Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/7d3fbf-3fbc-4025-aab1-f108e5552720/1/_dt5HJz5tvXKhmMWiQhcc9sFuvk.roa
File: _dt5HJz5tvXKhmMWiQhcc9sFuvk.roa (raw, json)
Hash identifier: vEAplG/huwbDAkvo52uycBPoYwbQJTKAen/OBpTJmpY=
Subject key identifier: FD:DB:79:1C:9C:F9:B6:F5:CA:86:63:16:89:08:5C:73:DB:05:BA:F9
Certificate issuer: /CN=d8a711b135dfd5f34bbb98c10036f8d8f0c1731f
Certificate serial: 018539547733FB2AA42FB8E9540E9A05C4EE
Authority key identifier: D8:A7:11:B1:35:DF:D5:F3:4B:BB:98:C1:00:36:F8:D8:F0:C1:73:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2KcRsTXf1fNLu5jBADb42PDBcx8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/7d3fbf-3fbc-4025-aab1-f108e5552720/1/_dt5HJz5tvXKhmMWiQhcc9sFuvk.roa
Signing time: Thu 22 Dec 2022 10:15:14 +0000
ROA not before: Thu 22 Dec 2022 10:15:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204916
IP address blocks: 2a12:7c03::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:39:54:77:33:fb:2a:a4:2f:b8:e9:54:0e:9a:05:c4:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8a711b135dfd5f34bbb98c10036f8d8f0c1731f
Validity
Not Before: Dec 22 10:15:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fddb791c9cf9b6f5ca86631689085c73db05baf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:a3:aa:71:75:f2:42:d6:44:f6:54:66:92:80:
f1:0c:a4:ad:2b:03:db:21:37:1d:1f:0c:3a:22:b3:
b1:3c:ba:66:dc:b1:74:1c:2c:c9:64:be:59:15:40:
7a:43:cc:9e:e5:83:ec:b6:fe:0a:e5:ad:51:da:fe:
04:77:64:23:3c:37:32:8c:83:cf:93:9f:63:7a:33:
52:f2:54:e5:d7:ba:4a:80:76:62:8e:6f:08:11:ae:
4e:26:f4:b0:84:06:7a:5c:21:8c:49:74:4c:05:16:
36:2e:ca:f7:76:43:cd:73:c2:55:f3:34:5e:4c:12:
77:f8:f8:82:06:84:81:54:b7:de:3d:51:ca:1b:6b:
fe:35:7e:85:e1:78:28:15:46:36:73:a4:56:73:16:
7d:38:f7:ec:e8:05:d6:68:7c:a1:e3:74:93:75:78:
ec:21:b1:a1:cb:1b:56:1c:30:dd:77:0b:fc:68:35:
7b:49:a7:62:3e:6b:23:31:86:be:0c:b1:95:f1:cf:
e1:ba:39:b4:b6:29:a0:b7:31:1f:34:f7:a4:5a:4d:
0e:27:8e:c7:37:36:05:14:1a:af:08:fd:a9:8b:df:
e5:e7:e9:0c:76:1b:05:c1:1b:9a:8b:f2:92:31:df:
8a:4f:e1:71:6a:0c:ba:59:2e:a9:cb:bd:c8:15:1f:
cf:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:DB:79:1C:9C:F9:B6:F5:CA:86:63:16:89:08:5C:73:DB:05:BA:F9
X509v3 Authority Key Identifier:
keyid:D8:A7:11:B1:35:DF:D5:F3:4B:BB:98:C1:00:36:F8:D8:F0:C1:73:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2KcRsTXf1fNLu5jBADb42PDBcx8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/7d3fbf-3fbc-4025-aab1-f108e5552720/1/_dt5HJz5tvXKhmMWiQhcc9sFuvk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/7d3fbf-3fbc-4025-aab1-f108e5552720/1/2KcRsTXf1fNLu5jBADb42PDBcx8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:7c03::/32
Signature Algorithm: sha256WithRSAEncryption
7e:d1:3f:1a:b6:72:fc:92:45:f4:9c:57:12:29:c2:b7:0c:b4:
0e:01:0f:fa:2e:ff:d0:49:03:90:d8:f7:4a:dd:38:da:d2:f3:
0f:ad:cd:20:4f:fa:bc:fc:a7:64:ff:71:d4:65:83:67:88:cb:
ae:b1:a6:5e:3f:48:fd:1b:88:ca:f0:f7:ed:9a:5c:40:52:4d:
5e:2d:3f:66:84:2f:19:7e:31:5f:e0:0b:03:14:40:d7:62:73:
34:31:8a:7f:50:36:8c:6c:53:68:a7:d2:0d:10:1d:b2:17:ef:
62:c2:9b:20:9f:8d:29:a2:a5:c7:ab:0e:54:bc:d2:e9:d8:fb:
d0:d9:eb:84:8e:e8:76:e7:d6:52:5b:41:5e:30:72:6f:af:c5:
ac:62:f5:e2:2a:0a:59:cf:8c:41:36:52:1f:57:3a:85:29:32:
9c:80:0e:91:c9:2a:b9:64:06:5c:3e:fe:ed:b2:cc:51:5b:af:
ef:b5:be:d3:3d:68:6f:0a:08:3f:53:9e:e2:b7:4e:ef:13:09:
63:3e:50:02:51:9c:6f:83:fc:55:04:72:8a:05:a9:d0:03:3e:
70:ba:de:f8:65:0e:da:bf:16:ea:8f:b7:7d:20:98:96:48:8e:
8f:d8:d5:0a:ad:fe:b7:8d:5c:f2:b7:6c:08:c2:60:72:f8:f9:
0a:dd:76:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:06 2023 by rpki-client on console.sobornost.net