Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/17c994-1454-4b59-b661-c007436c20be/1/RF1zL_Da-GSCYppphCtn6lmYcPU.roa
File: RF1zL_Da-GSCYppphCtn6lmYcPU.roa (raw, json)
Hash identifier: HqRcJaM/nKq+YkVUzyqUWh5tTH9zx5rZPyqzNSW7Zko=
Subject key identifier: 44:5D:73:2F:F0:DA:F8:64:82:62:9A:69:84:2B:67:EA:59:98:70:F5
Certificate issuer: /CN=9b98f423292a35a98c220f90cf301dd4102584a1
Certificate serial: 018C73A1B336DFFAFA4DB7840EBD3E547118
Authority key identifier: 9B:98:F4:23:29:2A:35:A9:8C:22:0F:90:CF:30:1D:D4:10:25:84:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m5j0IykqNamMIg-QzzAd1BAlhKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/17c994-1454-4b59-b661-c007436c20be/1/RF1zL_Da-GSCYppphCtn6lmYcPU.roa
Signing time: Sat 16 Dec 2023 17:17:06 +0000
ROA not before: Sat 16 Dec 2023 17:17:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199052
IP address blocks: 2a13:ef44:ee00::/39 maxlen: 48
2a13:ef40::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:73:a1:b3:36:df:fa:fa:4d:b7:84:0e:bd:3e:54:71:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b98f423292a35a98c220f90cf301dd4102584a1
Validity
Not Before: Dec 16 17:17:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=445d732ff0daf86482629a69842b67ea599870f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:6b:5f:c7:72:31:ba:11:b2:3c:02:3f:2e:77:
db:00:41:2f:d0:85:3a:be:8e:f9:40:a5:a8:3a:1a:
f3:ac:73:c9:9e:ba:0c:5e:33:3a:5e:59:bb:51:d3:
63:4d:4c:e6:a5:3a:36:c9:d2:f1:c2:9e:64:85:f9:
f8:89:f9:4f:b8:97:87:d9:f6:4b:69:cb:91:77:48:
a2:79:d9:2c:6d:20:94:6c:1e:a8:a1:fb:7a:b0:a4:
e2:d9:1c:87:25:fa:8b:bb:ca:ca:73:92:4c:da:20:
a4:9d:6c:38:2d:62:d7:0e:23:6c:5c:d2:52:06:74:
2e:60:5e:f2:16:35:7b:81:44:5b:20:41:23:30:f9:
fc:e3:ac:d2:10:6a:47:15:73:c7:d6:de:72:bc:b2:
30:46:a8:21:f8:10:b1:7e:cb:de:de:13:67:31:c0:
75:67:4a:c2:84:b7:f6:98:3a:92:e9:1b:a2:0d:c6:
95:5c:0d:71:0b:d8:a3:67:ea:3a:3e:3b:ad:77:68:
e4:77:d8:b0:0f:5b:bc:95:c5:25:2d:21:e2:a0:aa:
f0:78:26:42:75:8a:6a:a3:7d:c9:2c:9c:30:da:72:
8d:6c:2b:13:bd:1e:b7:60:d9:87:fe:b5:77:df:38:
f0:e4:a3:fe:7d:96:79:88:5f:88:49:55:79:d9:06:
38:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:5D:73:2F:F0:DA:F8:64:82:62:9A:69:84:2B:67:EA:59:98:70:F5
X509v3 Authority Key Identifier:
keyid:9B:98:F4:23:29:2A:35:A9:8C:22:0F:90:CF:30:1D:D4:10:25:84:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m5j0IykqNamMIg-QzzAd1BAlhKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/17c994-1454-4b59-b661-c007436c20be/1/RF1zL_Da-GSCYppphCtn6lmYcPU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/17c994-1454-4b59-b661-c007436c20be/1/m5j0IykqNamMIg-QzzAd1BAlhKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:ef40::/32
2a13:ef44:ee00::/39
Signature Algorithm: sha256WithRSAEncryption
1a:78:8c:59:8e:7e:1b:67:51:15:d4:f0:a9:f5:0f:40:3c:a2:
f6:41:c7:73:37:c2:59:da:c2:da:1f:76:07:ae:f8:9e:06:f3:
69:41:2b:94:16:ee:ce:49:d1:12:1d:91:36:cf:37:61:db:87:
68:ff:55:be:d6:c9:68:9e:99:66:49:14:63:ef:8a:0c:1a:8d:
e2:af:3a:95:de:51:d0:fd:3e:da:34:2e:c3:59:f9:ce:64:49:
3f:84:1b:88:be:ac:fc:6c:59:c1:ef:c6:72:37:9c:72:fa:b9:
4d:ca:eb:bc:c7:9c:93:23:a1:ee:63:ae:f8:bc:96:92:2b:48:
23:ca:9b:1b:38:f2:43:ab:a6:f2:92:b1:59:b1:ca:0c:38:78:
17:eb:2f:82:c3:d8:b0:46:48:85:df:20:8e:20:5a:30:c9:2c:
01:80:63:3f:eb:d0:2b:51:2c:55:6b:f3:21:08:89:f1:dd:f5:
c5:07:a4:1a:af:cf:92:0e:52:97:f2:f5:70:4e:dd:fa:6c:39:
04:d0:51:c2:83:66:23:97:a5:fd:cd:cf:88:c3:64:aa:5c:fb:
50:19:22:3e:f5:ea:29:b0:e8:b1:ec:fa:9b:73:aa:16:de:35:
04:cf:c5:f6:29:37:b2:60:4e:43:52:b9:f9:18:07:f2:65:39:
27:6a:0b:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:51 2023 by rpki-client on console.sobornost.net