Route Origin Authorization
$ rpki-client -vvf rsync.rpki.nlnetlabs.nl/repo/ca/0/326130343a623930323a3a2f33322d3332203d3e203134363138.roa
File: 326130343a623930323a3a2f33322d3332203d3e203134363138.roa (raw, json)
Hash identifier: qXsTbtDR0wwOfmdVWz18qL6eQHG6xsr8VsytnWJ+W2I=
Subject key identifier: 97:13:42:83:AE:98:77:AA:91:2E:1A:7A:72:66:7D:FD:4B:3B:B0:C4
Certificate issuer: /CN=d724c2d90d5bcc9fda54755efc8c903acb01d02e
Certificate serial: 63D94738551E8FBC6846D410D4A90C38301E1CF2
Authority key identifier: D7:24:C2:D9:0D:5B:CC:9F:DA:54:75:5E:FC:8C:90:3A:CB:01:D0:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1yTC2Q1bzJ_aVHVe_IyQOssB0C4.cer
Subject info access: rsync://rsync.rpki.nlnetlabs.nl/repo/ca/0/326130343a623930323a3a2f33322d3332203d3e203134363138.roa
Signing time: Thu 19 Nov 2020 10:37:00 +0000
ROA not before: Thu 19 Nov 2020 10:32:00 +0000
ROA not after: Thu 18 Nov 2021 10:37:00 +0000
asID: 14618
IP address blocks: 2a04:b902::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:d9:47:38:55:1e:8f:bc:68:46:d4:10:d4:a9:0c:38:30:1e:1c:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d724c2d90d5bcc9fda54755efc8c903acb01d02e
Validity
Not Before: Nov 19 10:32:00 2020 GMT
Not After : Nov 18 10:37:00 2021 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:b8:ca:e2:d9:b1:40:e9:94:e4:7b:d3:f9:b5:
3a:5f:d9:45:4c:6f:51:5f:88:66:06:63:42:c1:71:
b5:c2:bd:2c:6d:57:3b:8e:d7:c4:b9:3e:18:cf:7d:
e2:18:a2:31:8e:4b:6b:af:fd:b4:fa:7d:36:9e:d8:
2d:de:cc:08:67:77:27:cf:a3:93:ce:24:b4:33:b0:
ac:fa:09:ff:b1:73:63:6f:57:5e:be:a0:af:51:0f:
8d:27:82:90:07:cf:8e:ab:97:4a:7b:2c:65:eb:aa:
0d:cf:e0:ba:3a:64:bc:80:88:65:74:66:9b:44:8d:
46:78:0b:ed:dd:8b:ed:6b:b6:38:e6:41:24:98:77:
aa:10:cb:97:70:17:42:1f:a2:0e:30:52:3b:e9:0d:
8a:e9:3e:6b:e1:8e:59:9a:66:b4:d2:74:ab:78:2e:
4f:eb:b5:2c:59:9a:d5:01:71:6e:80:00:3d:13:10:
ce:51:f3:e4:e9:a4:60:69:20:40:e4:c4:a3:c7:0d:
5f:43:bf:0b:9c:40:d7:e1:11:a2:4a:18:79:9a:aa:
2b:67:1a:6f:a9:1b:15:d8:ce:6e:46:06:b1:fa:ef:
c5:99:a7:94:f7:4c:ce:0d:29:81:3e:da:ba:1c:88:
7d:9d:73:9b:2d:3e:f0:ec:27:7c:91:b3:12:20:6c:
f0:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:13:42:83:AE:98:77:AA:91:2E:1A:7A:72:66:7D:FD:4B:3B:B0:C4
X509v3 Authority Key Identifier:
keyid:D7:24:C2:D9:0D:5B:CC:9F:DA:54:75:5E:FC:8C:90:3A:CB:01:D0:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.rpki.nlnetlabs.nl/repo/ca/0/D724C2D90D5BCC9FDA54755EFC8C903ACB01D02E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1yTC2Q1bzJ_aVHVe_IyQOssB0C4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.rpki.nlnetlabs.nl/repo/ca/0/326130343a623930323a3a2f33322d3332203d3e203134363138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:b902::/32
Signature Algorithm: sha256WithRSAEncryption
67:d9:ff:87:f5:00:9c:ed:75:df:3f:be:7d:91:21:c5:04:be:
95:3b:a0:3c:49:41:5a:a8:9a:4e:31:f5:fa:b4:24:8f:d3:d7:
d3:83:b7:02:1a:f9:a6:bb:6b:82:61:02:66:5a:74:5e:36:09:
54:83:ff:b1:38:1f:42:e2:3d:11:74:46:da:6d:ed:30:7b:48:
38:d6:ab:b8:86:35:44:02:88:69:50:c9:1b:8f:02:84:2d:c8:
a5:60:9e:09:56:cd:ec:46:d7:10:1e:3b:19:05:1c:6e:0f:d1:
16:2c:48:0e:1b:26:d2:e0:1c:ac:70:79:b8:9a:d9:e1:48:06:
71:6b:b0:2e:56:57:d2:5c:bf:fe:6c:61:da:ca:dd:b8:26:5b:
ed:89:e6:cf:32:62:ca:cf:43:1a:33:c8:e6:0e:8d:43:5b:b4:
20:e8:3c:a5:04:f9:4a:47:04:b4:b6:9b:6b:8d:3b:2a:b8:aa:
0b:5a:a1:26:07:88:20:05:8f:c7:03:d9:04:1a:29:99:77:75:
57:aa:4b:61:fe:b4:2b:7d:09:4f:cb:12:9e:f2:c5:6c:61:81:
3a:09:61:c5:2b:dd:19:4d:b5:ec:7f:78:9f:e6:8a:3a:70:5e:
15:30:7f:36:5f:3a:51:38:be:d9:71:a1:6b:14:69:a5:d2:b0:
cc:35:ee:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:53 2023 by rpki-client on console-ams.rpki-client.org