Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/cPBbKyjbBeDWDphgtrXktLA3w4o.roa
File: cPBbKyjbBeDWDphgtrXktLA3w4o.roa (raw, json)
Hash identifier: o0c49ueoa5Z3U5uXuzumrl1ED2Weg6U+AaU2e1V4N34=
Subject key identifier: 70:F0:5B:2B:28:DB:05:E0:D6:0E:98:60:B6:B5:E4:B4:B0:37:C3:8A
Certificate issuer: /CN=54914541fd1b95e7c0afc875fbef78794f55386b
Certificate serial: 18F7F608
Authority key identifier: 54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/cPBbKyjbBeDWDphgtrXktLA3w4o.roa
Signing time: Sun 01 May 2022 20:05:14 +0000
ROA not before: Sun 01 May 2022 20:05:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207556
IP address blocks: 2a06:a005:720::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 418903560 (0x18f7f608)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54914541fd1b95e7c0afc875fbef78794f55386b
Validity
Not Before: May 1 20:05:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=70f05b2b28db05e0d60e9860b6b5e4b4b037c38a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:cb:13:3c:38:c7:37:af:05:56:ca:64:06:1c:
bc:3d:6e:20:9c:18:7a:92:fc:ac:4d:e4:9e:2e:34:
80:63:b7:6c:84:d5:ea:ef:10:38:ae:9a:04:65:81:
76:97:66:4c:c5:4d:c7:c9:02:1b:80:47:77:8c:6e:
bd:69:12:d0:31:05:db:d0:d4:37:6c:ae:db:00:1e:
3a:c6:1e:eb:e0:b1:a7:b7:dd:49:ad:38:9f:39:d5:
a8:bc:07:45:e8:48:ad:96:6b:42:a1:b6:53:41:f8:
59:17:12:0b:12:69:58:1b:b8:39:76:c7:fb:2e:85:
1f:d1:c1:f9:d1:ad:44:93:80:1c:95:18:49:1d:a9:
7c:2b:34:1c:3b:6b:62:be:ac:e0:5f:3e:a7:6c:8a:
c2:3b:6b:a6:9a:40:c5:7a:e3:2b:9f:f6:c1:8b:77:
b6:15:30:7f:b8:bd:6c:2e:b5:d1:e5:29:39:82:c6:
d3:21:37:96:50:3b:05:a5:d4:8d:22:30:4d:39:92:
aa:d9:b9:a1:a2:bc:13:8f:26:7f:97:12:78:3e:58:
3b:e6:14:f4:89:a4:82:a5:cb:7f:7b:e1:94:2b:b6:
fc:63:9b:dd:96:02:da:37:63:77:0d:4d:04:66:fb:
56:1b:e2:6d:6c:ee:56:c5:c5:20:3d:e8:d9:e5:af:
e3:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:F0:5B:2B:28:DB:05:E0:D6:0E:98:60:B6:B5:E4:B4:B0:37:C3:8A
X509v3 Authority Key Identifier:
keyid:54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/cPBbKyjbBeDWDphgtrXktLA3w4o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/VJFFQf0blefAr8h1--94eU9VOGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:720::/44
Signature Algorithm: sha256WithRSAEncryption
17:c6:c0:24:53:55:42:1f:72:f5:57:dd:a4:a2:51:13:23:96:
65:7c:f0:9c:a6:f3:a5:d9:e0:fc:26:24:17:f5:b3:59:7b:05:
09:5d:17:77:51:7e:4d:a6:95:f2:14:1a:a3:44:29:4e:8d:ef:
f0:70:97:87:20:8a:df:a4:e2:71:7a:ef:03:3e:cd:54:24:fe:
ec:42:a4:86:98:72:eb:e4:70:37:37:fb:22:bd:03:78:44:4c:
a0:c0:c7:88:8b:b8:b9:b7:d1:e9:2e:eb:ea:9e:fb:05:e4:b5:
13:86:f9:ed:4c:41:66:c9:1f:07:80:d4:84:b2:8a:a5:d4:6a:
de:d4:fa:b7:5c:40:76:ff:4a:2f:81:8f:89:cd:dd:9b:7c:0f:
bb:fe:9c:03:4f:ff:da:be:97:33:75:45:54:5d:e7:22:ae:33:
30:94:bb:55:a6:73:45:a6:52:2a:bf:a6:e5:45:2d:7c:c8:3e:
90:71:99:af:42:ea:8b:ec:c6:42:33:9f:74:22:84:9b:72:ac:
cb:a5:38:7b:2a:a8:5c:7e:84:b2:02:a3:df:66:ca:eb:3d:7d:
34:fc:68:cc:58:cd:23:7c:31:cd:d0:b6:92:5a:23:15:a1:24:
46:e3:b1:84:1d:17:58:3d:90:d1:9e:04:c5:c2:9f:95:dc:63:
54:64:d7:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:04 2023 by rpki-client on console.sobornost.net