Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/1dc3d9-1981-40a8-8ceb-38565981b446/1/Df7gZa44BwBwrducbKYOxv7FJmE.roa
File: Df7gZa44BwBwrducbKYOxv7FJmE.roa (raw, json)
Hash identifier: w9y1BM9J9whEXOQcQ8D1zkHcNBnsG5koje47cps3fVI=
Subject key identifier: 0D:FE:E0:65:AE:38:07:00:70:AD:DB:9C:6C:A6:0E:C6:FE:C5:26:61
Certificate issuer: /CN=4cb52d4a23e5e2821fa1915ec137d384fae1fd2e
Certificate serial: 018237125AF42FB09075C078792949638E89
Authority key identifier: 4C:B5:2D:4A:23:E5:E2:82:1F:A1:91:5E:C1:37:D3:84:FA:E1:FD:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TLUtSiPl4oIfoZFewTfThPrh_S4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/1dc3d9-1981-40a8-8ceb-38565981b446/1/Df7gZa44BwBwrducbKYOxv7FJmE.roa
Signing time: Mon 25 Jul 2022 20:35:25 +0000
ROA not before: Mon 25 Jul 2022 20:35:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 2a11:d7c0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:37:12:5a:f4:2f:b0:90:75:c0:78:79:29:49:63:8e:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cb52d4a23e5e2821fa1915ec137d384fae1fd2e
Validity
Not Before: Jul 25 20:35:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0dfee065ae38070070addb9c6ca60ec6fec52661
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:ed:4c:5d:7e:b5:16:69:16:87:2a:7b:9f:61:
46:69:d6:19:6d:e7:c8:18:01:73:41:09:91:57:11:
41:6b:33:31:0e:81:75:9c:5d:92:b8:df:5f:5c:22:
b9:8a:1a:a3:0f:17:04:59:38:71:1f:5b:6f:23:b9:
f0:fe:b5:60:96:f0:7a:fc:56:36:17:02:1a:5d:4b:
3d:ec:a0:c0:4d:19:6f:e3:f8:8c:f6:35:2e:8d:4b:
b7:37:68:d3:a4:1a:27:08:2b:87:80:9c:d7:c6:d7:
d1:98:8d:32:33:60:1a:f5:fc:99:cd:d7:d5:bc:c6:
6f:ce:f2:05:c9:ca:8b:e2:ee:67:8c:b4:93:df:3b:
16:e1:e1:c5:e2:65:64:0f:e7:f6:98:86:f4:02:38:
4b:e6:f8:fa:f4:eb:c5:6e:4d:f7:5d:91:b3:b6:20:
ff:2c:0c:ee:39:5b:20:62:1c:c2:dc:0d:f9:03:c9:
f5:ea:0e:11:63:0b:f3:f8:5f:d4:10:62:66:84:17:
98:b5:7a:ce:1e:62:e6:f0:49:3a:ab:6e:bb:5f:78:
24:89:1c:a4:6b:c3:47:25:02:3d:9b:e6:9c:7a:c8:
0d:80:bd:4c:80:91:69:65:10:48:fe:9f:9d:6c:68:
7b:cf:b9:40:17:0f:43:5d:5c:26:52:bc:b2:72:d8:
99:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:FE:E0:65:AE:38:07:00:70:AD:DB:9C:6C:A6:0E:C6:FE:C5:26:61
X509v3 Authority Key Identifier:
keyid:4C:B5:2D:4A:23:E5:E2:82:1F:A1:91:5E:C1:37:D3:84:FA:E1:FD:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TLUtSiPl4oIfoZFewTfThPrh_S4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/1dc3d9-1981-40a8-8ceb-38565981b446/1/Df7gZa44BwBwrducbKYOxv7FJmE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/1dc3d9-1981-40a8-8ceb-38565981b446/1/TLUtSiPl4oIfoZFewTfThPrh_S4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:d7c0::/29
Signature Algorithm: sha256WithRSAEncryption
16:5f:2f:ec:23:c7:5f:84:54:96:a0:2f:00:91:bd:79:f4:b9:
6d:17:4f:48:77:ea:68:65:af:81:e2:07:e6:6f:64:8f:f5:96:
42:41:e6:9d:b8:ea:16:88:67:c5:b0:5a:3a:b0:fd:b3:04:4e:
86:98:7c:d3:25:14:b8:9a:44:54:5d:d9:e9:6f:10:3e:86:36:
79:f4:22:e2:17:7d:55:03:cd:04:48:a9:dd:3a:4f:f0:fb:91:
c2:eb:5a:3c:35:89:7e:93:62:31:84:f2:63:f8:f5:d8:57:f2:
52:67:ff:d7:9c:a3:4f:f8:2e:65:56:37:30:12:3c:24:a5:a0:
b5:2c:d8:64:06:da:43:0a:c1:7c:a1:9c:ac:8c:1f:9a:6d:75:
fa:3a:cf:78:69:4d:01:72:44:aa:5a:04:71:2e:20:1c:41:1a:
84:37:1f:72:65:63:5b:da:52:56:2d:04:97:30:3c:96:31:c0:
5f:2c:3c:bf:11:f9:70:d2:5a:c5:a4:da:1d:7f:40:58:3b:20:
77:c1:21:87:bb:0b:65:0a:2d:de:3b:a4:7f:53:49:7d:66:ec:
03:a9:c0:79:55:f4:c5:cd:f4:ea:64:e7:bf:8b:65:f3:21:3a:
97:97:71:6b:51:83:84:56:6f:56:e8:b5:89:60:fc:5e:19:3f:
fd:1e:56:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:45 2024 by rpki-client on console-ams.rpki-client.org