Route Origin Authorization
$ rpki-client -vvf rsync.rpki.nlnetlabs.nl/repo/ca/0/326130343a623930323a3a2f33322d3332203d3e203136353039.roa
File: 326130343a623930323a3a2f33322d3332203d3e203136353039.roa (raw, json)
Hash identifier: yTKSibefGxIKPpor6geGOsI/TPDB7Ue93GqbGhSGIaI=
Subject key identifier: A2:34:23:5B:66:B7:70:95:2F:E2:A6:73:90:68:2E:5B:B5:25:87:A6
Certificate issuer: /CN=d724c2d90d5bcc9fda54755efc8c903acb01d02e
Certificate serial: 0F2BB2396C4EF54B9DAD03C88FE261AE5D1BE4EA
Authority key identifier: D7:24:C2:D9:0D:5B:CC:9F:DA:54:75:5E:FC:8C:90:3A:CB:01:D0:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1yTC2Q1bzJ_aVHVe_IyQOssB0C4.cer
Subject info access: rsync://rsync.rpki.nlnetlabs.nl/repo/ca/0/326130343a623930323a3a2f33322d3332203d3e203136353039.roa
Signing time: Thu 26 Nov 2020 14:10:03 +0000
ROA not before: Thu 26 Nov 2020 14:05:03 +0000
ROA not after: Thu 25 Nov 2021 14:10:03 +0000
asID: 16509
IP address blocks: 2a04:b902::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0f:2b:b2:39:6c:4e:f5:4b:9d:ad:03:c8:8f:e2:61:ae:5d:1b:e4:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d724c2d90d5bcc9fda54755efc8c903acb01d02e
Validity
Not Before: Nov 26 14:05:03 2020 GMT
Not After : Nov 25 14:10:03 2021 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:84:b3:89:f0:c0:31:62:b7:03:39:6d:12:6c:
d2:c1:59:8f:bc:a3:12:2c:c6:b4:e3:1f:e7:02:b0:
33:c1:04:60:03:53:f6:09:1b:7b:ec:d8:b5:cb:54:
6c:cb:21:78:40:76:c2:3a:6d:aa:4f:15:f5:80:70:
86:1e:1c:ce:48:7f:c8:bc:24:3d:78:4a:ee:9d:54:
b7:e6:8f:b0:07:83:f2:4a:34:53:4e:2d:28:db:67:
e7:2e:d9:91:42:d3:90:03:1a:38:20:b1:43:c7:88:
b0:c3:09:f5:6e:a4:8f:bf:f8:c2:c7:4c:33:33:53:
4f:b1:26:cf:23:80:80:7d:fd:6a:7e:78:84:24:c7:
f2:28:ae:23:91:93:e0:57:e1:bf:c2:97:d2:92:28:
c7:a8:d3:02:d8:9c:da:b7:93:75:f2:d1:f8:c6:cd:
6f:47:60:b0:df:b0:c5:01:ac:50:98:9b:1d:aa:02:
82:ee:37:eb:db:48:a3:75:ea:b3:90:f9:e4:b3:4e:
8c:b9:20:85:9c:fe:d7:c6:5d:02:59:65:fe:74:16:
4e:f9:78:40:07:f9:c5:11:21:66:e0:8c:da:f3:50:
34:4c:41:7c:97:e9:7c:d0:22:d7:ab:36:6c:3b:ec:
ad:f6:97:e9:e3:26:02:2b:a2:a9:62:30:ba:b1:fa:
bb:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:34:23:5B:66:B7:70:95:2F:E2:A6:73:90:68:2E:5B:B5:25:87:A6
X509v3 Authority Key Identifier:
keyid:D7:24:C2:D9:0D:5B:CC:9F:DA:54:75:5E:FC:8C:90:3A:CB:01:D0:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.rpki.nlnetlabs.nl/repo/ca/0/D724C2D90D5BCC9FDA54755EFC8C903ACB01D02E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1yTC2Q1bzJ_aVHVe_IyQOssB0C4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.rpki.nlnetlabs.nl/repo/ca/0/326130343a623930323a3a2f33322d3332203d3e203136353039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:b902::/32
Signature Algorithm: sha256WithRSAEncryption
60:56:ff:86:a5:13:9d:9a:69:12:fd:74:ff:35:bc:e3:52:08:
5c:5a:3b:65:44:08:be:16:30:5a:64:df:ed:28:7a:db:18:5b:
db:d0:63:1f:50:42:5f:98:65:51:0a:10:5e:c6:3a:81:ed:19:
cb:fc:a7:23:57:f9:a6:8b:fe:d5:d4:44:4e:45:e4:c7:fc:61:
7f:bf:4d:9b:32:0e:d6:99:ff:ff:17:b2:79:f9:40:e2:53:29:
17:df:e1:bd:0c:13:7f:ae:b2:06:db:c9:38:c2:57:af:6e:66:
d4:db:81:c9:d6:22:b8:a4:50:58:3e:d7:bb:99:e3:a7:c1:43:
a0:fb:fa:0b:af:c8:16:a0:be:0d:92:0e:64:4a:e6:f6:20:a5:
23:49:7c:df:89:f4:9a:ac:73:7d:9e:c5:20:b7:93:36:c5:ff:
0d:c1:00:94:e4:8d:09:81:27:0f:80:96:44:92:45:20:5d:f9:
35:90:be:78:6c:38:74:52:5c:20:99:41:bd:76:f1:95:83:cb:
5c:08:5a:f3:3c:40:45:44:35:15:b4:78:e6:02:ad:0d:e5:88:
8b:73:5d:7a:2e:3d:54:43:37:97:43:3b:5e:32:b0:b7:2a:ef:
99:db:2b:94:c3:8e:db:31:53:11:51:7c:89:02:c7:25:c6:25:
39:6d:b4:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:04 2023 by rpki-client on console-fra.rpki-client.org