Route Origin Authorization
$ rpki-client -vvf rsync.rpki.nlnetlabs.nl/repo/ca/0/3135312e3231362e302e302f32332d3233203d3e203136353039.roa
File: 3135312e3231362e302e302f32332d3233203d3e203136353039.roa (raw, json)
Hash identifier: 0spkYLI8SnxG5lS9TvvVHndTQzOWZnyfYzywtc1sGIk=
Subject key identifier: 87:51:52:27:3D:A9:45:7C:A7:79:1D:99:07:3D:4B:53:15:1C:70:17
Certificate issuer: /CN=d724c2d90d5bcc9fda54755efc8c903acb01d02e
Certificate serial: 6069948FD51B8F268B69EBF9D0028D0398C1B127
Authority key identifier: D7:24:C2:D9:0D:5B:CC:9F:DA:54:75:5E:FC:8C:90:3A:CB:01:D0:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1yTC2Q1bzJ_aVHVe_IyQOssB0C4.cer
Subject info access: rsync://rsync.rpki.nlnetlabs.nl/repo/ca/0/3135312e3231362e302e302f32332d3233203d3e203136353039.roa
Signing time: Tue 05 Jan 2021 15:30:21 +0000
ROA not before: Tue 05 Jan 2021 15:25:21 +0000
ROA not after: Tue 04 Jan 2022 15:30:21 +0000
asID: 16509
IP address blocks: 151.216.0.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:69:94:8f:d5:1b:8f:26:8b:69:eb:f9:d0:02:8d:03:98:c1:b1:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d724c2d90d5bcc9fda54755efc8c903acb01d02e
Validity
Not Before: Jan 5 15:25:21 2021 GMT
Not After : Jan 4 15:30:21 2022 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:14:f8:80:53:f0:f9:6b:1e:36:89:fe:30:7f:
68:4e:0b:a8:96:5e:56:aa:2b:c6:b8:d2:bc:b4:35:
f2:4b:cb:f5:ea:f9:26:e2:be:31:3c:c0:84:dc:e2:
ff:dd:6b:04:ce:3f:fa:89:19:11:38:fc:13:31:39:
44:46:68:33:2a:cb:13:9b:2b:03:3d:54:e3:e5:0a:
ff:3c:3d:fc:f2:a7:d2:1b:1e:82:e2:2f:9d:c2:7b:
05:52:9d:6d:1e:f5:57:80:b0:01:77:18:7b:4c:c8:
ec:b2:ea:f8:b1:8b:f7:3d:98:1f:b2:f2:fb:57:cd:
80:5d:59:89:d7:2d:bf:b9:92:61:2c:35:9a:7d:ea:
df:92:8c:a8:e0:82:8d:2a:1d:1d:66:cd:a1:7c:d5:
63:af:e8:99:93:0b:27:42:e0:fb:18:c2:b3:72:8f:
84:8f:9d:81:78:ac:e9:05:7e:01:0c:ba:ab:81:8e:
a4:93:fe:60:17:46:d8:52:c6:dc:03:f1:2b:0d:76:
32:b9:a8:28:96:f4:54:8a:ee:c1:a2:33:a7:46:3c:
a7:89:e1:59:4f:94:7b:32:d7:d7:6c:28:da:cd:83:
ef:bd:2d:7b:52:1b:7b:e7:15:fe:89:bc:71:9c:4d:
b1:d9:8a:69:bc:df:8b:27:cd:6f:05:d0:94:0c:cf:
2f:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:51:52:27:3D:A9:45:7C:A7:79:1D:99:07:3D:4B:53:15:1C:70:17
X509v3 Authority Key Identifier:
keyid:D7:24:C2:D9:0D:5B:CC:9F:DA:54:75:5E:FC:8C:90:3A:CB:01:D0:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.rpki.nlnetlabs.nl/repo/ca/0/D724C2D90D5BCC9FDA54755EFC8C903ACB01D02E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1yTC2Q1bzJ_aVHVe_IyQOssB0C4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.rpki.nlnetlabs.nl/repo/ca/0/3135312e3231362e302e302f32332d3233203d3e203136353039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.216.0.0/23
Signature Algorithm: sha256WithRSAEncryption
81:a2:8d:92:fc:e9:4a:23:83:24:df:e4:bd:71:20:60:4f:54:
04:ba:36:32:6e:57:bf:3b:27:2e:01:63:d6:22:bf:ac:09:c9:
3b:04:4f:b0:9e:70:1b:de:be:c2:f3:83:e4:ef:17:e6:6f:3a:
70:11:5d:06:e7:f8:b5:2b:a9:de:c4:23:41:3b:21:9d:52:0d:
22:a3:84:53:25:b9:b6:9a:9b:21:be:ff:16:80:9e:9f:8b:f5:
30:a0:d7:77:f6:d6:43:20:8c:a6:f9:db:6d:1e:ca:7d:11:71:
50:d6:87:8c:0d:d9:d3:bf:16:d8:96:e1:78:0c:67:8b:c0:33:
5e:84:cd:e4:dd:cb:0f:06:81:5b:94:f8:39:1d:7b:3f:87:76:
3a:4d:e2:6e:a5:4c:0c:38:ab:39:a5:95:07:20:a1:f9:cb:f3:
d0:92:66:b7:19:30:e1:69:70:e8:78:f0:25:5b:83:70:ac:55:
ba:42:5c:f6:1d:62:87:ef:52:b7:12:65:f4:43:a1:9e:c0:0c:
b8:8b:e4:9c:7f:50:01:25:ce:7f:31:76:21:cc:9a:bd:7b:83:
85:1a:8a:c3:1b:e2:e9:ab:a1:c8:ec:30:95:57:73:fd:30:25:
de:40:ed:62:a2:1d:c8:68:95:f8:45:f2:fb:3b:d6:0c:fb:05:
7c:77:63:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:53 2023 by rpki-client on console-ams.rpki-client.org