Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/6b9c00-cbe0-4f88-aed5-99f5491c4447/1/1UkvKg3VwTyngBxIC-civk6Numw.roa
File: 1UkvKg3VwTyngBxIC-civk6Numw.roa (raw, json)
Hash identifier: T7mHHK5uZtUD0Y4zfnnlq9er9dypJsWVk0ntbM9gK6I=
Subject key identifier: D5:49:2F:2A:0D:D5:C1:3C:A7:80:1C:48:0B:E7:22:BE:4E:8D:BA:6C
Certificate issuer: /CN=720606eddbcec7a57211941a67cc729b42915c5e
Certificate serial: 018CCA2BC65D082C777AF4CA66AAAF302212
Authority key identifier: 72:06:06:ED:DB:CE:C7:A5:72:11:94:1A:67:CC:72:9B:42:91:5C:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgYG7dvOx6VyEZQaZ8xym0KRXF4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/6b9c00-cbe0-4f88-aed5-99f5491c4447/1/1UkvKg3VwTyngBxIC-civk6Numw.roa
Signing time: Tue 02 Jan 2024 12:35:15 +0000
ROA not before: Tue 02 Jan 2024 12:35:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 22773
IP address blocks: 2a12:240::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2b:c6:5d:08:2c:77:7a:f4:ca:66:aa:af:30:22:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=720606eddbcec7a57211941a67cc729b42915c5e
Validity
Not Before: Jan 2 12:35:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d5492f2a0dd5c13ca7801c480be722be4e8dba6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:f8:bc:f2:89:d0:fb:fc:91:2c:3d:69:50:cb:
ff:98:be:57:b0:75:31:75:89:be:4a:c5:c2:70:da:
be:7e:16:bc:05:a9:4f:af:a0:98:38:ae:6e:09:cf:
11:a9:cf:98:d3:c3:e1:7b:70:09:02:e2:b1:e6:0e:
cd:c5:20:d7:63:d8:f8:48:34:fd:3a:1a:ea:fe:0c:
1b:26:9b:e8:29:68:32:a8:9c:a0:f3:8f:ac:57:e3:
5f:f1:46:6d:fc:1d:15:0b:a2:b9:4c:38:c4:f7:f8:
4f:e3:0f:8d:2a:30:bd:cc:76:80:59:5d:74:35:97:
0b:a5:dc:d2:ba:47:8b:b3:e1:11:46:04:d0:10:24:
9b:10:40:0f:48:d6:4c:3f:22:60:a0:ce:af:ae:50:
a1:f3:9c:87:b4:b8:49:47:6e:80:1d:c6:a6:f9:36:
88:62:f2:c2:74:23:6e:2d:00:c8:79:9a:f1:7d:e2:
44:cc:3d:d1:bf:ba:c5:6d:87:ba:8a:79:f6:0b:80:
58:e8:e8:ef:33:e8:66:5c:a4:2e:f7:83:79:a5:7d:
ec:ff:8f:88:d8:47:ec:54:30:72:3f:2e:7e:62:a7:
a2:2a:dd:84:c0:36:14:20:f6:29:a8:74:81:9a:c0:
9e:8a:da:dd:47:0f:91:10:74:33:78:a6:ff:a6:8a:
af:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:49:2F:2A:0D:D5:C1:3C:A7:80:1C:48:0B:E7:22:BE:4E:8D:BA:6C
X509v3 Authority Key Identifier:
keyid:72:06:06:ED:DB:CE:C7:A5:72:11:94:1A:67:CC:72:9B:42:91:5C:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgYG7dvOx6VyEZQaZ8xym0KRXF4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/6b9c00-cbe0-4f88-aed5-99f5491c4447/1/1UkvKg3VwTyngBxIC-civk6Numw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/6b9c00-cbe0-4f88-aed5-99f5491c4447/1/cgYG7dvOx6VyEZQaZ8xym0KRXF4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:240::/29
Signature Algorithm: sha256WithRSAEncryption
51:25:42:54:65:1c:48:5e:aa:9e:35:7c:73:72:ec:0f:16:6c:
87:31:55:82:95:e8:2e:75:b6:91:90:93:4c:d7:5a:b2:6e:fc:
95:c1:7a:88:5f:5a:b7:a4:38:e3:07:fd:2e:80:17:59:4c:ac:
03:51:7b:8e:89:11:45:ad:7d:0e:63:be:39:a8:0b:93:14:6c:
1c:02:ab:f8:90:55:2d:ad:c2:a4:3f:31:dc:fc:eb:52:24:fa:
3f:32:4b:74:cb:62:88:2e:83:b2:e9:9b:08:b4:50:2f:71:25:
4f:30:28:8d:e5:72:c2:d6:78:87:68:f9:27:c4:cd:22:4e:f0:
63:31:f2:98:09:ef:5f:1f:0c:7e:9e:7b:5f:44:cc:6f:43:29:
8f:fe:f4:0f:d9:f2:c6:fa:f8:ab:9a:13:c2:f6:7f:25:2e:a9:
a9:55:e4:07:01:89:ed:d5:bf:d3:09:0e:f6:5d:de:cd:72:30:
4f:07:ae:40:35:f8:f6:55:23:c5:e8:b0:c9:a7:74:45:5c:8a:
14:a3:a5:bb:08:78:89:ec:9a:e7:a3:57:41:e3:e9:9e:08:b7:
95:d1:6e:01:35:12:b3:27:7c:f3:be:f7:89:32:6e:c0:44:cc:
08:ef:28:56:5b:73:1e:6d:a1:ea:db:92:37:e6:b8:b4:0b:18:
64:0c:79:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:40 2024 by rpki-client on console-fra.rpki-client.org