Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/X04cg3WIgkTNguXjfLkldD53haQ.roa
File: X04cg3WIgkTNguXjfLkldD53haQ.roa (raw, json)
Hash identifier: xTMUHsSSgGsUk1dv/uL9cG/YNfK74jxDSieDQa1Fg0Y=
Subject key identifier: 5F:4E:1C:83:75:88:82:44:CD:82:E5:E3:7C:B9:25:74:3E:77:85:A4
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 01938403509FB94D1B5291147D8FFFA58CEA
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/X04cg3WIgkTNguXjfLkldD53haQ.roa
Signing time: Sun 01 Dec 2024 20:57:09 +0000
ROA not before: Sun 01 Dec 2024 20:57:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212027
IP address blocks: 2a12:d3c0::/29 maxlen: 30
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:84:03:50:9f:b9:4d:1b:52:91:14:7d:8f:ff:a5:8c:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: Dec 1 20:57:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5f4e1c8375888244cd82e5e37cb925743e7785a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:ce:0f:5e:2d:4e:21:d1:27:04:15:f0:25:8d:
93:a2:49:85:36:06:b0:1a:25:be:99:41:e7:66:f1:
c1:47:50:fb:5d:55:38:c1:e4:23:36:03:14:88:c9:
12:64:96:72:4d:a2:e8:40:4c:a3:81:bc:e7:85:54:
41:15:58:ca:55:35:11:b4:0f:8e:86:7c:0d:db:77:
54:71:24:b3:45:99:1c:d5:8e:0f:91:60:75:d8:6b:
28:dd:cd:18:67:2e:bb:34:db:69:ea:69:7f:09:12:
14:9c:fb:36:1c:cc:ef:22:a7:6a:af:75:cf:e4:c3:
a3:e0:b4:44:c1:18:58:c5:fc:37:bd:c9:c3:d2:f3:
68:1c:08:24:b6:fd:7f:c6:be:d8:81:d0:82:1c:c4:
7f:62:a9:30:85:30:f9:48:ee:4c:97:f0:45:05:32:
a1:a7:c6:48:78:eb:d6:d0:a6:ea:ed:e6:97:39:2a:
d7:d7:fe:23:2d:cd:9a:79:f7:da:9c:ff:58:76:fd:
dc:1e:15:b6:86:bd:78:91:d4:20:ef:ca:cd:61:ac:
ce:d0:87:73:0e:a5:62:88:ba:6a:a4:e8:67:a6:67:
99:2b:fc:e0:28:68:0b:d8:00:3a:de:bc:a3:eb:a7:
75:6b:e0:3e:55:5b:1e:d6:44:d9:1f:0c:56:7b:60:
bf:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:4E:1C:83:75:88:82:44:CD:82:E5:E3:7C:B9:25:74:3E:77:85:A4
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/X04cg3WIgkTNguXjfLkldD53haQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:d3c0::/29
Signature Algorithm: sha256WithRSAEncryption
1f:c1:71:10:f9:21:14:f0:60:ac:cc:fd:89:8c:12:34:c2:f6:
ba:f2:fb:9d:0b:58:39:a6:07:64:e8:ee:18:b2:4f:9a:30:4f:
6a:bf:30:ff:a7:b0:1f:61:95:27:36:56:b7:c9:b9:fb:74:08:
1a:aa:71:9d:b7:dd:cb:7f:13:15:7b:49:37:54:78:e4:23:3a:
01:9b:01:45:63:c1:2e:c9:e2:ca:67:d9:44:ed:0c:30:9d:a4:
00:ef:2e:60:9e:f8:9f:7e:41:15:a2:46:fb:54:06:c5:58:70:
55:c8:c1:87:2c:89:9b:b6:7f:b2:72:ad:bc:eb:ae:10:e6:b9:
79:c2:b0:7b:8f:f6:72:c9:1b:a2:a6:ec:7d:f0:ca:4f:4c:ad:
43:8e:39:00:73:7b:c7:27:25:72:16:7a:54:f3:a0:a0:20:31:
83:17:85:d8:16:5e:58:04:c5:78:69:7d:5a:80:b3:8c:df:4d:
8d:4e:6d:f1:4c:b6:b7:0f:50:9c:e5:65:45:bc:c3:2e:27:a3:
4f:27:d4:bf:ca:d3:45:b6:1d:79:bd:a2:c7:a0:9d:20:13:e3:
4e:47:11:f1:7d:5b:02:b7:82:cd:03:c3:6f:3b:ef:52:37:10:
43:04:f1:6f:af:f3:88:e7:fd:bd:6f:4c:b4:2e:18:3c:1f:e0:
9d:a3:c4:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:25:34 2024 by rpki-client on console.sobornost.net