Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/182529-427a-47a0-9452-02f203e81df9/1/Zrgt6KHTgcz6qOSATHdLrefcB2w.roa
File: Zrgt6KHTgcz6qOSATHdLrefcB2w.roa (raw, json)
Hash identifier: v0z+8cVBAoiHk77/txDYeYNyO+PwAm52uiB0TcLP9SA=
Subject key identifier: 66:B8:2D:E8:A1:D3:81:CC:FA:A8:E4:80:4C:77:4B:AD:E7:DC:07:6C
Certificate issuer: /CN=3d695fafd6126d11fdf0200ed73258598f97bd2d
Certificate serial: 0545198A
Authority key identifier: 3D:69:5F:AF:D6:12:6D:11:FD:F0:20:0E:D7:32:58:59:8F:97:BD:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PWlfr9YSbRH98CAO1zJYWY-XvS0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/182529-427a-47a0-9452-02f203e81df9/1/Zrgt6KHTgcz6qOSATHdLrefcB2w.roa
Signing time: Sat 01 Jan 2022 09:01:35 +0000
ROA not before: Sat 01 Jan 2022 09:01:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59891
IP address blocks: 2001:678:824::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88414602 (0x545198a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d695fafd6126d11fdf0200ed73258598f97bd2d
Validity
Not Before: Jan 1 09:01:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=66b82de8a1d381ccfaa8e4804c774bade7dc076c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:bb:9d:ed:e9:07:bd:33:e2:62:6f:83:ea:01:
b1:64:b5:bc:61:e9:2b:14:73:99:f9:60:d0:a8:ff:
52:a6:df:b6:03:cd:c1:c2:2f:d0:0a:41:df:50:9b:
c9:15:d9:7b:07:fd:ba:18:5a:bc:b4:ba:1e:52:4b:
6b:79:3d:1e:a4:6d:f1:c4:9a:4b:e4:33:d2:dc:a1:
bf:39:36:60:fd:52:a8:b7:db:42:29:c5:27:2b:c5:
6a:69:b5:3e:4a:4d:1c:8d:5f:cb:62:cb:ae:5b:0e:
70:79:f6:02:b5:6d:6c:8b:5c:32:c3:12:bf:77:64:
38:09:42:d7:87:6d:3b:be:9c:19:91:45:a9:70:90:
31:5b:6d:ad:1c:76:a3:c6:b7:ca:e9:48:7d:e9:62:
67:a8:0c:83:bc:ff:14:44:04:0b:73:0d:33:21:eb:
0c:6e:d4:ba:54:cd:cd:73:94:50:ce:d1:6a:21:9d:
e5:4c:6f:0c:98:75:24:25:0e:13:e8:94:70:56:cb:
e1:55:d2:41:df:70:d1:73:16:5d:9d:6f:f8:5f:1c:
b2:b3:10:77:d3:61:4e:7e:0a:b7:63:01:dc:52:10:
01:80:a1:4e:10:7c:1f:77:e5:ba:93:d6:df:51:66:
5d:b8:70:40:95:40:eb:08:c5:30:64:a8:49:db:73:
61:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:B8:2D:E8:A1:D3:81:CC:FA:A8:E4:80:4C:77:4B:AD:E7:DC:07:6C
X509v3 Authority Key Identifier:
keyid:3D:69:5F:AF:D6:12:6D:11:FD:F0:20:0E:D7:32:58:59:8F:97:BD:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PWlfr9YSbRH98CAO1zJYWY-XvS0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/182529-427a-47a0-9452-02f203e81df9/1/Zrgt6KHTgcz6qOSATHdLrefcB2w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/182529-427a-47a0-9452-02f203e81df9/1/PWlfr9YSbRH98CAO1zJYWY-XvS0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:824::/48
Signature Algorithm: sha256WithRSAEncryption
58:4e:d7:95:b4:77:ff:56:bd:41:fa:6e:b4:f6:2c:59:d6:3c:
0d:d3:ad:42:76:9d:0a:bd:a1:f4:7a:b0:87:66:a4:8c:83:4e:
32:f7:6e:83:9f:93:dc:05:01:7c:59:4c:bf:64:97:8c:20:9b:
d4:2c:7b:21:3d:77:1f:d0:7a:97:80:75:83:d1:f0:c6:9c:94:
43:25:94:d1:d2:c6:91:a6:39:c4:b6:d9:5c:45:96:e3:d8:3f:
16:cc:5f:f8:4c:67:6c:c3:de:d9:4a:03:c3:6d:3e:0e:5b:2b:
40:37:64:70:4e:4e:99:7c:93:15:cd:70:82:ad:0c:ca:94:9e:
07:fe:23:43:06:23:72:0f:09:d8:10:92:a3:8a:77:0d:a4:dd:
be:10:3b:c7:7c:d7:64:2f:25:b1:d9:5e:fd:ca:3a:20:44:3d:
01:f1:f4:d6:34:9e:9c:59:a6:d1:8d:63:f8:36:77:3f:b3:71:
b3:53:1a:a8:64:e8:02:4d:20:9e:e2:79:96:7a:0f:49:7e:38:
ae:5b:de:0a:01:cb:7c:70:3b:90:d7:8e:5c:80:b6:c1:65:68:
bc:85:93:10:3d:40:49:6b:5d:6f:f9:53:0f:a9:0b:9a:9e:cb:
70:67:d0:ce:58:fa:5d:03:da:29:d4:26:a4:21:d8:94:de:38:
a9:82:a4:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:07 2024 by rpki-client on console-ams.rpki-client.org