Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/b79a68-5b02-4097-a2e3-0a43b7a3eb54/1/pOEX1oH4gmBkIHY2nLHftwoyV5s.roa
File: pOEX1oH4gmBkIHY2nLHftwoyV5s.roa (raw, json)
Hash identifier: CBwcc3uApGfw7XKokPn737yMIxwOhXR5319ZAQciRs0=
Subject key identifier: A4:E1:17:D6:81:F8:82:60:64:20:76:36:9C:B1:DF:B7:0A:32:57:9B
Certificate issuer: /CN=66ed3ba68c78bff2c4724400ade6348482fb4364
Certificate serial: 019393D944FD962AAFEE1AAC8E6213313C50
Authority key identifier: 66:ED:3B:A6:8C:78:BF:F2:C4:72:44:00:AD:E6:34:84:82:FB:43:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zu07pox4v_LEckQAreY0hIL7Q2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/b79a68-5b02-4097-a2e3-0a43b7a3eb54/1/pOEX1oH4gmBkIHY2nLHftwoyV5s.roa
Signing time: Wed 04 Dec 2024 22:45:09 +0000
ROA not before: Wed 04 Dec 2024 22:45:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213756
IP address blocks: 2a14:3f87:8800::/38 maxlen: 38
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:93:d9:44:fd:96:2a:af:ee:1a:ac:8e:62:13:31:3c:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66ed3ba68c78bff2c4724400ade6348482fb4364
Validity
Not Before: Dec 4 22:45:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a4e117d681f88260642076369cb1dfb70a32579b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ab:b5:36:e7:fe:ab:ea:8c:b3:34:a1:85:d0:
5d:17:f6:3d:ac:e4:ab:be:3a:1f:25:8e:8c:24:11:
fd:2b:e4:5a:a1:04:fd:2c:58:35:78:4f:48:6f:ea:
d5:e4:a7:b2:49:91:49:7b:95:ae:81:23:63:69:db:
81:78:3b:e2:a4:13:7b:94:61:23:5b:38:b2:ad:33:
b5:76:15:26:06:2e:d7:a4:71:a8:37:c2:04:8f:0a:
21:58:51:c3:70:ab:0d:1e:cf:d1:b1:de:95:c6:1b:
18:b7:77:d8:35:8d:ea:5f:ba:b1:30:06:5a:aa:dd:
39:05:81:1b:b1:ef:c5:2c:76:49:f5:c6:34:21:78:
c0:89:42:67:c6:45:c1:a8:e1:0a:a8:b2:f5:2e:2c:
dd:90:d1:f1:f6:dc:3a:cd:35:a2:7f:99:95:1b:64:
c0:8f:14:0e:18:e5:e5:10:8f:fc:83:bc:f7:41:5b:
c9:87:2c:14:34:4f:f9:9a:48:e0:e9:9e:40:16:70:
cd:9a:4c:33:a1:b7:d4:d0:77:e8:71:d9:93:c5:ed:
8f:ab:25:f4:b6:2e:17:e5:2d:0d:1d:8a:ed:7b:45:
3d:a1:99:a1:d2:4d:12:ef:54:42:fd:0c:2e:30:c8:
2f:76:71:8d:9d:86:b7:cc:99:b0:1c:75:9f:27:39:
19:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:E1:17:D6:81:F8:82:60:64:20:76:36:9C:B1:DF:B7:0A:32:57:9B
X509v3 Authority Key Identifier:
keyid:66:ED:3B:A6:8C:78:BF:F2:C4:72:44:00:AD:E6:34:84:82:FB:43:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zu07pox4v_LEckQAreY0hIL7Q2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/b79a68-5b02-4097-a2e3-0a43b7a3eb54/1/pOEX1oH4gmBkIHY2nLHftwoyV5s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/b79a68-5b02-4097-a2e3-0a43b7a3eb54/1/Zu07pox4v_LEckQAreY0hIL7Q2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:3f87:8800::/38
Signature Algorithm: sha256WithRSAEncryption
bf:b4:80:34:92:f8:8d:3a:42:eb:a6:6b:fa:08:82:d8:98:99:
58:e4:c5:26:b4:dd:c1:40:50:31:34:be:95:fc:c0:97:81:bd:
31:b8:a3:9b:51:2f:d9:2c:a2:21:2c:01:ca:14:7d:fb:d9:11:
e4:ff:95:85:c8:6e:fc:95:b6:e3:08:43:55:33:f4:87:1c:e0:
d2:8c:d0:f1:ce:74:ed:ac:5e:7e:cd:89:98:f9:55:d5:f4:86:
e4:03:97:27:02:88:d8:85:97:90:e4:60:dd:25:9e:af:e3:94:
7f:60:6f:9e:51:0e:f5:0e:b0:75:f1:bb:45:32:87:9d:c6:b9:
1e:db:c2:85:3e:99:60:52:9b:62:50:27:31:ef:49:8f:68:d5:
93:a5:ba:a4:48:ca:6d:62:e3:c7:65:52:09:5b:1f:63:d3:90:
8b:de:5e:5e:af:9b:a5:ef:68:bb:d8:13:8b:8f:b3:be:28:76:
39:09:92:c2:a7:1c:00:94:7a:9a:ab:fc:80:9d:2b:53:a9:14:
68:41:2a:0b:18:6c:6d:5c:b6:93:57:5d:15:47:28:67:48:ad:
33:e5:8a:a6:1e:23:94:c9:dd:08:52:3a:f5:06:94:72:51:d6:
02:66:54:64:ed:93:75:f3:f1:42:d1:ee:68:6f:68:cc:d6:6b:
6b:60:8d:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:26:10 2024 by rpki-client on console.sobornost.net