Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/4ccdd6-7ec4-4df3-bfb2-cab4d3f3fd45/1/MzcNOYc41SkXyK6BB7WrYhynLmw.roa
File: MzcNOYc41SkXyK6BB7WrYhynLmw.roa (raw, json)
Hash identifier: yPZyoDVC0Ag3p8ySBKO5FX1NpXbLfpstSAs4nDNbT14=
Subject key identifier: 33:37:0D:39:87:38:D5:29:17:C8:AE:81:07:B5:AB:62:1C:A7:2E:6C
Certificate issuer: /CN=8261f97fd7857c102bc9657d7f3c2ad3eb865be4
Certificate serial: 0150C13B
Authority key identifier: 82:61:F9:7F:D7:85:7C:10:2B:C9:65:7D:7F:3C:2A:D3:EB:86:5B:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gmH5f9eFfBAryWV9fzwq0-uGW-Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/4ccdd6-7ec4-4df3-bfb2-cab4d3f3fd45/1/MzcNOYc41SkXyK6BB7WrYhynLmw.roa
Signing time: Sat 01 Jan 2022 15:58:25 +0000
ROA not before: Sat 01 Jan 2022 15:58:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 2a0c:6900::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22069563 (0x150c13b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8261f97fd7857c102bc9657d7f3c2ad3eb865be4
Validity
Not Before: Jan 1 15:58:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=33370d398738d52917c8ae8107b5ab621ca72e6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:2a:8c:a2:ea:27:63:0a:e1:19:58:76:eb:1d:
57:2e:73:15:bd:d6:75:76:7f:09:76:20:da:b0:d1:
0c:2e:33:ba:0f:98:7a:9b:8f:9e:29:75:41:cb:b7:
52:58:d7:e6:a8:94:b4:1c:48:dd:1e:48:5a:67:5d:
72:21:83:12:f5:0b:11:70:d2:e4:a5:49:4c:55:36:
02:5d:be:39:6f:26:13:53:c3:e3:7b:21:ba:f5:1e:
59:81:40:bc:00:5a:76:06:04:55:48:f2:bc:22:0b:
e8:d6:19:3b:67:3c:8b:72:47:33:36:d3:3f:13:2b:
09:9f:d8:98:fd:96:b5:35:03:3c:94:68:20:f1:e8:
a7:ba:97:03:f1:f2:cf:cb:e3:04:c9:57:5d:92:d5:
06:29:6d:32:c7:5b:d0:16:91:18:94:bf:c9:3f:38:
75:5f:49:8c:29:62:fd:b7:8a:04:c0:a0:87:dc:6f:
de:76:8f:1e:ae:ca:db:55:97:4d:fd:84:84:91:9c:
0f:c0:29:fa:13:ff:70:71:f4:11:30:2a:9f:27:b1:
73:ef:8d:71:b4:8e:20:5a:a1:8f:26:8b:5f:07:0a:
43:76:16:fd:1e:3d:14:22:94:39:b2:36:67:ec:68:
f9:66:06:d4:22:e9:9f:b0:db:f2:e7:db:75:8c:c4:
b4:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:37:0D:39:87:38:D5:29:17:C8:AE:81:07:B5:AB:62:1C:A7:2E:6C
X509v3 Authority Key Identifier:
keyid:82:61:F9:7F:D7:85:7C:10:2B:C9:65:7D:7F:3C:2A:D3:EB:86:5B:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gmH5f9eFfBAryWV9fzwq0-uGW-Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/4ccdd6-7ec4-4df3-bfb2-cab4d3f3fd45/1/MzcNOYc41SkXyK6BB7WrYhynLmw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/4ccdd6-7ec4-4df3-bfb2-cab4d3f3fd45/1/gmH5f9eFfBAryWV9fzwq0-uGW-Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:6900::/32
Signature Algorithm: sha256WithRSAEncryption
28:e6:f4:ba:24:4f:a2:54:e5:70:83:be:47:dd:e9:a3:13:c5:
b3:b3:c1:d9:79:3a:ba:70:1d:eb:c7:55:3a:6e:e7:f3:4e:58:
ba:22:2a:c8:db:07:be:57:c9:62:e7:5e:02:d0:a4:f1:3a:53:
f4:ee:58:b0:35:9b:5e:6a:a4:42:44:f2:a9:96:08:04:c2:ee:
91:44:f6:bf:75:51:41:d5:8b:c3:b8:25:a8:8e:a4:37:05:00:
45:eb:73:77:29:52:a8:bf:c0:2a:72:59:83:db:09:3f:39:3f:
b8:6c:f9:48:48:bc:89:d2:cc:1d:52:e8:95:d5:e8:35:01:19:
6c:e5:3b:e6:04:b6:2d:a7:5a:b5:fd:26:93:3c:40:3e:9d:36:
02:cd:e1:d2:95:34:0b:4c:a4:1a:75:86:dd:77:10:1c:8b:6c:
18:19:28:49:41:97:f9:c4:1c:29:18:41:62:36:f3:13:74:21:
bb:29:97:1d:22:7b:49:23:77:b5:38:47:d5:f7:2d:96:62:2d:
f5:5b:c3:8a:04:e6:d7:66:6e:6f:97:a6:ee:b3:34:e6:79:2e:
ce:6e:f7:15:3d:f3:ca:e2:a1:76:a0:3c:75:6c:4f:6e:32:e1:
00:26:ae:8e:73:9d:63:93:89:15:ef:dd:9d:35:f3:99:b8:7b:
62:ce:13:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:31 2023 by rpki-client on console.sobornost.net