Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/qLI23rATtIRE2D-XF4KdHEogwNA.roa
File: qLI23rATtIRE2D-XF4KdHEogwNA.roa (raw, json)
Hash identifier: ht82+asm4ECjunjG996Rgn8nT9saSXrOEFczuTdqGsM=
Subject key identifier: A8:B2:36:DE:B0:13:B4:84:44:D8:3F:97:17:82:9D:1C:4A:20:C0:D0
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 0193E57796BC4AE62675A4BF396DD13CA837
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/qLI23rATtIRE2D-XF4KdHEogwNA.roa
Signing time: Fri 20 Dec 2024 19:07:20 +0000
ROA not before: Fri 20 Dec 2024 19:07:20 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213674
IP address blocks: 2a0e:8f02:2050::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:e5:77:96:bc:4a:e6:26:75:a4:bf:39:6d:d1:3c:a8:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Dec 20 19:07:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a8b236deb013b48444d83f9717829d1c4a20c0d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:32:79:2a:e4:a7:30:d7:63:79:d3:95:95:d3:
83:2c:47:43:c5:5d:f3:2d:31:4e:17:fc:2e:6f:46:
b2:13:44:8d:f4:79:f3:b5:e5:5e:14:6c:da:54:16:
aa:5e:46:51:bb:ce:d5:c6:05:fb:a1:38:9a:8a:16:
c3:09:e8:3c:52:98:85:31:91:d7:db:af:e5:ba:05:
48:2f:b0:6c:f2:74:68:83:08:e9:68:e2:cc:b3:73:
29:9b:77:1f:38:32:a8:d7:96:80:d8:96:a9:d6:b1:
03:8b:47:f5:67:20:b4:60:9a:e7:a7:81:05:82:69:
ca:fd:35:67:78:9a:e5:42:69:90:5a:61:9d:85:1f:
6a:b5:5c:ef:30:8b:0b:df:f2:70:84:fa:de:72:59:
f0:b8:45:8d:33:24:50:cd:be:7e:49:3c:9b:4f:fd:
60:33:e0:95:8b:1d:40:8d:41:e1:18:4c:35:93:14:
5d:de:44:74:ef:28:e3:0c:72:e2:9b:30:d9:4f:c0:
34:02:8b:5f:08:fb:fc:fe:60:15:bf:e6:d1:45:01:
13:6a:10:c4:86:d3:07:82:ea:d7:cc:57:65:41:e2:
a2:22:4d:07:9c:76:ec:6d:2a:a1:0f:a3:d4:7b:b6:
f3:da:24:03:bd:81:9a:cf:2c:66:64:1d:b4:d3:04:
b2:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:B2:36:DE:B0:13:B4:84:44:D8:3F:97:17:82:9D:1C:4A:20:C0:D0
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/qLI23rATtIRE2D-XF4KdHEogwNA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:2050::/44
Signature Algorithm: sha256WithRSAEncryption
30:ff:0a:36:28:e5:aa:a1:29:ad:39:f9:a4:d9:58:5c:58:d3:
67:8f:6a:9e:eb:9e:7a:a5:7e:8f:c4:87:8c:de:2e:c6:b3:30:
ef:b8:f5:3b:f4:6a:c7:c2:34:b0:e0:95:8c:89:65:82:7d:d3:
66:c5:fd:79:4e:fa:71:cf:4c:b5:5a:a3:5c:42:f7:cd:0c:17:
49:7d:ac:06:47:fd:42:d3:4c:01:b6:50:3c:0f:8e:ea:de:23:
4c:28:9b:84:68:b7:02:72:6e:29:58:4f:d7:29:40:e7:06:58:
22:b9:be:55:3b:e0:08:a0:6f:00:c9:ae:63:cd:1f:1b:2e:76:
7d:85:eb:bc:f9:06:2c:3d:3a:4e:c8:5a:bb:c1:c1:02:a0:ee:
13:7c:b9:32:99:58:bf:34:4b:c2:ce:30:3e:d7:42:b1:0b:97:
a3:32:ab:09:00:35:50:20:80:10:9b:62:7b:4b:46:8c:07:da:
80:23:50:62:04:82:d7:0c:d9:5b:9a:ee:7e:c1:84:a7:11:c8:
09:63:6a:35:13:54:8d:0e:d7:ac:44:77:e2:66:2d:eb:84:cc:
a2:8d:23:ef:04:65:9f:71:ed:69:21:ed:ea:80:ea:5e:bf:09:
8b:eb:a4:d9:38:18:19:db:50:44:b3:92:af:b6:d3:e3:f4:1c:
a7:8f:bd:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:25:55 2024 by rpki-client on console.sobornost.net