Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/xhzyqxTfZaHb1TCvM1V4bR3MXiM.roa
File: xhzyqxTfZaHb1TCvM1V4bR3MXiM.roa (raw, json)
Hash identifier: 0scZJo7yV0+rvw5AFRie7qIf1eVhgNB8l8juYHDH0z0=
Subject key identifier: C6:1C:F2:AB:14:DF:65:A1:DB:D5:30:AF:33:55:78:6D:1D:CC:5E:23
Certificate issuer: /CN=54914541fd1b95e7c0afc875fbef78794f55386b
Certificate serial: 18B2BD98
Authority key identifier: 54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/xhzyqxTfZaHb1TCvM1V4bR3MXiM.roa
Signing time: Mon 25 Apr 2022 11:03:22 +0000
ROA not before: Mon 25 Apr 2022 11:03:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210631
IP address blocks: 2a06:a005:600::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 414367128 (0x18b2bd98)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54914541fd1b95e7c0afc875fbef78794f55386b
Validity
Not Before: Apr 25 11:03:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c61cf2ab14df65a1dbd530af3355786d1dcc5e23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:79:c2:e6:57:57:73:e7:97:d8:10:80:f1:d8:
5e:0f:64:c6:92:9e:56:d9:11:71:a9:58:24:50:08:
47:7d:e5:d6:f4:4c:be:c4:72:9b:98:73:ec:4e:f2:
2b:f2:8b:52:41:b5:ca:b3:64:6c:00:22:32:5c:66:
66:0c:e6:15:a6:63:b6:4f:ea:fe:d0:95:98:06:13:
89:d8:32:a2:1e:54:04:f9:d6:4b:b5:37:00:85:5d:
3c:3f:05:a5:53:2c:f9:2d:4a:ff:80:53:05:ee:c0:
84:d8:aa:97:00:5f:32:71:9c:6f:83:de:ba:34:b8:
cb:4e:4b:43:91:78:a3:4d:f5:4f:a8:a3:cd:50:7f:
36:48:aa:46:8e:1d:9c:84:a3:54:44:97:11:ef:04:
32:ec:9f:8d:22:e3:1f:4b:a1:08:92:5a:55:bd:d4:
b5:ce:7f:be:7a:ff:02:1f:3a:86:7c:3b:8d:53:ff:
34:fd:41:1b:c3:d7:81:5c:e2:d8:11:5d:0c:09:29:
58:ae:e2:6d:02:4d:39:7f:8a:71:8c:42:84:24:49:
e0:3e:4f:45:84:dc:8e:06:19:cc:02:ad:f4:46:9e:
11:4e:e5:47:db:f6:a2:4c:c0:4d:a1:bd:6d:56:85:
43:cf:1b:e2:17:61:b3:92:f0:02:66:eb:72:d0:13:
cc:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:1C:F2:AB:14:DF:65:A1:DB:D5:30:AF:33:55:78:6D:1D:CC:5E:23
X509v3 Authority Key Identifier:
keyid:54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/xhzyqxTfZaHb1TCvM1V4bR3MXiM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/VJFFQf0blefAr8h1--94eU9VOGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:600::/44
Signature Algorithm: sha256WithRSAEncryption
1b:9f:e9:35:ba:f7:d7:7e:c5:aa:b1:18:e9:8a:82:2d:85:33:
47:81:0c:65:34:d8:63:ea:67:a0:1b:ac:0b:1f:26:00:fe:07:
a3:54:12:95:cf:f3:0b:95:bb:37:fe:f7:fc:c8:cc:46:ac:b7:
31:d1:6d:f4:a7:04:39:45:48:1b:2c:ed:a2:78:21:ac:98:e9:
7e:6e:20:37:e8:80:8d:5e:ec:a8:93:c6:f1:e3:cf:41:06:70:
29:84:b6:e7:9f:74:b4:94:d3:d9:39:d3:a0:b4:00:55:ff:b6:
77:6b:31:0a:69:3e:1f:70:e2:3f:22:df:67:12:5e:c2:3d:2e:
fd:b5:1c:39:7b:c2:35:87:3d:61:48:93:fb:af:b9:d1:fe:2e:
00:f8:9b:f7:aa:40:3b:e4:f0:b3:db:35:e6:7e:61:ed:7c:49:
40:17:d8:38:bf:16:41:5a:a3:b9:84:87:a0:be:49:b6:0c:ce:
0b:e8:98:1d:a2:e0:e5:8c:a7:0d:9f:2b:6d:f7:21:89:48:9c:
2a:2e:1c:92:58:52:7e:42:b8:dd:b4:c7:30:06:8a:a7:ba:53:
b9:14:c6:29:31:88:e7:b2:72:eb:68:4b:c4:d7:8f:3d:dd:e1:
95:59:98:73:68:a6:25:14:a0:96:15:79:58:f0:b6:d6:32:0d:
da:2e:b7:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:05 2023 by rpki-client on console.sobornost.net