Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/nPgJk-nYrBeNXWKeqfZsawgTAmU.roa
File: nPgJk-nYrBeNXWKeqfZsawgTAmU.roa (raw, json)
Hash identifier: qGc95jDHWAyL0xMzsftACTd2/Tj9SltuXqDbbWuFxKc=
Subject key identifier: 9C:F8:09:93:E9:D8:AC:17:8D:5D:62:9E:A9:F6:6C:6B:08:13:02:65
Certificate issuer: /CN=54914541fd1b95e7c0afc875fbef78794f55386b
Certificate serial: 15C6B157
Authority key identifier: 54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/nPgJk-nYrBeNXWKeqfZsawgTAmU.roa
Signing time: Sat 01 Jan 2022 05:59:12 +0000
ROA not before: Sat 01 Jan 2022 05:59:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212191
IP address blocks: 2a06:a001:a040::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 365343063 (0x15c6b157)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54914541fd1b95e7c0afc875fbef78794f55386b
Validity
Not Before: Jan 1 05:59:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9cf80993e9d8ac178d5d629ea9f66c6b08130265
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:a7:7b:2f:fd:fd:e8:c8:0b:61:5f:02:b8:40:
bc:51:d8:11:62:db:67:2b:61:48:ab:53:55:90:06:
3d:34:3c:e4:35:81:d6:a6:51:9a:e2:60:db:ab:ce:
3b:d5:11:a9:7e:3d:48:6c:b0:3d:18:8f:c6:14:c4:
16:80:ca:e3:f0:d5:1e:a4:0e:48:e2:e0:08:92:f1:
45:fd:8e:b1:0a:df:a1:c7:51:fc:a8:b2:a3:d0:25:
8c:6c:d3:d0:88:ef:d8:1e:31:c4:05:f5:85:87:1b:
3b:91:ea:83:71:8d:56:8a:f6:0a:89:4f:7f:49:cb:
16:b8:6a:d6:18:8d:03:77:72:30:c2:16:7d:28:26:
31:e0:7f:bf:17:1c:0b:52:57:df:fd:51:21:60:9d:
0f:a7:4f:99:ad:92:68:db:fa:fb:d0:cf:a6:62:3a:
f7:c3:45:fe:14:42:65:64:29:fa:ec:dc:c9:e0:95:
96:33:93:9c:3b:ef:26:97:ed:bd:78:16:3b:e2:94:
b3:ff:f3:84:38:85:41:99:9f:8b:ee:8e:da:a0:e4:
12:c3:43:92:8d:fc:f7:f1:11:46:7d:57:85:5e:38:
03:ab:8a:fe:a9:5b:6d:fe:18:d6:8c:bb:fa:ad:d5:
1a:8b:44:83:48:16:b7:e2:a1:f9:09:cd:54:49:58:
1f:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:F8:09:93:E9:D8:AC:17:8D:5D:62:9E:A9:F6:6C:6B:08:13:02:65
X509v3 Authority Key Identifier:
keyid:54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/nPgJk-nYrBeNXWKeqfZsawgTAmU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/VJFFQf0blefAr8h1--94eU9VOGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a001:a040::/44
Signature Algorithm: sha256WithRSAEncryption
37:fa:cd:11:d1:ab:53:c9:24:61:4a:4a:0e:f5:7f:ea:aa:21:
6f:f7:36:e5:7e:29:6e:ed:36:12:89:2e:b8:9f:a4:e2:b0:3b:
76:4a:30:f2:0a:cd:94:1e:53:b0:05:b0:a7:d7:80:2a:ba:fc:
e7:ea:1f:07:4f:49:7a:78:02:f4:a1:7e:3a:d1:ce:b0:48:6c:
dd:a8:df:43:45:03:38:89:31:74:7a:42:5c:9e:44:25:e6:6b:
4c:12:8d:ec:70:e2:53:46:c1:ff:32:c0:de:db:ee:af:44:59:
d1:02:87:c9:49:dc:dc:f4:29:42:a3:c0:72:f2:d1:08:be:60:
44:eb:34:85:86:33:f3:17:23:ce:0c:44:f6:55:9b:20:f4:d8:
1e:25:cb:7c:08:91:07:7d:43:57:b8:fc:b4:89:41:ec:0b:85:
f3:58:54:b6:9f:cb:36:4c:d4:ec:c9:6c:4f:48:56:52:37:76:
80:7d:01:04:bb:23:6c:cc:d1:3e:30:32:c1:62:1a:ce:35:7b:
cf:d1:03:38:55:1e:55:d5:c6:b8:28:43:3f:13:a5:24:36:cc:
d9:a4:2b:e8:07:be:fa:a5:8d:ae:f4:5c:dd:be:56:0e:61:24:
a1:50:c6:63:74:3c:aa:a6:f3:8f:cb:b9:00:9f:bd:f8:0b:50:
f8:81:16:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:05 2023 by rpki-client on console.sobornost.net