Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/b9bb7f-166d-41af-a1db-866b2b021fc5/1/2T35rEBrEYB4ixT4Ecejp8LGPBo.roa
File: 2T35rEBrEYB4ixT4Ecejp8LGPBo.roa (raw, json)
Hash identifier: isU5KFrtY+BW6s8Eqk5H2cFDaxpKOxaWufNPYbGtdYM=
Subject key identifier: D9:3D:F9:AC:40:6B:11:80:78:8B:14:F8:11:C7:A3:A7:C2:C6:3C:1A
Certificate issuer: /CN=aeac1b2129abbac6539f80da6550c49721d0a8c4
Certificate serial: 018CC72731EDC1F758DDD54B676157D3D428
Authority key identifier: AE:AC:1B:21:29:AB:BA:C6:53:9F:80:DA:65:50:C4:97:21:D0:A8:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rqwbISmrusZTn4DaZVDElyHQqMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/b9bb7f-166d-41af-a1db-866b2b021fc5/1/2T35rEBrEYB4ixT4Ecejp8LGPBo.roa
Signing time: Mon 01 Jan 2024 22:31:23 +0000
ROA not before: Mon 01 Jan 2024 22:31:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197895
IP address blocks: 2a02:7a00:6::/48 maxlen: 48
2a02:7a01::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:27:31:ed:c1:f7:58:dd:d5:4b:67:61:57:d3:d4:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aeac1b2129abbac6539f80da6550c49721d0a8c4
Validity
Not Before: Jan 1 22:31:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d93df9ac406b1180788b14f811c7a3a7c2c63c1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:f6:f1:c0:88:0c:f2:54:27:c7:4f:a6:ec:f0:
2b:bb:de:3e:cb:79:68:5a:d5:ce:ee:10:6d:43:ec:
aa:7a:59:c8:b8:8f:c9:22:e5:c2:23:fe:01:ce:e1:
a4:7f:95:25:94:34:0c:74:41:cb:cb:35:46:80:4d:
20:c2:7f:3e:e5:e9:f5:5f:dd:80:f1:c7:ef:24:43:
23:42:0d:68:1c:5d:f3:67:c5:20:c2:22:e0:a1:eb:
a8:b4:b5:73:cb:2f:2c:94:17:86:d1:d4:4d:ee:85:
24:e3:25:1a:9b:21:78:23:ef:50:cc:bc:ee:8d:8b:
06:78:1b:db:12:e6:9d:57:1a:06:f1:2d:58:2a:f6:
cd:e0:df:fb:01:ef:4a:09:0a:2b:c6:a0:a4:0e:e3:
ff:05:21:89:09:d2:27:23:cc:dc:2a:84:1a:8d:f3:
1c:39:bf:6a:be:93:e5:01:e2:cf:ce:14:71:7b:59:
a4:ba:8c:bd:e7:9d:10:06:99:94:40:5b:3d:96:7b:
01:c3:52:e9:c7:24:c4:c0:d9:82:c2:4e:f2:c9:03:
14:f2:4c:74:12:1d:cf:6d:e0:79:3a:2d:9d:40:aa:
61:0b:5b:41:4f:68:e6:10:fa:23:0b:46:04:f5:0b:
6d:10:6a:df:17:a6:b2:44:b1:29:40:26:b9:c3:bb:
e9:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:3D:F9:AC:40:6B:11:80:78:8B:14:F8:11:C7:A3:A7:C2:C6:3C:1A
X509v3 Authority Key Identifier:
keyid:AE:AC:1B:21:29:AB:BA:C6:53:9F:80:DA:65:50:C4:97:21:D0:A8:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rqwbISmrusZTn4DaZVDElyHQqMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/b9bb7f-166d-41af-a1db-866b2b021fc5/1/2T35rEBrEYB4ixT4Ecejp8LGPBo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/b9bb7f-166d-41af-a1db-866b2b021fc5/1/rqwbISmrusZTn4DaZVDElyHQqMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:7a00:6::/48
2a02:7a01::/32
Signature Algorithm: sha256WithRSAEncryption
4e:14:c6:2c:64:a0:c4:13:51:9a:a5:57:c0:48:d3:89:7e:bc:
19:f4:ed:53:73:78:ac:10:b9:a0:4a:0e:42:cc:d2:09:8e:fc:
77:37:8b:ce:49:66:c0:0e:66:a2:0b:bc:45:0f:e6:55:0c:44:
03:78:43:9f:10:52:92:5f:dd:13:31:8c:41:50:54:35:86:42:
f3:05:58:a9:6e:8d:4f:aa:b2:99:9f:9b:9f:f1:bf:71:1d:ee:
b4:59:ad:9a:6b:0a:a1:77:03:6c:a3:0f:51:a7:f0:bf:b9:d3:
76:ee:20:ca:33:ee:c6:5d:ee:cd:52:c3:b2:7e:4b:21:58:5f:
8d:ac:1c:66:bb:a4:c5:83:7a:ee:cc:56:f6:08:97:2c:8d:01:
96:7c:f8:61:30:6a:cd:93:0b:5a:c8:32:12:25:37:a3:ff:cc:
ce:31:96:a1:ca:53:0f:d5:32:77:7e:3d:a6:f8:5c:8a:9e:58:
16:4d:6d:0a:4c:54:bc:bb:50:90:24:71:f1:c1:e9:20:c6:04:
06:5b:dd:73:93:28:a2:99:10:57:99:6c:05:89:ae:3f:2d:82:
ee:9d:00:e7:c9:d1:2e:ff:db:eb:a6:da:fe:40:9d:4d:f4:fa:
d5:d7:2d:59:99:6e:bb:8f:e7:ea:b2:f5:40:3e:57:ea:46:b6:
8d:9b:61:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:26:42 2024 by rpki-client on console.sobornost.net