Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/cf7718-274d-412b-b755-62ea1e7e8fc6/1/amVrRzc_Yhon9N45MCo8YC0fd5c.roa
File: amVrRzc_Yhon9N45MCo8YC0fd5c.roa (raw, json)
Hash identifier: qRuOuOedXV46zYBwAPR+XRZrJTwEBwOrqEolK1wPRxc=
Subject key identifier: 6A:65:6B:47:37:3F:62:1A:27:F4:DE:39:30:2A:3C:60:2D:1F:77:97
Certificate issuer: /CN=b4714bfd982ed297e5c73ece74d222e5274c1fb5
Certificate serial: 018CC86F11B0FE246C426E00CA6EF256B3F5
Authority key identifier: B4:71:4B:FD:98:2E:D2:97:E5:C7:3E:CE:74:D2:22:E5:27:4C:1F:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tHFL_Zgu0pflxz7OdNIi5SdMH7U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/cf7718-274d-412b-b755-62ea1e7e8fc6/1/amVrRzc_Yhon9N45MCo8YC0fd5c.roa
Signing time: Tue 02 Jan 2024 04:29:31 +0000
ROA not before: Tue 02 Jan 2024 04:29:31 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212430
IP address blocks: 2001:67c:209c::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:11:b0:fe:24:6c:42:6e:00:ca:6e:f2:56:b3:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4714bfd982ed297e5c73ece74d222e5274c1fb5
Validity
Not Before: Jan 2 04:29:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6a656b47373f621a27f4de39302a3c602d1f7797
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:a1:29:6b:27:26:a8:bd:0b:78:14:f4:49:04:
3a:d1:65:1e:cb:75:1f:d3:7b:0e:71:03:23:02:b0:
f4:ea:81:10:3b:f4:9a:56:24:d8:ce:8b:24:a1:c5:
b5:81:19:93:75:1f:73:6b:07:cb:fb:1d:4f:ea:c6:
a0:cf:49:da:c1:a9:fe:95:df:10:61:99:e1:57:ad:
83:51:7b:dc:30:eb:85:b2:f8:ad:32:d9:1d:3e:48:
af:8d:3f:4c:42:a5:bd:fe:cd:5a:1e:db:8a:dc:41:
ad:45:97:17:b2:b9:23:59:52:ce:48:d8:a1:bd:5a:
6f:d6:65:28:52:13:fa:85:67:2d:44:e5:e1:3e:22:
ae:25:0d:31:19:2e:15:fd:dd:e8:8f:d9:fb:d5:9e:
b9:87:79:fe:cf:3b:64:02:74:74:eb:78:f5:3a:0c:
aa:af:bb:98:06:76:d8:5e:1e:4f:6e:9b:df:bc:3c:
41:bb:e9:e3:f5:b6:c9:4d:15:29:0b:01:0b:16:e2:
43:13:3e:28:a2:2d:51:47:40:51:d1:08:bd:27:9c:
1e:5f:fc:23:4f:a5:65:57:3b:c5:89:cc:86:18:01:
ab:41:2a:c8:95:f4:c8:d0:89:12:41:97:55:6b:63:
a1:50:26:fc:f2:d9:d0:a9:07:18:97:09:d0:56:9c:
c3:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:65:6B:47:37:3F:62:1A:27:F4:DE:39:30:2A:3C:60:2D:1F:77:97
X509v3 Authority Key Identifier:
keyid:B4:71:4B:FD:98:2E:D2:97:E5:C7:3E:CE:74:D2:22:E5:27:4C:1F:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tHFL_Zgu0pflxz7OdNIi5SdMH7U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/cf7718-274d-412b-b755-62ea1e7e8fc6/1/amVrRzc_Yhon9N45MCo8YC0fd5c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/cf7718-274d-412b-b755-62ea1e7e8fc6/1/tHFL_Zgu0pflxz7OdNIi5SdMH7U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:209c::/48
Signature Algorithm: sha256WithRSAEncryption
02:5d:50:38:dd:82:08:37:b5:57:79:ab:a4:7d:9c:13:1b:43:
c4:fc:10:2c:d3:50:dd:f1:27:04:bf:20:55:a9:27:14:b3:16:
62:91:bc:28:2e:27:15:38:7e:0d:96:a4:97:64:17:29:2d:62:
7e:ad:10:30:98:33:34:99:f1:28:f2:75:ac:08:cf:14:62:8c:
5c:c3:88:95:45:35:98:35:18:ec:cd:25:09:97:52:06:03:13:
a4:3d:dd:86:a1:04:23:99:7f:a2:12:ba:d3:12:91:9a:ad:7c:
ee:f5:5c:69:a4:83:88:4b:98:e2:bf:dd:21:57:dd:06:2b:65:
dc:79:d2:0f:71:c6:78:05:c1:62:c5:4e:48:e9:26:b7:c0:c8:
5f:14:97:8f:4d:5b:69:3f:ba:2e:b9:a0:14:06:3c:99:3c:b2:
16:12:a1:cd:45:00:a9:f9:16:ab:78:e6:1c:be:ca:87:93:bd:
a1:57:77:8b:2e:fd:44:e0:de:11:b7:c9:44:6b:be:75:09:a7:
9c:db:26:3b:a5:86:c6:f9:d0:12:de:c1:bc:1a:a9:08:40:f9:
cf:4f:28:33:ef:f2:2d:2f:25:e0:16:c1:33:92:30:21:47:73:
77:e4:ba:45:e3:06:02:47:3a:73:6c:29:e0:de:16:12:8d:bb:
75:77:b8:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:25:19 2024 by rpki-client on console.sobornost.net