Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/182529-427a-47a0-9452-02f203e81df9/1/Nb9f2lgMQoqo5Tf_8KTQaj2Tq-s.roa
File: Nb9f2lgMQoqo5Tf_8KTQaj2Tq-s.roa (raw, json)
Hash identifier: a7broVwu6P5bcm1NMVFJl5xf9/E0jdSeiCoYxrlanY8=
Subject key identifier: 35:BF:5F:DA:58:0C:42:8A:A8:E5:37:FF:F0:A4:D0:6A:3D:93:AB:EB
Certificate issuer: /CN=3d695fafd6126d11fdf0200ed73258598f97bd2d
Certificate serial: 01856D78A254E6DAA5ADA97CEBF5382D4F53
Authority key identifier: 3D:69:5F:AF:D6:12:6D:11:FD:F0:20:0E:D7:32:58:59:8F:97:BD:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PWlfr9YSbRH98CAO1zJYWY-XvS0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/182529-427a-47a0-9452-02f203e81df9/1/Nb9f2lgMQoqo5Tf_8KTQaj2Tq-s.roa
Signing time: Sun 01 Jan 2023 13:15:00 +0000
ROA not before: Sun 01 Jan 2023 13:15:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59891
IP address blocks: 2001:678:824::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:78:a2:54:e6:da:a5:ad:a9:7c:eb:f5:38:2d:4f:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d695fafd6126d11fdf0200ed73258598f97bd2d
Validity
Not Before: Jan 1 13:15:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=35bf5fda580c428aa8e537fff0a4d06a3d93abeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:cc:28:7b:e9:7f:60:82:bb:dc:41:75:f0:f6:
e7:c7:ac:a4:84:a3:63:55:e4:22:1c:a9:33:4f:b2:
3f:9a:76:ce:a6:cb:7a:43:92:38:7a:17:36:cc:79:
9d:a7:a3:ba:d3:b6:27:32:c8:5d:f7:b7:6d:9d:44:
bf:c8:98:7e:d4:8a:7a:67:92:c7:a0:ed:b0:7d:14:
07:9d:ce:d2:76:9b:e3:92:fe:b3:73:11:65:11:c1:
c0:96:41:68:bf:cc:47:53:42:23:b4:24:9c:95:ab:
eb:f4:df:96:6a:60:77:ce:ac:df:df:8e:4f:c8:55:
f4:76:6e:a0:a4:b2:a0:96:05:1b:81:29:bf:de:59:
a9:e5:e8:9c:92:79:b8:55:d1:43:0a:45:88:51:62:
55:12:ae:9d:11:b9:35:03:c9:33:04:23:16:d6:85:
e0:0d:27:c5:06:16:96:59:d7:a4:37:57:7c:55:5a:
7d:07:b5:ba:cc:91:75:09:db:6a:e1:74:4e:eb:12:
15:13:fe:5f:3e:60:17:34:ba:09:fb:db:55:83:c7:
c9:22:1b:d4:bb:2a:54:43:50:79:a6:d2:c1:a0:15:
15:14:d6:f2:fa:39:85:ba:29:a3:26:dd:1a:28:52:
14:9f:8e:0a:b3:ff:9e:aa:11:d5:d6:6b:61:c9:37:
e0:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:BF:5F:DA:58:0C:42:8A:A8:E5:37:FF:F0:A4:D0:6A:3D:93:AB:EB
X509v3 Authority Key Identifier:
keyid:3D:69:5F:AF:D6:12:6D:11:FD:F0:20:0E:D7:32:58:59:8F:97:BD:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PWlfr9YSbRH98CAO1zJYWY-XvS0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/182529-427a-47a0-9452-02f203e81df9/1/Nb9f2lgMQoqo5Tf_8KTQaj2Tq-s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/182529-427a-47a0-9452-02f203e81df9/1/PWlfr9YSbRH98CAO1zJYWY-XvS0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:824::/48
Signature Algorithm: sha256WithRSAEncryption
7f:df:05:92:4b:72:1c:46:b9:5b:3f:39:2d:12:7e:ae:91:38:
4f:3b:f9:14:0a:13:26:0b:0f:26:ea:84:74:b1:22:f2:cb:08:
3b:33:e5:43:3f:73:c1:e4:61:8c:7e:24:9e:cd:db:10:2f:ee:
5f:df:8e:90:0f:49:ef:dd:36:f6:3d:1b:3a:6c:f7:40:24:d5:
23:bd:49:85:8c:25:5e:c8:30:c7:7c:71:cf:8a:bc:ef:1c:63:
7a:4f:1f:ea:a5:3d:e6:57:0e:51:31:18:e6:23:ae:d2:89:96:
82:9b:58:32:e5:2e:bb:42:43:52:1e:f6:2e:d0:8a:5b:65:e0:
78:54:24:59:21:f2:d6:56:b2:0c:c7:0d:6c:bf:52:92:26:5d:
65:b9:b6:92:fc:dd:8a:9f:44:2a:62:9f:7b:38:c5:22:1c:90:
d5:34:40:a9:01:7a:52:ba:72:d5:2d:8c:2a:6d:41:21:b7:84:
20:6d:ac:38:c6:58:6c:78:e4:5d:80:63:d0:d4:5b:f2:23:c9:
79:24:1b:de:e7:d4:b0:69:21:ab:db:5f:8d:03:e5:90:32:79:
e7:22:13:1f:85:a3:b8:f1:63:7b:23:fb:f3:cb:56:b5:38:ad:
a6:ee:0f:88:15:7c:57:06:ea:3b:12:24:58:e0:47:70:84:bb:
a7:d5:cb:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:07 2024 by rpki-client on console-ams.rpki-client.org