Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/6222f1-f4dc-4704-b946-1906a4a1f993/1/0g1wQ11YAkejl7LWXkgJvnwcUJo.roa
File: 0g1wQ11YAkejl7LWXkgJvnwcUJo.roa (raw, json)
Hash identifier: gkBqTjloUJsyw9opvxTKCmfwkLSBXZKvEDkkYSKJvV4=
Subject key identifier: D2:0D:70:43:5D:58:02:47:A3:97:B2:D6:5E:48:09:BE:7C:1C:50:9A
Certificate issuer: /CN=be9fc3884705c4aedcfe7a4d17ddb752e1fe6198
Certificate serial: 018CC49346B95B90C5CE2F2805614E226689
Authority key identifier: BE:9F:C3:88:47:05:C4:AE:DC:FE:7A:4D:17:DD:B7:52:E1:FE:61:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vp_DiEcFxK7c_npNF923UuH-YZg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/6222f1-f4dc-4704-b946-1906a4a1f993/1/0g1wQ11YAkejl7LWXkgJvnwcUJo.roa
Signing time: Mon 01 Jan 2024 10:30:35 +0000
ROA not before: Mon 01 Jan 2024 10:30:35 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212737
IP address blocks: 2001:67c:2de0::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:46:b9:5b:90:c5:ce:2f:28:05:61:4e:22:66:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be9fc3884705c4aedcfe7a4d17ddb752e1fe6198
Validity
Not Before: Jan 1 10:30:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d20d70435d580247a397b2d65e4809be7c1c509a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:15:fb:e6:fb:d7:b3:71:c2:c7:75:b1:e8:71:
52:fa:c4:c9:15:31:21:c7:1e:4e:45:c3:5a:b1:ec:
46:fa:fb:74:2c:75:4d:d8:9f:9c:b2:e0:83:97:a6:
fb:76:4a:b7:15:b7:73:b4:36:3d:00:bc:1d:a1:f2:
b5:b4:c8:a1:1c:d8:25:20:c4:d3:2f:86:92:80:bf:
12:77:d2:c2:5c:af:93:f6:dc:04:47:64:c8:86:5e:
11:da:45:50:60:42:81:60:6f:58:94:c9:e6:b6:73:
41:79:9b:63:b1:de:7d:bd:19:2e:b4:d4:b2:b7:4e:
cd:ef:8b:e9:bf:7a:01:2b:1f:2a:9d:71:a3:3d:bb:
0d:c6:a8:36:cb:aa:8e:1d:70:48:8c:63:75:b8:30:
3f:95:a3:a5:d9:73:09:a6:31:3e:5d:40:00:1f:fe:
a2:eb:95:fd:75:c8:5d:ce:b2:34:50:19:b0:b8:43:
e7:6a:f8:9c:3e:0d:b0:8f:32:b3:8d:c4:62:f3:eb:
b3:c2:47:05:52:10:cb:26:42:56:97:75:2c:39:91:
ca:b7:e4:d0:94:e5:2b:a8:99:c7:6c:3d:79:47:da:
93:c9:56:03:83:c1:f5:7b:33:bd:ac:03:bb:15:ee:
e0:83:e7:9d:43:27:e1:f5:23:7f:cf:fb:3d:9e:8f:
d9:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:0D:70:43:5D:58:02:47:A3:97:B2:D6:5E:48:09:BE:7C:1C:50:9A
X509v3 Authority Key Identifier:
keyid:BE:9F:C3:88:47:05:C4:AE:DC:FE:7A:4D:17:DD:B7:52:E1:FE:61:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vp_DiEcFxK7c_npNF923UuH-YZg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/6222f1-f4dc-4704-b946-1906a4a1f993/1/0g1wQ11YAkejl7LWXkgJvnwcUJo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/6222f1-f4dc-4704-b946-1906a4a1f993/1/vp_DiEcFxK7c_npNF923UuH-YZg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2de0::/48
Signature Algorithm: sha256WithRSAEncryption
4d:43:b6:83:89:63:c8:c9:53:ca:7b:86:fb:a6:cf:14:2d:21:
27:aa:7d:16:66:a1:63:04:cd:5e:e2:dd:b8:8b:39:08:ea:d0:
6c:29:a3:7f:10:ca:ba:98:fb:77:5d:eb:43:35:02:e3:88:a4:
ca:82:2f:d7:87:e1:39:3f:c9:86:bf:21:e7:77:12:56:fe:0c:
10:57:f6:8a:1f:13:b9:c5:b8:81:ba:b5:4a:ca:07:cf:19:ae:
83:6f:83:57:5b:e8:41:bb:a6:32:b5:b6:eb:f6:8e:1e:1e:2b:
8a:93:f7:22:c5:10:48:96:8e:b3:92:59:2c:61:ee:8e:da:7e:
8d:04:7a:af:ba:8f:2c:70:52:e2:55:8d:a6:66:c6:40:ef:18:
82:d1:7a:2d:be:10:1b:36:ac:e0:77:7f:6e:e1:b1:d2:23:22:
03:2c:8f:93:c0:c2:89:d0:62:7f:69:9a:76:20:2e:66:b9:3c:
22:95:4d:18:e5:c4:a6:1a:e6:4f:38:c2:5f:bc:39:32:9d:4d:
2c:32:77:7a:2e:9d:67:8d:8e:be:b0:0b:db:4b:83:83:4c:99:
f7:3c:f4:d9:71:f8:be:79:77:89:8a:37:47:d5:d9:46:6a:50:
92:2f:da:dd:8d:63:3b:f8:2f:a2:fa:25:9f:fd:14:ec:87:14:
3d:16:51:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:25:40 2024 by rpki-client on console.sobornost.net