Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/cd883c-4d76-457e-a85c-dbaff81adca8/1/UqKwnHrxhhNBALetJ1-Yb-hmTsA.roa
File: UqKwnHrxhhNBALetJ1-Yb-hmTsA.roa (raw, json)
Hash identifier: 9plLqzIWZk6PyKcumOSpqfxLokOxEt5ugxJuX900drA=
Subject key identifier: 52:A2:B0:9C:7A:F1:86:13:41:00:B7:AD:27:5F:98:6F:E8:66:4E:C0
Certificate issuer: /CN=09ec74dc0b6c2d5b9d30eaf3cd22294f7119039f
Certificate serial: 0191039298E83867511A174B4479AEC708B5
Authority key identifier: 09:EC:74:DC:0B:6C:2D:5B:9D:30:EA:F3:CD:22:29:4F:71:19:03:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cex03AtsLVudMOrzzSIpT3EZA58.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/cd883c-4d76-457e-a85c-dbaff81adca8/1/UqKwnHrxhhNBALetJ1-Yb-hmTsA.roa
Signing time: Tue 30 Jul 2024 12:17:04 +0000
ROA not before: Tue 30 Jul 2024 12:17:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197445
IP address blocks: 2001:3800::/29 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:03:92:98:e8:38:67:51:1a:17:4b:44:79:ae:c7:08:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09ec74dc0b6c2d5b9d30eaf3cd22294f7119039f
Validity
Not Before: Jul 30 12:17:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=52a2b09c7af186134100b7ad275f986fe8664ec0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:12:5a:14:29:5e:3e:1a:2f:22:ec:f1:82:dc:
7e:12:d9:6b:56:65:0f:9a:09:b4:67:46:82:3d:9b:
0d:1a:d0:e2:0c:86:3a:52:d9:a7:d8:e4:b8:ee:b0:
4b:cd:2f:8e:84:e1:80:e3:7b:56:59:2f:c4:67:f6:
38:ae:a2:96:94:c2:0e:2c:03:c3:29:41:9f:88:4a:
ca:57:ac:58:f6:94:d3:a5:cb:34:78:71:cc:d0:f8:
e2:e0:c9:ff:b9:81:74:66:25:14:ac:0d:3d:3e:dc:
b4:6f:29:4d:97:c6:b1:c0:3f:52:7f:bf:f8:4d:f4:
aa:64:fa:ff:bd:95:86:ca:1c:5b:ad:4d:a1:18:26:
1f:ca:f2:dd:5b:8c:83:1c:02:cb:67:86:4d:7b:68:
af:67:30:9e:17:15:be:19:29:4f:36:4d:8f:0a:c7:
f1:c0:f3:b3:d3:8b:0b:ac:4e:c3:e3:cf:96:99:cb:
78:2f:3e:43:00:c7:86:62:3d:ec:37:ae:a1:ea:bd:
cc:17:b2:e7:f9:ab:f3:d0:58:70:c9:51:e8:0f:e6:
23:50:f1:95:4d:29:8b:3d:4d:b1:48:a7:b0:8b:42:
63:71:74:db:7d:dd:24:88:11:70:4c:02:76:2f:1a:
1f:33:fd:67:12:07:42:a1:1c:8c:49:f0:bd:09:60:
52:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:A2:B0:9C:7A:F1:86:13:41:00:B7:AD:27:5F:98:6F:E8:66:4E:C0
X509v3 Authority Key Identifier:
keyid:09:EC:74:DC:0B:6C:2D:5B:9D:30:EA:F3:CD:22:29:4F:71:19:03:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cex03AtsLVudMOrzzSIpT3EZA58.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/cd883c-4d76-457e-a85c-dbaff81adca8/1/UqKwnHrxhhNBALetJ1-Yb-hmTsA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/cd883c-4d76-457e-a85c-dbaff81adca8/1/Cex03AtsLVudMOrzzSIpT3EZA58.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:3800::/29
