Route Origin Authorization
$ rpki-client -vvf rsync.krill.cloud/repo/nlnetlabs/1/326130343a623930363a3a2f34382d3438203d3e2030.roa
File: 326130343a623930363a3a2f34382d3438203d3e2030.roa (raw, json)
Hash identifier: w1R9WZyUdBb6Lc0YbWa1tZ7R4RMYcJ02maSfDMwqWV4=
Subject key identifier: D5:59:6D:7B:D6:65:A9:07:55:94:0F:43:2B:5B:69:E2:B3:30:D0:9B
Certificate issuer: /CN=a81eb3a5eb3df634551a90722bc63ad7e022cac4
Certificate serial: 350989D13D9E9774874CDDF1A05FD66C26D54BA8
Authority key identifier: A8:1E:B3:A5:EB:3D:F6:34:55:1A:90:72:2B:C6:3A:D7:E0:22:CA:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qB6zpes99jRVGpByK8Y61-AiysQ.cer
Subject info access: rsync://rsync.krill.cloud/repo/nlnetlabs/1/326130343a623930363a3a2f34382d3438203d3e2030.roa
Signing time: Mon 27 May 2024 20:11:44 +0000
ROA not before: Mon 27 May 2024 20:06:44 +0000
ROA not after: Mon 26 May 2025 20:11:44 +0000
asID: 0
IP address blocks: 2a04:b906::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:09:89:d1:3d:9e:97:74:87:4c:dd:f1:a0:5f:d6:6c:26:d5:4b:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a81eb3a5eb3df634551a90722bc63ad7e022cac4
Validity
Not Before: May 27 20:06:44 2024 GMT
Not After : May 26 20:11:44 2025 GMT
Subject: CN=D5596D7BD665A90755940F432B5B69E2B330D09B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:7e:56:e1:f1:50:df:21:5c:5b:f7:1a:15:06:
79:d3:e5:76:c6:71:c1:16:0c:3b:b6:50:6e:21:8d:
66:c2:f2:0f:bf:42:91:ca:69:fd:35:3b:c8:e9:88:
ab:d8:19:c8:23:9b:27:b2:c6:fd:d1:49:f0:71:6a:
72:08:09:f0:9d:4d:54:ec:dd:47:97:f5:a7:80:5a:
95:54:e8:11:fb:65:7a:11:f4:90:9e:a6:c3:c4:da:
8c:9f:b1:19:57:d9:f8:c1:8b:00:c8:14:8c:fe:76:
bf:b9:f2:f0:0f:42:91:be:9f:2e:5f:d3:9a:78:22:
31:40:c9:21:72:b4:fa:42:f4:08:9e:65:15:cb:4e:
d7:16:3f:3d:56:96:9c:f8:18:dc:f7:f6:ac:b2:8e:
f1:de:3b:2a:2e:62:d1:38:16:99:8a:c3:90:43:d2:
ad:ff:ff:d3:5f:87:c1:1d:bc:b5:33:12:53:71:10:
08:58:90:df:ec:6f:9f:fb:d1:fd:1d:70:f0:ce:fc:
7a:9d:df:49:2c:e8:77:95:37:b8:26:ae:bc:7c:30:
f3:ad:23:a7:2b:2d:2b:93:98:87:3d:00:89:59:91:
ab:05:04:42:24:15:da:9d:fe:df:b7:ce:3d:a4:d3:
22:49:7a:7b:27:66:73:71:6b:82:25:e3:5b:95:e2:
76:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:59:6D:7B:D6:65:A9:07:55:94:0F:43:2B:5B:69:E2:B3:30:D0:9B
X509v3 Authority Key Identifier:
keyid:A8:1E:B3:A5:EB:3D:F6:34:55:1A:90:72:2B:C6:3A:D7:E0:22:CA:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.krill.cloud/repo/nlnetlabs/1/A81EB3A5EB3DF634551A90722BC63AD7E022CAC4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qB6zpes99jRVGpByK8Y61-AiysQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.krill.cloud/repo/nlnetlabs/1/326130343a623930363a3a2f34382d3438203d3e2030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:b906::/48
Signature Algorithm: sha256WithRSAEncryption
a3:73:65:2f:ef:61:05:c5:03:6b:4e:94:a6:51:1f:f6:8b:65:
5d:a5:cc:00:be:2e:6b:8b:15:eb:de:a5:64:71:45:9e:2c:4a:
a1:38:48:e1:9c:a8:89:9c:4f:f5:e8:d7:01:f7:37:0d:ae:2f:
cd:67:d3:28:db:55:8a:55:54:da:ea:2d:bc:cc:55:20:b2:d7:
38:15:f0:eb:b6:5a:d1:be:60:69:10:21:b0:6f:14:28:5a:e7:
2d:59:35:52:9a:36:bf:5f:7f:37:8b:fd:2f:4b:f3:f5:38:26:
c9:eb:6d:15:32:d3:88:f8:f1:26:c9:25:fd:7e:57:df:75:2c:
4c:91:35:e0:fb:39:89:84:c6:a4:35:5f:25:f3:e1:e1:4f:a9:
63:48:f6:94:a5:c3:cd:b8:86:e1:e8:ae:3e:4d:2b:f6:09:9c:
11:fa:27:c4:73:24:98:b4:12:5b:d2:27:89:34:ce:81:e3:4f:
cb:c5:b9:c7:a4:58:c5:6e:c2:6d:7c:7e:83:98:92:97:9c:63:
2c:11:98:2f:fd:92:01:77:6f:50:55:28:8b:17:de:5e:b1:33:
a1:c4:0b:14:94:f0:c2:4c:d5:ea:36:b1:ef:fc:5f:a5:90:fa:
0a:94:02:3d:30:ab:81:75:ed:8f:78:a5:ba:79:05:7c:b1:15:
c0:8b:f8:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 10 15:24:34 2024 by rpki-client on console-ams.rpki-client.org