Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/MKEVvpZaZMh0A913Dj9PlnU9sGc.roa
File: MKEVvpZaZMh0A913Dj9PlnU9sGc.roa (raw, json)
Hash identifier: qhx0XgcoMe1zGwCWeuEju4JPijAYR1OWQXwzfhtFpQQ=
Subject key identifier: 30:A1:15:BE:96:5A:64:C8:74:03:DD:77:0E:3F:4F:96:75:3D:B0:67
Certificate issuer: /CN=5da3941c27cfe5c234c4bf221ecb2a579b2deaab
Certificate serial: 01929C0AA7CDE8F22B49F8216F386C18C26A
Authority key identifier: 5D:A3:94:1C:27:CF:E5:C2:34:C4:BF:22:1E:CB:2A:57:9B:2D:EA:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaOUHCfP5cI0xL8iHssqV5st6qs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/MKEVvpZaZMh0A913Dj9PlnU9sGc.roa
Signing time: Thu 17 Oct 2024 19:53:16 +0000
ROA not before: Thu 17 Oct 2024 19:53:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57271
IP address blocks: 2a0e:5382::/32 maxlen: 32
2a0e:5385::/32 maxlen: 32
2a0e:8082::/32 maxlen: 32
2a0e:ccc2::/32 maxlen: 32
2a0f:c081::/32 maxlen: 32
2a0f:c087::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:9c:0a:a7:cd:e8:f2:2b:49:f8:21:6f:38:6c:18:c2:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5da3941c27cfe5c234c4bf221ecb2a579b2deaab
Validity
Not Before: Oct 17 19:53:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=30a115be965a64c87403dd770e3f4f96753db067
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:70:e5:97:0d:5d:a3:c2:d3:6c:65:16:0e:ba:
50:4e:a4:14:0a:85:c9:25:30:d3:8c:a3:05:9b:9d:
4a:e5:8c:10:83:30:4a:a9:cc:e3:1a:d8:3d:53:8b:
4b:c4:64:54:7f:99:5a:e0:1b:ca:67:30:37:73:85:
f1:28:5c:df:03:f5:5d:25:cb:47:ba:f9:af:0d:f1:
8d:a2:a7:5d:1c:8f:17:cc:6e:ad:90:87:a3:a5:a2:
ab:02:b8:25:13:03:e6:4e:cf:dc:8b:67:d8:72:82:
b8:22:1a:0b:93:26:ff:2f:53:38:61:62:ab:52:47:
cc:d6:59:fd:9e:3f:c0:00:aa:87:02:e0:78:40:35:
b4:3a:7d:28:b5:c0:ca:c5:25:1c:8c:c4:e6:c2:bb:
1c:4f:9b:7d:67:3b:47:11:5f:37:1c:16:33:82:be:
aa:f8:d5:df:c3:1f:6f:18:db:5f:f3:c6:a3:e2:ae:
99:97:b2:4e:ff:6e:99:20:1f:db:ef:95:3f:af:f2:
36:0a:82:39:f1:54:03:8a:c1:55:64:e7:b6:5d:27:
5a:a8:ce:ca:fc:36:a2:3a:ec:7e:65:ea:66:91:8c:
87:33:cc:3c:a8:33:d3:32:2d:3c:a4:4d:6a:3b:14:
1f:1f:4f:2a:68:e4:aa:a4:9d:8e:be:ab:e5:3d:87:
dc:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:A1:15:BE:96:5A:64:C8:74:03:DD:77:0E:3F:4F:96:75:3D:B0:67
X509v3 Authority Key Identifier:
keyid:5D:A3:94:1C:27:CF:E5:C2:34:C4:BF:22:1E:CB:2A:57:9B:2D:EA:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaOUHCfP5cI0xL8iHssqV5st6qs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/MKEVvpZaZMh0A913Dj9PlnU9sGc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/XaOUHCfP5cI0xL8iHssqV5st6qs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:5382::/32
2a0e:5385::/32
2a0e:8082::/32
2a0e:ccc2::/32
2a0f:c081::/32
2a0f:c087::/32
Signature Algorithm: sha256WithRSAEncryption
9f:a2:0a:04:ff:c0:de:2c:b2:ad:d2:56:a9:c7:32:d9:35:ed:
fb:a8:fa:60:06:ae:70:ad:4d:52:8b:14:51:3a:e1:33:dd:fd:
0c:83:34:d2:42:37:d1:b1:51:0f:83:3f:aa:15:1b:a0:6b:7b:
b7:3a:bd:b7:08:7a:2a:50:27:b5:6b:d6:f9:ca:67:55:09:67:
75:8c:b8:80:e7:cd:17:05:24:4d:b9:ec:0f:af:03:65:f2:9f:
a8:79:14:3a:66:03:50:2d:81:b1:d5:1a:fb:aa:93:67:5e:0e:
89:7e:97:67:c8:2b:d8:9c:35:64:dc:5f:c7:a7:52:4b:87:ec:
58:33:c8:23:8f:c7:29:61:1a:2c:96:0d:2a:a2:cd:e4:80:2b:
55:a4:4d:7d:eb:86:ae:76:e2:49:a3:05:71:2c:b0:27:ab:b7:
6c:d4:dd:ec:1e:18:52:2f:7f:c8:cf:93:ca:92:ca:1c:db:02:
38:78:cc:02:c6:79:2b:27:e7:b0:44:ca:e1:18:14:00:13:29:
a6:72:03:5e:0d:66:20:4a:57:7a:1b:75:f4:9f:60:0f:bb:6d:
f6:5c:fa:f6:73:40:5d:12:2b:a2:ae:26:17:21:aa:7e:69:f6:
43:48:d0:2a:c9:30:4f:03:89:ca:7c:48:5c:44:af:9d:37:ab:
32:3d:c4:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 22 19:19:18 2024 by rpki-client on console.sobornost.net