1:c6:
61:16:05:75:8d:2c:25:92:7a:ea:ff:c9:26:9a:db:
d2:dc:08:79:56:45:d3:7d:26:88:dd:b0:36:64:dc:
e9:08:a5:89:9a:ba:0e:f6:c6:1b:b3:ae:a8:89:fa:
d4:03:96:cb:7a:4e:c7:b7:cb:2e:d5:8d:99:30:02:
30:99:a3:05:ba:08:e0:e7:52:db:e7:2f:4b:fa:fb:
55:a1:2a:0f:dd:17:07:4c:1f:6a:a5:80:d3:a5:41:
90:d4:bb:4e:17:36:e6:02:ce:65:45:56:0a:9d:97:
9f:6d:e1:37:12:42:cc:48:bb:81:1d:3c:67:72:a4:
11:31:82:54:e5:2d:c2:3b:8f:66:37:0d:22:7d:80:
df:c9:25:1c:0b:71:bb:4b:7d:0a:19:c4:4f:85:0a:
20:52:54:80:5b:5d:99:e6:f1:8c:c4:71:71:23:56:
b6:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:77:6F:8A:3A:4D:EA:3C:C2:34:04:42:2F:D2:E8:FE:18:E1:D5:0D
X509v3 Authority Key Identifier:
keyid:68:A8:39:CC:81:59:FC:5D:3D:75:DE:DF:62:AA:DB:81:C4:0E:AB:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aKg5zIFZ_F09dd7fYqrbgcQOq-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/7f631d-d0a1-4e23-96f8-1b2b2faf1cac/1/BndvijpN6jzCNARCL9Lo_hjh1Q0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/7f631d-d0a1-4e23-96f8-1b2b2faf1cac/1/aKg5zIFZ_F09dd7fYqrbgcQOq-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:4a80::/29
Signature Algorithm: sha256WithRSAEncryption
5c:df:cb:80:f0:28:7f:11:3e:87:9a:f7:72:1a:8d:ba:7c:d3:
9a:6c:6d:ad:47:18:de:5c:8f:28:e0:7a:ba:fd:e6:44:05:00:
b5:ed:e5:62:b5:3e:2d:91:6c:a2:d2:91:c2:ae:51:f1:db:0c:
3f:22:b7:e4:0a:c3:6f:6b:cd:11:7b:ea:77:1f:64:c8:d2:76:
74:fa:37:8f:c7:86:35:de:d1:01:a0:b1:5b:5e:67:b3:66:5a:
7e:de:c8:f7:4e:a0:4d:01:f0:97:5f:48:df:69:f6:96:8c:85:
90:c1:b7:78:d5:37:bb:02:4c:27:f1:fe:5b:00:3c:0d:4a:5f:
b6:b4:e4:ca:20:05:fc:c2:29:66:94:bb:60:88:26:60:76:81:
1d:99:04:93:f3:4f:13:36:bd:99:79:ca:97:85:68:c3:2a:93:
ca:e3:4c:2e:5e:8e:fb:81:7f:7f:f1:ed:d7:49:20:7f:7d:8b:
a6:3d:5d:67:44:28:55:50:cd:35:d3:2c:bd:ed:85:dd:c2:3b:
63:29:fc:ef:74:1d:d3:c8:0d:d1:82:1d:17:fe:cc:af:d2:17:
e6:43:0c:a2:6d:26:fb:ed:de:f3:4b:2d:d4:a4:7e:22:ee:7d:
25:c9:03:cd:07:f3:4a:b8:f8:f6:16:32:5a:3c:6c:ef:0f:7b:
ad:b9:56:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:18 2024 by rpki-client on console-ams.rpki-client.org