Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/3b4e21-0fc1-454f-97df-cee2d1430e6c/1/Z2LMU0dQSn66bDDQnx6x95h6PWk.roa
File: Z2LMU0dQSn66bDDQnx6x95h6PWk.roa (raw, json)
Hash identifier: flUTab1HfpSN3dsMw2X4IFtp9LA+yxTUchwH0UsB2Gs=
Subject key identifier: 67:62:CC:53:47:50:4A:7E:BA:6C:30:D0:9F:1E:B1:F7:98:7A:3D:69
Certificate issuer: /CN=7ca8898ff6212b4d65cf323fc8330af98803bf76
Certificate serial: 018CC348CE82B37AAC0D31A2751F3BF109B3
Authority key identifier: 7C:A8:89:8F:F6:21:2B:4D:65:CF:32:3F:C8:33:0A:F9:88:03:BF:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fKiJj_YhK01lzzI_yDMK-YgDv3Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/3b4e21-0fc1-454f-97df-cee2d1430e6c/1/Z2LMU0dQSn66bDDQnx6x95h6PWk.roa
Signing time: Mon 01 Jan 2024 04:29:37 +0000
ROA not before: Mon 01 Jan 2024 04:29:37 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209878
IP address blocks: 2001:678:f9c::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:ce:82:b3:7a:ac:0d:31:a2:75:1f:3b:f1:09:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ca8898ff6212b4d65cf323fc8330af98803bf76
Validity
Not Before: Jan 1 04:29:37 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6762cc5347504a7eba6c30d09f1eb1f7987a3d69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:65:3d:d9:9a:4f:e6:65:73:ca:93:c5:1f:38:
e5:f0:7e:92:87:8c:39:ea:99:76:92:94:ac:fd:b8:
6b:17:e7:41:26:5c:e1:fa:e2:ba:33:c5:89:10:f8:
6e:8a:17:13:92:69:41:c0:a2:b6:60:a3:d0:20:c0:
5b:a3:c7:dd:52:45:0d:20:f6:2c:ea:f2:b9:90:85:
94:c9:4e:22:12:d6:26:ad:ba:a6:54:ee:22:c4:5c:
ad:57:5f:76:ab:d6:72:2c:44:b5:bf:71:53:11:44:
a9:2b:46:68:a5:a9:4c:1c:fa:1e:dd:79:bd:56:07:
01:1c:9a:ad:6b:2c:24:93:07:52:11:18:f3:04:22:
b4:30:71:0d:ea:65:ce:2d:8d:d0:0e:92:01:11:ad:
5f:bd:bb:b0:b6:87:01:48:f9:5a:01:6c:e2:d4:c0:
3b:ed:c5:68:1e:d6:18:e0:31:a4:e6:8b:11:d4:18:
78:24:b5:13:ba:fb:e6:8d:f3:bd:65:09:42:8f:db:
07:e5:49:21:35:c7:33:a3:8c:d9:ff:43:ed:4a:f3:
bb:5c:4d:5a:77:b0:7f:c0:31:70:06:17:7c:71:0f:
b9:7e:73:0d:bc:b4:92:df:98:4c:3f:16:19:9e:2a:
52:36:e0:2f:86:92:78:76:70:b0:9a:cc:a4:d8:68:
21:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:62:CC:53:47:50:4A:7E:BA:6C:30:D0:9F:1E:B1:F7:98:7A:3D:69
X509v3 Authority Key Identifier:
keyid:7C:A8:89:8F:F6:21:2B:4D:65:CF:32:3F:C8:33:0A:F9:88:03:BF:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fKiJj_YhK01lzzI_yDMK-YgDv3Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3b4e21-0fc1-454f-97df-cee2d1430e6c/1/Z2LMU0dQSn66bDDQnx6x95h6PWk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3b4e21-0fc1-454f-97df-cee2d1430e6c/1/fKiJj_YhK01lzzI_yDMK-YgDv3Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:f9c::/48
