Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/dda412-4545-48a6-bde2-9a37c6069bc1/1/2vE6dAIrFWmjX9wUXQLyjcxrpQc.roa
File: 2vE6dAIrFWmjX9wUXQLyjcxrpQc.roa (raw, json)
Hash identifier: B4kFwbSdbF1t9OB8EnoG0yqieMQZClDok+4cB6L7sNE=
Subject key identifier: DA:F1:3A:74:02:2B:15:69:A3:5F:DC:14:5D:02:F2:8D:CC:6B:A5:07
Certificate issuer: /CN=0325034258f275b7c87e5f4f70706c0cf588efc3
Certificate serial: 0190BD67DA8DE01DA4D15DA3224C35940A5A
Authority key identifier: 03:25:03:42:58:F2:75:B7:C8:7E:5F:4F:70:70:6C:0C:F5:88:EF:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AyUDQljydbfIfl9PcHBsDPWI78M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/dda412-4545-48a6-bde2-9a37c6069bc1/1/2vE6dAIrFWmjX9wUXQLyjcxrpQc.roa
Signing time: Tue 16 Jul 2024 21:16:58 +0000
ROA not before: Tue 16 Jul 2024 21:16:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215369
IP address blocks: 2a10:18c4::/30 maxlen: 30
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:bd:67:da:8d:e0:1d:a4:d1:5d:a3:22:4c:35:94:0a:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0325034258f275b7c87e5f4f70706c0cf588efc3
Validity
Not Before: Jul 16 21:16:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=daf13a74022b1569a35fdc145d02f28dcc6ba507
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:70:0e:1c:03:c1:c8:13:a6:0d:88:93:38:ae:
7a:e7:9f:29:e3:06:4d:38:5d:cb:bd:21:27:3c:06:
87:61:14:dc:de:98:70:18:17:8a:e4:23:a3:b9:77:
90:a4:bd:32:24:53:2d:f2:8c:56:23:8d:3e:a3:f9:
a6:90:8e:48:18:0e:98:ef:ca:eb:19:0c:b6:68:06:
cb:c4:fa:9c:8b:2b:11:ff:ff:67:3e:96:53:8a:27:
66:eb:c0:bc:eb:15:d7:e2:26:f5:37:68:bb:94:cc:
82:7c:9f:e3:1a:7c:08:44:24:f5:63:0f:b8:ed:ee:
bb:92:09:14:cd:04:fe:89:75:bf:31:e7:1e:d6:39:
4d:cb:12:e4:4d:27:e3:2c:5b:b3:43:c2:29:53:0b:
e4:a6:e2:fc:a4:70:e4:fc:39:7f:2a:2a:c8:9a:59:
71:e9:39:b9:6a:fa:a7:12:7c:2a:2e:f5:b2:04:3b:
24:bb:fb:19:04:b2:e7:c4:9e:bf:ac:e3:36:8f:d2:
52:eb:c8:29:a0:44:42:f4:b5:ee:63:d0:2b:93:fb:
79:16:17:43:52:8c:54:20:29:68:6d:90:d1:02:7b:
91:99:18:03:39:41:b2:58:69:91:c8:c5:8d:7c:5e:
34:33:49:b9:b2:c2:d1:cc:e8:f9:bf:19:15:7c:65:
60:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:F1:3A:74:02:2B:15:69:A3:5F:DC:14:5D:02:F2:8D:CC:6B:A5:07
X509v3 Authority Key Identifier:
keyid:03:25:03:42:58:F2:75:B7:C8:7E:5F:4F:70:70:6C:0C:F5:88:EF:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AyUDQljydbfIfl9PcHBsDPWI78M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/dda412-4545-48a6-bde2-9a37c6069bc1/1/2vE6dAIrFWmjX9wUXQLyjcxrpQc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/dda412-4545-48a6-bde2-9a37c6069bc1/1/AyUDQljydbfIfl9PcHBsDPWI78M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:18c4::/30
Signature Algorithm: sha256WithRSAEncryption
5f:41:cb:c0:2d:db:ad:ad:fc:03:03:cc:f0:a9:6a:fa:c6:06:
6d:ed:ad:31:4a:0f:33:a8:4e:0c:c1:30:9d:cc:b9:d3:5a:dc:
33:58:36:80:28:02:8d:ef:73:2a:d4:57:30:83:8d:39:aa:35:
4e:4a:c3:8f:75:73:ff:bf:de:a9:b7:b6:3b:07:dd:3a:c6:43:
10:5b:3c:9f:fb:cd:54:34:83:f6:5b:72:cc:0d:d6:38:cc:e0:
75:4e:1d:73:60:b5:e3:8a:5e:93:85:93:af:f6:a6:94:83:7d:
a8:11:0e:56:ce:90:f2:1b:51:02:27:9b:f4:0c:00:30:b5:fd:
1a:08:ca:f1:e3:70:d9:ba:28:c4:2c:55:99:d8:57:f8:98:de:
ac:c5:ba:60:60:5f:d4:dd:cd:cc:4d:0e:db:48:7d:fb:d6:31:
ea:1e:f7:51:da:49:38:bb:b9:0c:c2:9f:e0:ae:d8:da:e5:37:
a1:04:56:26:c0:69:a6:51:c0:cf:e8:40:0c:cd:ef:5d:ab:13:
7b:b3:a9:cc:b4:34:88:67:7c:b3:65:a4:46:34:75:73:57:0b:
08:0d:d0:73:1e:2b:0d:00:b4:24:cd:ca:39:dd:eb:e9:f2:9d:
27:50:98:e6:55:5e:00:18:ea:83:ea:70:69:10:ac:f8:88:c7:
fd:48:bb:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:27:16 2024 by rpki-client on console.sobornost.net