Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/253e39-8e52-498e-b27e-c8b89e0f300d/1/ZvtNMcy9QtYFwkKYpocWeLCC6pc.roa
File: ZvtNMcy9QtYFwkKYpocWeLCC6pc.roa (raw, json)
Hash identifier: MIWQOWvuQGeTY83gXPgCfOx3u6OH779aoTZ5IOTr9Mw=
Subject key identifier: 66:FB:4D:31:CC:BD:42:D6:05:C2:42:98:A6:87:16:78:B0:82:EA:97
Certificate issuer: /CN=0db2de8e0dfcb2d0b25b7506243258b739044098
Certificate serial: 0188A861F8C86B477A93F78E7C363440009C
Authority key identifier: 0D:B2:DE:8E:0D:FC:B2:D0:B2:5B:75:06:24:32:58:B7:39:04:40:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DbLejg38stCyW3UGJDJYtzkEQJg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/253e39-8e52-498e-b27e-c8b89e0f300d/1/ZvtNMcy9QtYFwkKYpocWeLCC6pc.roa
Signing time: Sun 11 Jun 2023 02:56:12 +0000
ROA not before: Sun 11 Jun 2023 02:56:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 40846
IP address blocks: 2001:67c:c3c::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:a8:61:f8:c8:6b:47:7a:93:f7:8e:7c:36:34:40:00:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0db2de8e0dfcb2d0b25b7506243258b739044098
Validity
Not Before: Jun 11 02:56:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=66fb4d31ccbd42d605c24298a6871678b082ea97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:de:6f:96:31:1e:ff:fe:29:c7:8b:7e:6f:91:
af:93:2d:b6:29:70:a8:1c:40:2f:c3:fb:a3:79:eb:
27:7f:18:fb:22:06:e3:85:3d:79:a0:e9:73:00:1b:
56:00:37:a5:b9:55:db:b0:69:74:fc:b5:16:be:3d:
20:e8:e7:5b:ff:b4:89:21:66:d3:e4:56:3b:d4:2b:
5b:58:fe:a7:2f:ff:d2:ab:43:43:5f:6b:99:b4:3f:
d8:da:ad:8c:0c:22:2b:64:15:e8:0b:2f:81:b2:45:
1b:eb:bd:1e:95:dc:31:be:a6:d6:a8:2f:0d:e3:74:
40:34:eb:4b:cc:c2:5f:ae:2f:4f:66:0c:e7:f9:07:
52:38:cb:d7:81:a5:3b:c6:7f:ca:db:4a:9d:93:1f:
b2:fb:88:48:5a:1d:f0:95:cb:94:b6:10:27:e9:a2:
57:3e:c5:bf:ba:89:7b:30:76:b4:ba:fa:33:12:47:
ff:ac:bb:07:4c:3c:0e:7f:a5:69:4b:2b:b9:20:4a:
45:8d:33:cd:d7:f8:87:a2:5d:a2:cd:45:ca:c7:f5:
b9:b2:1f:4f:6c:9d:17:f4:46:ae:47:d2:98:79:f3:
2c:27:7b:b9:86:99:9e:df:c7:53:fa:5f:8b:c2:79:
02:23:59:3b:b4:1a:77:8f:c0:3c:8a:2f:4c:e7:a9:
36:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:FB:4D:31:CC:BD:42:D6:05:C2:42:98:A6:87:16:78:B0:82:EA:97
X509v3 Authority Key Identifier:
keyid:0D:B2:DE:8E:0D:FC:B2:D0:B2:5B:75:06:24:32:58:B7:39:04:40:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DbLejg38stCyW3UGJDJYtzkEQJg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/253e39-8e52-498e-b27e-c8b89e0f300d/1/ZvtNMcy9QtYFwkKYpocWeLCC6pc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/253e39-8e52-498e-b27e-c8b89e0f300d/1/DbLejg38stCyW3UGJDJYtzkEQJg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:c3c::/48
Signature Algorithm: sha256WithRSAEncryption
8a:7f:38:d4:02:20:f9:95:31:58:7b:41:22:90:27:7d:b9:29:
ea:c4:d7:a4:c5:aa:e5:cb:5b:d1:64:22:88:fa:68:7e:c0:b9:
af:04:32:bc:50:bc:21:7b:7d:98:03:75:70:cd:d6:08:c8:85:
98:c3:30:bb:f5:d7:f0:f4:61:15:07:49:68:fa:2a:d7:b9:fc:
13:0a:23:b8:5c:a4:38:6c:9c:1d:03:49:10:76:74:78:03:8a:
6e:ef:2d:e1:d2:e9:30:e8:7c:47:12:30:17:32:89:8a:c7:08:
9c:ff:fb:46:b5:d3:70:cb:f7:0a:f6:db:d2:f3:83:f5:99:cd:
2a:bc:ff:01:c4:22:a0:b3:15:3c:ed:65:dd:d8:cc:a9:dd:8b:
fa:26:f1:c6:85:03:95:a6:a3:82:e0:6e:57:47:18:a8:a1:aa:
78:e3:72:74:64:6d:f1:f0:84:7b:c3:05:55:8e:b6:7e:68:3f:
f3:5e:1e:e2:47:d5:75:d6:26:bc:de:b4:1e:e6:60:b7:5a:cc:
55:71:6d:cc:68:48:60:a7:1f:20:b7:01:22:65:78:8b:a4:e7:
d1:47:79:46:37:e9:36:7e:48:7f:61:44:02:18:c6:46:62:69:
f5:bf:9a:12:12:fd:22:53:de:58:05:28:21:9d:fc:00:06:c6:
be:82:77:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:40 2024 by rpki-client on console-ams.rpki-client.org