Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/da374f-d694-45e2-94e2-91a0034a989e/1/74e0z3j3nHTsrf4lpcTHx6I_WeI.roa
File: 74e0z3j3nHTsrf4lpcTHx6I_WeI.roa (raw, json)
Hash identifier: fnN71zK5dlejGnP95Hv6q5wHjDcIcBR8XJ/iS4DyfR4=
Subject key identifier: EF:87:B4:CF:78:F7:9C:74:EC:AD:FE:25:A5:C4:C7:C7:A2:3F:59:E2
Certificate issuer: /CN=daa12ed63a484c03d4c3c271cb2eff0553e12370
Certificate serial: 019244123E63A967FE0F6563EFCF100A9C4B
Authority key identifier: DA:A1:2E:D6:3A:48:4C:03:D4:C3:C2:71:CB:2E:FF:05:53:E1:23:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2qEu1jpITAPUw8Jxyy7_BVPhI3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/da374f-d694-45e2-94e2-91a0034a989e/1/74e0z3j3nHTsrf4lpcTHx6I_WeI.roa
Signing time: Mon 30 Sep 2024 17:54:59 +0000
ROA not before: Mon 30 Sep 2024 17:54:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211169
IP address blocks: 2001:678:f68::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:44:12:3e:63:a9:67:fe:0f:65:63:ef:cf:10:0a:9c:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=daa12ed63a484c03d4c3c271cb2eff0553e12370
Validity
Not Before: Sep 30 17:54:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ef87b4cf78f79c74ecadfe25a5c4c7c7a23f59e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:04:7d:d9:5d:36:6f:c2:98:88:06:db:08:04:
94:ae:b2:55:8e:42:a5:81:01:4f:41:7d:d5:10:c5:
02:7a:3f:db:c8:ad:22:0b:c6:af:e2:5b:fb:e4:09:
92:ab:87:fe:a4:1a:fd:d8:77:10:0b:ba:23:ee:3c:
99:24:e7:6c:91:28:9d:76:22:ad:2f:3e:86:ec:5c:
51:80:19:af:cc:1b:3f:60:ca:33:ce:ab:68:da:f1:
cb:7a:db:eb:75:c6:3f:00:48:ee:6a:8f:16:88:91:
97:03:5d:b2:74:7a:91:1f:b9:2e:76:35:45:eb:1e:
97:b4:e5:ce:4b:34:46:18:4c:5a:38:df:bd:ea:3a:
cb:ae:56:3b:2d:ba:47:98:96:65:12:5d:2a:78:55:
db:aa:4b:01:7b:79:cc:57:1d:d9:22:6f:e2:93:52:
12:f0:8d:a3:b8:07:86:5d:b4:7b:3f:6b:09:d5:1a:
ef:10:a6:9e:45:17:ae:32:3b:49:41:81:f7:c4:40:
50:ce:f1:7e:04:93:ed:e7:09:84:23:61:82:3e:81:
4e:a1:e2:2d:40:78:ee:62:28:25:e9:f2:b8:28:a3:
5b:78:4b:80:c8:78:91:7d:6c:63:cb:9c:30:bd:4a:
83:08:b1:91:8f:6c:13:4c:d4:a6:ee:7f:51:6c:1d:
4e:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:87:B4:CF:78:F7:9C:74:EC:AD:FE:25:A5:C4:C7:C7:A2:3F:59:E2
X509v3 Authority Key Identifier:
keyid:DA:A1:2E:D6:3A:48:4C:03:D4:C3:C2:71:CB:2E:FF:05:53:E1:23:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2qEu1jpITAPUw8Jxyy7_BVPhI3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/da374f-d694-45e2-94e2-91a0034a989e/1/74e0z3j3nHTsrf4lpcTHx6I_WeI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/da374f-d694-45e2-94e2-91a0034a989e/1/2qEu1jpITAPUw8Jxyy7_BVPhI3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:f68::/48
Signature Algorithm: sha256WithRSAEncryption
11:9d:87:fd:9f:8b:22:fb:91:d8:0e:0d:f7:99:5d:b8:4a:71:
e9:51:b1:b0:9a:51:93:b7:c6:d1:82:3b:ae:ad:2a:00:81:5e:
e8:18:2b:05:87:a6:3a:c7:52:56:b4:3f:bb:42:ba:1c:a5:6b:
b9:13:25:4e:de:f4:5e:71:0f:bc:aa:7c:ae:35:6a:4b:9f:75:
1b:17:90:95:f3:13:25:31:b5:d7:9e:bb:20:6a:c8:ca:63:e7:
ab:8c:a6:18:35:9f:c5:18:f0:f9:76:e7:06:10:8d:3d:49:d8:
13:01:bb:7f:5a:11:bb:2a:d1:4a:d5:3a:c6:14:b5:35:c2:22:
c5:b0:a3:98:95:0d:6f:6a:e4:68:e8:ca:8d:aa:af:fa:b4:58:
57:19:b1:7c:66:dc:71:da:0c:cb:6f:52:5b:f9:92:e6:1d:76:
1f:6a:17:6d:fe:c9:d7:d0:0d:9b:70:d9:d6:d9:b9:c6:e7:c2:
b7:3b:9e:14:28:ff:98:66:12:3d:34:a5:b0:76:8d:36:2c:61:
1d:6c:da:b3:b7:62:20:a6:d5:9a:d4:c0:00:3f:70:ce:83:fc:
93:3e:03:03:c5:10:d2:db:b0:8a:3a:98:b4:75:da:b1:56:f3:
9f:6c:82:f2:49:f3:e7:b6:5d:96:0e:52:5f:d2:cd:8b:49:3d:
08:0a:be:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:26:54 2024 by rpki-client on console.sobornost.net