Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/OZMTXcafU9V5swhg0YZwlYQs2rc.roa
File: OZMTXcafU9V5swhg0YZwlYQs2rc.roa (raw, json)
Hash identifier: RMIaLojRz/5ev4kbSet/ea74koprelLtyUfqPwKeg3A=
Subject key identifier: 39:93:13:5D:C6:9F:53:D5:79:B3:08:60:D1:86:70:95:84:2C:DA:B7
Certificate issuer: /CN=ccd76159bfd9e337523ee930f3df111d6bae7306
Certificate serial: 0193F8535DEE76FC48D1CC22298F2DD0ECCC
Authority key identifier: CC:D7:61:59:BF:D9:E3:37:52:3E:E9:30:F3:DF:11:1D:6B:AE:73:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zNdhWb_Z4zdSPukw898RHWuucwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/OZMTXcafU9V5swhg0YZwlYQs2rc.roa
Signing time: Tue 24 Dec 2024 11:00:33 +0000
ROA not before: Tue 24 Dec 2024 11:00:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29182
IP address blocks: 2a09:2981::/32 maxlen: 32
2a09:2987::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:f8:53:5d:ee:76:fc:48:d1:cc:22:29:8f:2d:d0:ec:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccd76159bfd9e337523ee930f3df111d6bae7306
Validity
Not Before: Dec 24 11:00:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3993135dc69f53d579b30860d1867095842cdab7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:0e:6b:3a:02:f3:c7:d3:65:30:09:9a:f2:9f:
7a:50:c9:de:89:bb:83:31:15:6a:e5:a8:46:84:e3:
14:c1:64:5a:7a:7f:ce:65:4c:72:75:42:e1:8f:fa:
2c:83:b9:9f:00:93:c7:16:05:4f:40:6d:f1:ba:0c:
a1:cc:14:65:fc:0a:ab:38:7c:81:17:fc:59:9d:67:
27:72:62:b9:1a:7a:7b:43:25:12:cd:47:61:49:ce:
e9:05:5a:8e:db:ed:b0:3c:d2:93:15:f9:f6:85:e9:
77:cd:ba:02:b3:4a:25:8d:32:53:ef:c2:9d:68:0d:
54:28:06:4d:02:5f:3e:fe:2f:e8:a7:7e:e5:4c:af:
a4:fe:cd:70:ec:ba:47:25:43:d0:52:97:08:b6:7f:
75:69:84:68:a9:2a:36:af:00:45:17:0c:5f:46:fd:
54:1a:65:6a:41:f6:6c:3d:fe:46:bc:3e:5e:a8:a4:
93:83:eb:f4:d0:7f:9b:eb:08:f9:58:f0:a5:bc:9d:
53:58:67:ac:2f:02:df:76:ff:5b:f4:b0:cd:35:b1:
d0:12:30:ea:a8:66:70:3c:0e:4e:27:3e:55:ac:24:
c9:ec:e1:8b:62:b3:ba:4f:70:2a:4b:bc:60:b1:65:
7d:f6:c8:00:4e:c2:da:98:55:8b:e4:b1:12:78:7c:
c0:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:93:13:5D:C6:9F:53:D5:79:B3:08:60:D1:86:70:95:84:2C:DA:B7
X509v3 Authority Key Identifier:
keyid:CC:D7:61:59:BF:D9:E3:37:52:3E:E9:30:F3:DF:11:1D:6B:AE:73:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zNdhWb_Z4zdSPukw898RHWuucwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/OZMTXcafU9V5swhg0YZwlYQs2rc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/zNdhWb_Z4zdSPukw898RHWuucwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:2981::/32
2a09:2987::/32
Signature Algorithm: sha256WithRSAEncryption
