Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/8a0db8-6ad9-48cc-9871-d0b7eedeb7e9/1/bduLt_d_2WdscnLh-4GgD0F8foo.roa
File: bduLt_d_2WdscnLh-4GgD0F8foo.roa (raw, json)
Hash identifier: TQ0JRqVoqQMSrzdmaKfVkd3Ak6hLeq6SLiodvZAZr4s=
Subject key identifier: 6D:DB:8B:B7:F7:7F:D9:67:6C:72:72:E1:FB:81:A0:0F:41:7C:7E:8A
Certificate issuer: /CN=213f21d1551d2775e7b064382b8122ad4fc585f7
Certificate serial: 0CEB6D9A
Authority key identifier: 21:3F:21:D1:55:1D:27:75:E7:B0:64:38:2B:81:22:AD:4F:C5:85:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IT8h0VUdJ3XnsGQ4K4EirU_Fhfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/8a0db8-6ad9-48cc-9871-d0b7eedeb7e9/1/bduLt_d_2WdscnLh-4GgD0F8foo.roa
Signing time: Sat 01 Jan 2022 02:56:37 +0000
ROA not before: Sat 01 Jan 2022 02:56:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2065
IP address blocks: 162.38.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 216755610 (0xceb6d9a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=213f21d1551d2775e7b064382b8122ad4fc585f7
Validity
Not Before: Jan 1 02:56:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6ddb8bb7f77fd9676c7272e1fb81a00f417c7e8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:fc:38:01:91:c0:47:7f:31:1b:23:8d:57:91:
1f:22:00:a7:92:54:7d:cb:b4:57:5f:41:ad:c8:0b:
35:a2:b5:c4:25:a5:a3:c4:aa:cf:28:e2:22:be:af:
91:13:1c:c8:e3:15:51:66:0a:89:b7:df:79:79:84:
cd:91:86:49:54:99:16:d9:db:a4:c2:8c:0a:96:61:
3c:93:bf:3a:e9:48:ef:48:14:c1:f3:bc:72:87:76:
c6:28:32:fb:75:dc:fa:d9:ec:4d:34:e0:a0:3a:9c:
00:0a:b7:99:7c:88:44:26:f4:a2:db:0d:fb:22:e1:
01:2a:0d:4c:b7:50:41:d6:9d:12:b5:e5:d9:55:42:
54:58:14:3c:64:9e:e5:5c:74:4e:d1:2a:5b:12:63:
12:d5:90:23:83:42:e9:c9:7b:57:9c:0b:5c:6d:80:
da:f3:c9:97:8a:71:37:82:da:2d:98:a7:ce:3b:70:
23:82:59:7a:98:ce:0d:06:54:db:c5:0b:c1:41:57:
3b:88:f2:ac:04:50:ff:c4:e0:aa:d8:91:ec:e2:87:
09:1d:33:95:a8:0d:1a:d4:b9:a2:5f:82:91:62:7d:
6d:f5:3b:da:a9:04:27:c9:b9:c7:3c:85:93:8d:71:
6b:33:15:f2:a8:ba:20:82:9d:93:a8:51:6c:11:f2:
1f:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:DB:8B:B7:F7:7F:D9:67:6C:72:72:E1:FB:81:A0:0F:41:7C:7E:8A
X509v3 Authority Key Identifier:
keyid:21:3F:21:D1:55:1D:27:75:E7:B0:64:38:2B:81:22:AD:4F:C5:85:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IT8h0VUdJ3XnsGQ4K4EirU_Fhfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/8a0db8-6ad9-48cc-9871-d0b7eedeb7e9/1/bduLt_d_2WdscnLh-4GgD0F8foo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/8a0db8-6ad9-48cc-9871-d0b7eedeb7e9/1/IT8h0VUdJ3XnsGQ4K4EirU_Fhfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
162.38.0.0/16
Signature Algorithm: sha256WithRSAEncryption
69:7a:5b:9a:5a:88:7b:fe:d4:9b:c4:23:68:91:f4:28:fb:5a:
7e:6b:4a:7b:37:2f:62:49:d8:c7:4c:60:da:85:11:70:cd:f1:
76:06:8f:69:29:2b:0b:2f:67:36:a4:a1:c6:d2:b3:72:ba:e1:
02:f0:83:a8:a8:e1:b1:19:50:61:f0:8d:0b:87:39:fd:57:1c:
78:1d:ea:5a:37:b3:e2:df:29:37:76:e1:ec:31:7f:a4:6b:9c:
07:a8:f7:86:de:d2:60:78:17:51:2a:06:1c:33:4a:1f:c0:9d:
68:19:ab:45:2b:a6:10:c0:04:ff:ab:3b:c7:0d:73:b4:5a:bd:
38:e1:75:cf:d2:90:95:4c:de:66:86:d0:07:ba:45:d4:5e:2e:
ff:43:9e:2f:cf:00:31:be:42:03:89:3e:83:48:b4:05:4f:1e:
7f:d1:fa:a3:34:cc:c9:64:96:a9:39:1b:98:af:86:44:6e:63:
93:10:c2:a2:30:5c:7f:19:3f:18:fe:59:78:d8:be:5c:65:33:
ba:04:ba:19:36:2f:b0:c9:b7:6a:b6:69:b1:4a:fd:d7:d3:a9:
4f:ad:81:37:38:d3:20:d6:80:0e:46:8d:19:87:c0:ec:fc:ec:
cb:4c:e0:c8:70:79:d0:0a:c6:17:0e:93:59:a5:18:8a:35:76:
d2:46:44:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:52 2024 by rpki-client on console-fra.rpki-client.org