Signature Algorithm: sha256WithRSAEncryption
26:fc:7e:0d:e5:2e:1d:c5:25:bb:98:af:53:e8:b7:e0:32:78:
71:9d:68:fc:81:bb:7e:ad:0a:79:ca:fe:bc:c3:9c:85:ae:94:
2c:02:05:d0:37:90:c0:06:d0:ea:88:03:43:0b:e0:83:c9:f1:
5e:08:14:02:a7:fb:06:55:b1:29:4c:d3:c4:ac:97:b1:af:e0:
6e:b5:10:35:65:ee:f1:1c:fe:02:bd:8f:1f:55:5a:76:7f:a3:
14:a4:da:ff:55:e0:8e:3d:05:c6:d7:bf:de:64:6a:32:f5:bc:
83:de:1d:f3:fd:38:c4:c6:54:8f:66:a0:e3:11:76:9d:0a:0d:
63:64:5f:ea:ef:dd:bb:ba:ae:52:d0:d1:6a:bf:99:42:2a:b7:
30:ea:98:e3:e2:bd:0e:52:5a:ca:e3:cc:7f:92:83:9a:44:d8:
f6:78:83:f6:d4:2c:2d:c8:c8:69:7f:37:d3:11:ea:51:59:29:
28:2e:6d:dc:f1:ce:a2:8c:17:5f:9f:b9:24:a9:a5:dc:3b:e7:
8c:24:81:f8:b7:4c:c3:5b:7f:de:0a:c1:85:17:81:be:a7:2f:
da:0d:46:ed:ba:8c:b0:d2:8a:8a:fb:45:d3:d8:b3:20:38:76:
9a:e4:45:9e:af:bd:78:3c:80:cf:16:16:53:b0:8a:63:02:9e:
f7:78:62:19
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYzDSM6Cs3qsDTGidR878QmzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdjYTg4OThmZjYyMTJiNGQ2NWNmMzIzZmM4MzMwYWY5ODgw
M2JmNzYwHhcNMjQwMTAxMDQyOTM3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NzYyY2M1MzQ3NTA0YTdlYmE2YzMwZDA5ZjFlYjFmNzk4N2EzZDY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvGU92ZpP5mVzypPFHzjl8H6Sh4w5
6pl2kpSs/bhrF+dBJlzh+uK6M8WJEPhuihcTkmlBwKK2YKPQIMBbo8fdUkUNIPYs
6vK5kIWUyU4iEtYmrbqmVO4ixFytV192q9ZyLES1v3FTEUSpK0ZopalMHPoe3Xm9
VgcBHJqtaywkkwdSERjzBCK0MHEN6mXOLY3QDpIBEa1fvbuwtocBSPlaAWzi1MA7
7cVoHtYY4DGk5osR1Bh4JLUTuvvmjfO9ZQlCj9sH5UkhNcczo4zZ/0PtSvO7XE1a
d7B/wDFwBhd8cQ+5fnMNvLSS35hMPxYZnipSNuAvhpJ4dnCwmsyk2GghmwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFGdizFNHUEp+umww0J8esfeYej1pMB8GA1UdIwQY
MBaAFHyoiY/2IStNZc8yP8gzCvmIA792MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZktpSmpfWWhLMDFsenpJX3lETUstWWdEdjNZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS8zYjRlMjEtMGZjMS00NTRmLTk3ZGYt
Y2VlMmQxNDMwZTZjLzEvWjJMTVUwZFFTbjY2YkREUW54Nng5NWg2UFdrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS8zYjRlMjEtMGZjMS00NTRmLTk3ZGYtY2VlMmQxNDMwZTZj
LzEvZktpSmpfWWhLMDFsenpJX3lETUstWWdEdjNZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeA+c
MA0GCSqGSIb3DQEBCwUAA4IBAQAm/H4N5S4dxSW7mK9T6LfgMnhxnWj8gbt+rQp5
yv68w5yFrpQsAgXQN5DABtDqiANDC+CDyfFeCBQCp/sGVbEpTNPErJexr+ButRA1
Ze7xHP4CvY8fVVp2f6MUpNr/VeCOPQXG17/eZGoy9byD3h3z/TjExlSPZqDjEXad
Cg1jZF/q7927uq5S0NFqv5lCKrcw6pjj4r0OUlrK48x/koOaRNj2eIP21CwtyMhp
fzfTEepRWSkoLm3c8c6ijBdfn7kkqaXcO+eMJIH4t0zDW3/eCsGFF4G+py/aDUbt
uoyw0oqK+0XT2LMgOHaa5EWer714PIDPFhZTsIpjAp73eGIZ
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:25:55 2024 by rpki-client on console.sobornost.net