Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/Fft_vQuJeJyt3IV4pTw2voRpntk.roa
File: Fft_vQuJeJyt3IV4pTw2voRpntk.roa (raw, json)
Hash identifier: pu2GY6gx4o5hCrK12BSHnTA38YNbvDt3Ez+KWVxqU00=
Subject key identifier: 15:FB:7F:BD:0B:89:78:9C:AD:DC:85:78:A5:3C:36:BE:84:69:9E:D9
Certificate issuer: /CN=b3a5d99863db2e49b44f6c324eb04388fc7515d2
Certificate serial: 019306026927E46319CC428916770571077A
Authority key identifier: B3:A5:D9:98:63:DB:2E:49:B4:4F:6C:32:4E:B0:43:88:FC:75:15:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s6XZmGPbLkm0T2wyTrBDiPx1FdI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/Fft_vQuJeJyt3IV4pTw2voRpntk.roa
Signing time: Thu 07 Nov 2024 09:44:01 +0000
ROA not before: Thu 07 Nov 2024 09:44:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3329
IP address blocks: 2a01:830::/32 maxlen: 48
2a01:831::/32 maxlen: 32
2a01:8c8::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:06:02:69:27:e4:63:19:cc:42:89:16:77:05:71:07:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3a5d99863db2e49b44f6c324eb04388fc7515d2
Validity
Not Before: Nov 7 09:44:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=15fb7fbd0b89789caddc8578a53c36be84699ed9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:f9:06:d7:41:55:84:bf:c2:70:ee:9f:b8:cf:
d2:09:8d:a4:ff:6a:e6:23:76:6d:71:f4:a6:53:20:
8c:d3:fe:91:5a:ff:29:2d:19:44:d2:ba:a7:b3:a5:
a1:26:58:3c:68:15:7c:ee:e9:f4:cd:f7:46:4f:f2:
4e:af:51:bd:7c:bf:f7:0c:2c:d2:1a:09:f4:31:67:
ce:46:c0:d1:b6:93:04:33:5f:dc:26:61:0a:cf:97:
c7:d7:b3:9a:a1:00:84:01:d5:8f:a3:01:8b:1a:c4:
33:1f:ea:2b:20:66:db:bf:08:36:62:08:b7:44:49:
62:3a:4b:9c:cb:5e:90:1b:4d:f7:28:52:56:9c:48:
e9:49:57:f1:77:61:ce:63:2e:43:49:8e:59:b0:a7:
25:32:02:da:19:a8:11:60:fc:50:b0:29:18:09:52:
95:b6:f8:33:8b:c8:45:a8:48:d1:d5:5c:8c:53:b6:
be:76:a5:06:e6:e3:f6:79:7e:d0:2f:f1:dd:40:61:
3c:b7:4e:33:81:51:3d:c7:f3:c9:08:ef:f4:79:95:
7e:3d:de:fc:85:9e:d0:cc:7e:77:a8:1f:91:30:36:
d5:52:11:6c:dc:f2:b8:54:dc:49:9f:c1:b5:3c:f6:
da:db:6f:d1:de:b8:59:49:49:68:e8:28:77:de:ad:
97:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:FB:7F:BD:0B:89:78:9C:AD:DC:85:78:A5:3C:36:BE:84:69:9E:D9
X509v3 Authority Key Identifier:
keyid:B3:A5:D9:98:63:DB:2E:49:B4:4F:6C:32:4E:B0:43:88:FC:75:15:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s6XZmGPbLkm0T2wyTrBDiPx1FdI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/Fft_vQuJeJyt3IV4pTw2voRpntk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:830::/31
2a01:8c8::/32
Signature Algorithm: sha256WithRSAEncryption
75:98:3c:d2:19:70:ff:c8:1a:43:55:c1:2c:1a:52:31:84:79:
25:6f:6d:bb:8c:d5:69:5e:06:13:20:03:ef:95:59:3b:c0:14:
e5:b7:1c:de:ad:05:3f:a4:cf:be:fa:2a:49:2d:b8:7e:87:6e:
1f:32:12:44:68:f7:27:12:89:91:cc:09:ab:82:4f:85:92:08:
01:f4:38:c0:c7:3b:27:78:01:91:21:4e:a3:b3:e3:41:cd:ec:
10:9c:db:d5:e1:a8:38:4b:9e:7d:cd:e1:0e:26:8f:d4:fc:cf:
2c:7a:38:dd:6c:57:d7:3b:bd:af:6d:48:b5:7a:8a:c6:7e:05:
67:89:74:59:ee:20:a6:9e:56:f2:e9:2a:d3:df:f4:2e:00:8c:
b1:11:bb:77:52:6b:03:13:d2:ee:7a:86:55:f6:7d:29:61:ad:
b4:96:d9:07:ef:41:73:0b:3b:1f:d9:29:17:2c:ef:de:62:fe:
05:2d:95:22:2d:2b:6e:6b:8d:18:81:96:51:70:bc:9f:31:ad:
40:d6:32:34:f4:a3:5c:dc:65:f3:47:c4:7a:da:f2:09:b5:07:
27:01:f6:4b:01:4b:56:81:8f:10:08:9f:a0:05:b2:4b:50:97:
40:b6:a9:ac:7d:39:05:5c:bf:91:49:b6:70:e2:0c:dc:cf:49:
7a:78:39:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:25:56 2024 by rpki-client on console.sobornost.net