Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/77382b-f9b6-4f9b-a9ee-2ad25f55a4e8/1/IFbNjLTppYqz16_aTiJEDPvQ2I4.roa
File: IFbNjLTppYqz16_aTiJEDPvQ2I4.roa (raw, json)
Hash identifier: EVlj/b7FNIhpPrtwY2Yqtya9OwR1wPRynx2m9yWXT/0=
Subject key identifier: 20:56:CD:8C:B4:E9:A5:8A:B3:D7:AF:DA:4E:22:44:0C:FB:D0:D8:8E
Certificate issuer: /CN=779f6938b93802549bac0083356ff39d645d34cd
Certificate serial: 018CC8010D93514109538C82E9D860EE359C
Authority key identifier: 77:9F:69:38:B9:38:02:54:9B:AC:00:83:35:6F:F3:9D:64:5D:34:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d59pOLk4AlSbrACDNW_znWRdNM0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/77382b-f9b6-4f9b-a9ee-2ad25f55a4e8/1/IFbNjLTppYqz16_aTiJEDPvQ2I4.roa
Signing time: Tue 02 Jan 2024 02:29:21 +0000
ROA not before: Tue 02 Jan 2024 02:29:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205848
IP address blocks: 2001:67c:129c::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:0d:93:51:41:09:53:8c:82:e9:d8:60:ee:35:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=779f6938b93802549bac0083356ff39d645d34cd
Validity
Not Before: Jan 2 02:29:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2056cd8cb4e9a58ab3d7afda4e22440cfbd0d88e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:23:bf:e9:df:6f:7f:d1:35:9e:6f:67:d7:b7:
c6:35:31:1f:68:f0:8f:03:d3:03:67:03:41:c5:13:
db:f9:72:c4:ef:92:6d:49:2e:fc:ce:e3:93:36:e6:
0a:7d:80:cd:73:83:c4:35:e3:4d:bf:f2:7c:c4:c5:
75:55:0f:e5:ff:3a:f0:dc:a4:ca:67:80:c1:f4:58:
ca:4b:c0:33:43:10:91:d7:39:79:2d:8e:1f:30:6c:
24:5f:a8:f3:74:44:05:a1:ea:a7:68:12:4d:82:24:
f0:3c:64:05:6d:40:b7:b2:a6:c6:e6:dc:6f:79:24:
92:63:df:bd:bb:d3:7a:e5:c0:9e:f0:99:6c:1b:0b:
2f:d3:d3:69:11:8c:00:14:d6:54:b0:d8:15:94:17:
12:4a:34:35:ab:b8:42:b0:72:0b:c2:86:e0:be:56:
26:92:c7:37:eb:d5:a1:76:89:f4:ea:d2:61:c3:e2:
19:8e:d3:a1:c3:70:05:b9:90:c3:28:3d:df:df:e6:
93:e6:4c:38:bd:9f:a2:7d:49:b7:2f:c3:c2:59:3c:
53:26:37:34:fc:60:93:b0:6e:d5:28:fa:df:20:9a:
3c:90:fd:c7:c0:f5:d8:d1:e1:bd:8d:4a:fe:21:30:
ed:45:d0:ba:4e:76:46:3a:1b:91:d7:26:c3:f2:03:
f1:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:56:CD:8C:B4:E9:A5:8A:B3:D7:AF:DA:4E:22:44:0C:FB:D0:D8:8E
X509v3 Authority Key Identifier:
keyid:77:9F:69:38:B9:38:02:54:9B:AC:00:83:35:6F:F3:9D:64:5D:34:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d59pOLk4AlSbrACDNW_znWRdNM0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/77382b-f9b6-4f9b-a9ee-2ad25f55a4e8/1/IFbNjLTppYqz16_aTiJEDPvQ2I4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/77382b-f9b6-4f9b-a9ee-2ad25f55a4e8/1/d59pOLk4AlSbrACDNW_znWRdNM0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:129c::/48
Signature Algorithm: sha256WithRSAEncryption
70:31:ae:c0:13:a5:1c:31:90:87:93:f9:fb:a1:6d:5c:82:ec:
bb:59:8e:96:1c:92:69:9a:16:19:60:00:0d:0b:71:1a:4d:a0:
9b:fa:1a:a5:1d:16:d2:43:52:7f:c8:4d:0c:8c:36:99:db:c0:
26:4f:c3:f6:1c:1c:86:0b:ea:a2:4e:f4:fd:b4:c9:6d:17:66:
bb:12:11:f0:20:11:45:4e:64:e1:e6:63:94:f0:1b:3a:2e:9b:
e1:ae:42:65:fe:17:4f:29:d3:6f:7b:c0:a1:bf:cc:9c:bd:bc:
f8:9b:15:c7:a8:bd:45:16:35:12:cf:fb:de:c0:7c:02:f5:b4:
02:29:ce:a7:fb:c0:6c:ec:52:91:93:68:d0:05:0b:b3:b1:e3:
8b:92:cd:82:ac:66:7d:32:4a:14:6d:f0:40:ba:87:6a:c4:6d:
9d:01:69:83:4d:6f:c9:51:18:1f:6b:a4:36:97:1a:da:19:fd:
9c:51:4b:1b:d4:7c:c6:23:46:ab:e3:cc:ec:20:d1:7d:d7:d1:
31:7d:da:b9:83:3d:f1:94:b0:23:1f:44:06:de:82:0e:6a:90:
0a:89:12:ed:b2:2a:60:4b:3f:c2:ad:f7:07:ac:7e:09:5e:5d:
f9:ba:72:69:aa:36:41:22:6d:ad:67:25:25:37:31:53:52:e8:
22:95:b2:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:37 2024 by rpki-client on console-ams.rpki-client.org