Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/6714f1-c3d6-4875-a36a-37e80dab9302/1/fy74NRu74WN8PCqddv-_4htCGVI.roa
File: fy74NRu74WN8PCqddv-_4htCGVI.roa (raw, json)
Hash identifier: To4b7BQD/ePTsqeC5YUhGOYvnhRHX3p5Vz01c+TSNd0=
Subject key identifier: 7F:2E:F8:35:1B:BB:E1:63:7C:3C:2A:9D:76:FF:BF:E2:1B:42:19:52
Certificate issuer: /CN=cd02d077485a15e8a254a49edd994d4fc2a908a6
Certificate serial: 0193DF544BDAAA721B7B9CC75822777CC6E4
Authority key identifier: CD:02:D0:77:48:5A:15:E8:A2:54:A4:9E:DD:99:4D:4F:C2:A9:08:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zQLQd0haFeiiVKSe3ZlNT8KpCKY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/6714f1-c3d6-4875-a36a-37e80dab9302/1/fy74NRu74WN8PCqddv-_4htCGVI.roa
Signing time: Thu 19 Dec 2024 14:31:03 +0000
ROA not before: Thu 19 Dec 2024 14:31:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199275
IP address blocks: 2a00:6420::/32 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:df:54:4b:da:aa:72:1b:7b:9c:c7:58:22:77:7c:c6:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd02d077485a15e8a254a49edd994d4fc2a908a6
Validity
Not Before: Dec 19 14:31:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7f2ef8351bbbe1637c3c2a9d76ffbfe21b421952
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:91:e4:7f:fd:59:66:5c:be:10:6e:24:fb:f2:
b2:1f:dd:ba:1a:db:1d:67:fa:17:5f:77:42:02:71:
04:03:9f:c0:8c:30:da:76:d6:14:f1:5a:59:7c:e4:
6d:de:87:48:69:07:95:fe:54:45:d2:d6:7b:63:a7:
a1:ba:0c:ee:ac:70:21:70:b6:00:c6:fc:5b:df:24:
ac:68:4c:82:d8:cd:de:a1:75:90:df:3b:a1:e5:aa:
a1:20:d0:b1:97:1b:0c:91:53:60:5f:de:b6:b3:3e:
9a:0e:06:4d:17:11:7a:b3:98:01:37:1d:05:17:7b:
e1:6b:0f:df:ea:9b:e9:ed:6b:86:13:0e:fa:1c:04:
21:93:9b:c5:6f:c9:9f:e5:22:79:ed:5a:e4:30:e1:
bb:47:7b:4c:39:e4:95:59:d6:3d:90:25:2e:c4:cc:
34:8c:90:a9:48:c8:9f:a4:70:b9:f8:33:fd:35:ca:
63:30:46:02:2b:50:ce:36:41:3d:ad:7b:62:36:bd:
62:71:cc:7d:25:5c:4d:4f:1b:6e:d6:ce:a0:73:5c:
35:2d:17:6b:88:d9:3b:87:4f:ca:4a:89:26:73:62:
64:10:e4:67:63:06:5f:f6:45:23:90:a7:02:3e:34:
79:38:a0:8c:69:f2:8a:be:f6:12:2b:c0:47:d1:85:
8b:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:2E:F8:35:1B:BB:E1:63:7C:3C:2A:9D:76:FF:BF:E2:1B:42:19:52
X509v3 Authority Key Identifier:
keyid:CD:02:D0:77:48:5A:15:E8:A2:54:A4:9E:DD:99:4D:4F:C2:A9:08:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zQLQd0haFeiiVKSe3ZlNT8KpCKY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/6714f1-c3d6-4875-a36a-37e80dab9302/1/fy74NRu74WN8PCqddv-_4htCGVI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/6714f1-c3d6-4875-a36a-37e80dab9302/1/zQLQd0haFeiiVKSe3ZlNT8KpCKY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:6420::/32
Signature Algorithm: sha256WithRSAEncryption
90:1f:4c:e3:43:3a:76:de:27:b9:9c:54:d7:2e:29:f8:f6:97:
00:f6:03:82:78:78:e8:88:a5:e7:12:4f:3c:ac:1e:4e:06:48:
5c:3e:24:32:61:26:03:f6:dd:2f:bf:5d:a4:60:72:bb:5c:f0:
cd:0e:84:a8:b2:1f:3b:d3:e9:a8:17:34:2c:0b:48:a7:95:59:
5b:03:9a:35:7b:03:08:78:bd:6a:84:21:cf:5e:07:e1:48:ad:
22:98:f8:dc:f4:fd:58:d6:44:7f:04:05:99:d6:59:78:7b:42:
df:8d:f7:ee:0f:25:0b:a1:d3:ae:ac:5f:5f:86:57:e2:7c:f6:
05:e6:a8:b0:94:fc:7f:5c:51:87:d4:7e:d4:7e:37:03:41:ca:
a3:c5:eb:a9:fa:c4:2f:3a:a0:9b:ef:6e:12:b5:e4:76:4b:b3:
7f:29:1b:48:e1:47:f8:ed:2f:fd:30:67:24:93:f6:d3:68:41:
a1:83:3f:b7:af:4d:48:64:b1:4c:3c:e8:4e:e7:8d:de:70:c3:
2a:88:73:4a:31:5e:72:24:aa:39:1a:6f:76:c6:5e:c6:9a:1d:
fd:d8:3c:68:0c:a4:2f:0d:36:a8:bb:8f:5d:6b:07:3e:7f:1f:
4a:8d:0e:53:10:0e:46:8e:b7:1c:9c:ea:c0:92:3c:c5:e3:26:
44:aa:79:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:26:51 2024 by rpki-client on console.sobornost.net