4e:92:d0:54:54:61:62:ae:68:56:7f:84:8d:25:13:fc:72:59:
3e:72:a7:2f:63:0d:57:89:cf:4e:df:35:76:1a:3b:99:45:da:
88:8b:f7:80:f5:e6:0f:4d:68:46:88:44:1b:56:5e:be:e3:6e:
79:ca:64:4c:02:8d:1e:d8:35:68:92:16:4f:11:f0:b7:01:88:
f5:60:ec:ea:00:dc:50:dc:88:c1:0e:78:b9:c0:12:8c:81:d2:
32:e2:52:13:38:b1:6d:c4:8f:74:68:b5:2b:8b:d2:8c:1e:33:
c4:25:10:56:26:df:ee:af:53:68:5c:25:79:c4:9a:f8:f7:ec:
2a:8c:64:01:e2:b6:bd:ac:02:43:aa:9b:b6:b9:76:31:a5:70:
96:1e:34:93:7a:f1:32:43:4b:0a:d6:62:8f:32:88:75:27:d7:
c6:b5:d3:20:e4:14:4b:1a:6d:17:a4:22:5b:fa:84:d1:48:7a:
af:f8:c1:ca:26:63:4c:a4:11:74:bc:cb:52:4a:74:98:92:6f:
9e:b0:45:ec:62:bd:99:d8:fe:5e:8e:ba:30:b9:4c:25:b5:e7:
f5:63:3a:54:ff:46:fd:0d:d4:92:e9:0e:bb:fc:48:e6:1b:3b:
41:f5:ec:52:d5:c2:07:73:53:83:42:69:25:f2:20:d6:1b:ab:
8e:ab:dd:8c
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAZP4U13udvxI0cwiKY8t0OzMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNjZDc2MTU5YmZkOWUzMzc1MjNlZTkzMGYzZGYxMTFkNmJh
ZTczMDYwHhcNMjQxMjI0MTEwMDMzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzOTkzMTM1ZGM2OWY1M2Q1NzliMzA4NjBkMTg2NzA5NTg0MmNkYWI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlw5rOgLzx9NlMAma8p96UMneibuD
MRVq5ahGhOMUwWRaen/OZUxydULhj/osg7mfAJPHFgVPQG3xugyhzBRl/AqrOHyB
F/xZnWcncmK5Gnp7QyUSzUdhSc7pBVqO2+2wPNKTFfn2hel3zboCs0oljTJT78Kd
aA1UKAZNAl8+/i/op37lTK+k/s1w7LpHJUPQUpcItn91aYRoqSo2rwBFFwxfRv1U
GmVqQfZsPf5GvD5eqKSTg+v00H+b6wj5WPClvJ1TWGesLwLfdv9b9LDNNbHQEjDq
qGZwPA5OJz5VrCTJ7OGLYrO6T3AqS7xgsWV99sgATsLamFWL5LESeHzADQIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFDmTE13Gn1PVebMIYNGGcJWELNq3MB8GA1UdIwQY
MBaAFMzXYVm/2eM3Uj7pMPPfER1rrnMGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvek5kaFdiX1o0emRTUHVrdzg5OFJIV3V1Y3dZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MC9mNmFkYTEtN2U4YS00YjNlLWI3ZTgt
Zjg1ODlmNjgyNjkxLzEvT1pNVFhjYWZVOVY1c3doZzBZWndsWVFzMnJjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MC9mNmFkYTEtN2U4YS00YjNlLWI3ZTgtZjg1ODlmNjgyNjkx
LzEvek5kaFdiX1o0emRTUHVrdzg5OFJIV3V1Y3dZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAAjAOAwUAKgkpgQMF
ACoJKYcwDQYJKoZIhvcNAQELBQADggEBAE6S0FRUYWKuaFZ/hI0lE/xyWT5ypy9j
DVeJz07fNXYaO5lF2oiL94D15g9NaEaIRBtWXr7jbnnKZEwCjR7YNWiSFk8R8LcB
iPVg7OoA3FDciMEOeLnAEoyB0jLiUhM4sW3Ej3RotSuL0oweM8QlEFYm3+6vU2hc
JXnEmvj37CqMZAHitr2sAkOqm7a5djGlcJYeNJN68TJDSwrWYo8yiHUn18a10yDk
FEsabRekIlv6hNFIeq/4wcomY0ykEXS8y1JKdJiSb56wRexivZnY/l6OujC5TCW1
5/VjOlT/Rv0N1JLpDrv8SOYbO0H17FLVwgdzU4NCaSXyINYbq46r3Yw=
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:26:35 2024 by rpki-client on console.sobornost.net