Signature Algorithm: sha256WithRSAEncryption
cb:e6:1e:00:e5:65:95:20:eb:8e:53:33:a9:02:3e:e1:01:42:
ec:4a:88:2b:c8:2c:9a:7e:53:7c:a6:68:73:72:4a:aa:02:8d:
fb:98:4a:11:ec:e8:f4:24:3c:24:74:d8:81:d1:2f:43:b1:0b:
4c:ec:0a:f4:c5:2f:ad:e9:c5:e3:51:7f:76:44:24:75:d4:b2:
8b:bc:29:a3:f7:82:b4:68:76:c7:57:dc:c6:e9:71:f1:cd:30:
77:b9:98:3c:23:09:f1:d1:59:f5:8a:20:84:29:f3:40:cf:fa:
cc:f0:81:c0:94:3a:01:81:f5:6d:2d:3d:08:16:95:20:50:11:
5f:9e:b4:49:00:3a:a7:9f:05:ff:55:b8:c0:52:a5:d9:1f:1c:
4e:1b:c7:98:bb:c4:4b:7c:9d:7e:77:3a:3f:8d:a3:eb:af:a7:
79:28:96:fe:1c:79:e1:23:a2:ea:26:df:ad:ba:0b:bc:8b:18:
87:b9:fd:0f:c5:27:08:b0:f3:af:82:0c:b3:a6:81:e3:98:21:
40:76:fc:02:35:c1:5e:ce:88:d5:6e:c3:66:b6:95:99:ab:d3:
ab:ae:20:01:6a:0f:bb:4a:72:0b:a3:8d:6d:18:0d:7c:af:90:
d5:2f:89:f1:ba:91:71:8f:e4:51:3e:fa:63:5d:c2:60:33:cc:
76:92:50:11
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAZEDkpjoOGdRGhdLRHmuxwi1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA5ZWM3NGRjMGI2YzJkNWI5ZDMwZWFmM2NkMjIyOTRmNzEx
OTAzOWYwHhcNMjQwNzMwMTIxNzA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MmEyYjA5YzdhZjE4NjEzNDEwMGI3YWQyNzVmOTg2ZmU4NjY0ZWMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2xJaFClePhovIuzxgtx+EtlrVmUP
mgm0Z0aCPZsNGtDiDIY6Utmn2OS47rBLzS+OhOGA43tWWS/EZ/Y4rqKWlMIOLAPD
KUGfiErKV6xY9pTTpcs0eHHM0Pji4Mn/uYF0ZiUUrA09Pty0bylNl8axwD9Sf7/4
TfSqZPr/vZWGyhxbrU2hGCYfyvLdW4yDHALLZ4ZNe2ivZzCeFxW+GSlPNk2PCsfx
wPOz04sLrE7D48+Wmct4Lz5DAMeGYj3sN66h6r3MF7Ln+avz0FhwyVHoD+YjUPGV
TSmLPU2xSKewi0JjcXTbfd0kiBFwTAJ2LxofM/1nEgdCoRyMSfC9CWBSTQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFFKisJx68YYTQQC3rSdfmG/oZk7AMB8GA1UdIwQY
MBaAFAnsdNwLbC1bnTDq880iKU9xGQOfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ2V4MDNBdHNMVnVkTU9yenpTSXBUM0VaQTU4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYy9jZDg4M2MtNGQ3Ni00NTdlLWE4NWMt
ZGJhZmY4MWFkY2E4LzEvVXFLd25IcnhoaE5CQUxldEoxLVliLWhtVHNBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYy9jZDg4M2MtNGQ3Ni00NTdlLWE4NWMtZGJhZmY4MWFkY2E4
LzEvQ2V4MDNBdHNMVnVkTU9yenpTSXBUM0VaQTU4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDIAE4ADAN
BgkqhkiG9w0BAQsFAAOCAQEAy+YeAOVllSDrjlMzqQI+4QFC7EqIK8gsmn5TfKZo
c3JKqgKN+5hKEezo9CQ8JHTYgdEvQ7ELTOwK9MUvrenF41F/dkQkddSyi7wpo/eC
tGh2x1fcxulx8c0wd7mYPCMJ8dFZ9YoghCnzQM/6zPCBwJQ6AYH1bS09CBaVIFAR
X560SQA6p58F/1W4wFKl2R8cThvHmLvES3ydfnc6P42j66+neSiW/hx54SOi6ibf
rboLvIsYh7n9D8UnCLDzr4IMs6aB45ghQHb8AjXBXs6I1W7DZraVmavTq64gAWoP
u0pyC6ONbRgNfK+Q1S+J8bqRcY/kUT76Y13CYDPMdpJQEQ==
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:26:15 2024 by rpki-client on console.sobornost.net