Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/5d0e44-0b8e-43ea-98d8-cd8be1c59d8d/1/fBQVVMpS5gPHVJpGwoM_4Elj2tI.roa
File: fBQVVMpS5gPHVJpGwoM_4Elj2tI.roa (raw, json)
Hash identifier: v1FehG3J1lBoBIGL8DOqTLtv0wjNCpRbmDIeGAhf5lk=
Subject key identifier: 7C:14:15:54:CA:52:E6:03:C7:54:9A:46:C2:83:3F:E0:49:63:DA:D2
Certificate issuer: /CN=19761cb83320ffcba01fd807a06e889cc31d85e7
Certificate serial: 0193D3ABF7472F0B219A168B7FF0BFACA098
Authority key identifier: 19:76:1C:B8:33:20:FF:CB:A0:1F:D8:07:A0:6E:88:9C:C3:1D:85:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GXYcuDMg_8ugH9gHoG6InMMdhec.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/5d0e44-0b8e-43ea-98d8-cd8be1c59d8d/1/fBQVVMpS5gPHVJpGwoM_4Elj2tI.roa
Signing time: Tue 17 Dec 2024 08:11:22 +0000
ROA not before: Tue 17 Dec 2024 08:11:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213783
IP address blocks: 2a14:c800::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:d3:ab:f7:47:2f:0b:21:9a:16:8b:7f:f0:bf:ac:a0:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19761cb83320ffcba01fd807a06e889cc31d85e7
Validity
Not Before: Dec 17 08:11:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7c141554ca52e603c7549a46c2833fe04963dad2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:01:e3:bb:0c:9c:84:7f:ee:a2:d3:0f:b4:f9:
bb:84:71:2e:07:05:a5:b2:16:1d:84:c6:7b:31:d3:
3e:70:98:f8:42:80:08:8d:45:86:a9:94:69:03:db:
61:fb:26:27:62:79:62:91:5c:24:5f:d8:f4:c9:5d:
09:1e:8e:03:04:88:f0:bf:11:b4:e6:6b:f9:81:9a:
1e:87:39:ff:05:bd:45:d3:52:30:95:90:06:6a:fd:
fa:a1:cd:7a:e8:e5:35:dd:25:90:52:83:9a:af:85:
0c:6f:14:0f:ef:19:fe:f0:a3:42:10:b7:0e:2e:3c:
78:d5:48:5a:88:8b:64:cd:42:00:c0:21:97:18:77:
d9:fc:fa:49:59:60:53:9d:d6:cb:91:7e:9a:45:18:
b1:fd:c4:51:2e:cf:2b:19:e1:16:b7:9c:68:6c:52:
7f:32:fb:5e:7e:df:4e:8e:85:fc:32:9d:b2:f9:93:
b1:cb:1c:e0:5a:ee:00:7a:98:45:9b:5a:0c:c0:ee:
bd:f5:6f:2e:10:70:8b:76:c7:f4:a2:f0:e4:a5:7e:
62:41:a8:dc:31:ce:4a:a6:99:0d:bd:0b:a2:c3:b4:
6e:a5:f4:b5:b3:eb:fe:0c:03:b1:5c:ba:30:4b:7d:
a6:c5:7b:44:d8:82:3d:24:0e:56:7a:1f:3f:0e:6c:
7d:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:14:15:54:CA:52:E6:03:C7:54:9A:46:C2:83:3F:E0:49:63:DA:D2
X509v3 Authority Key Identifier:
keyid:19:76:1C:B8:33:20:FF:CB:A0:1F:D8:07:A0:6E:88:9C:C3:1D:85:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GXYcuDMg_8ugH9gHoG6InMMdhec.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/5d0e44-0b8e-43ea-98d8-cd8be1c59d8d/1/fBQVVMpS5gPHVJpGwoM_4Elj2tI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/5d0e44-0b8e-43ea-98d8-cd8be1c59d8d/1/GXYcuDMg_8ugH9gHoG6InMMdhec.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:c800::/29
Signature Algorithm: sha256WithRSAEncryption
40:37:44:40:95:27:a3:8d:2b:b8:c3:21:7d:f6:08:02:ab:1e:
cf:4e:d5:27:0d:5b:03:4d:bd:6c:95:75:af:aa:23:d9:91:46:
00:c2:97:89:23:be:0c:e3:4f:bf:ec:6d:2c:96:ed:03:21:ba:
2c:fd:ff:f5:fd:1e:0f:d3:f8:99:40:8b:62:a3:8b:99:0b:2b:
8e:ef:cc:93:68:69:8d:a1:cb:d3:a3:9a:d6:e2:15:d6:7a:ca:
d6:a8:7a:5f:f5:b2:60:2e:5d:ea:08:69:80:12:c8:9c:b9:8c:
71:1f:e4:e2:74:1f:b4:92:1d:84:5a:05:81:e7:aa:10:d4:34:
6f:77:b7:e3:fa:90:0f:7b:b4:ee:f7:d1:41:d1:38:ce:20:af:
41:64:9d:93:44:2e:a2:e2:4b:ad:4d:9d:70:50:72:84:9d:f7:
2e:96:a8:4e:fe:c9:73:53:ab:9c:67:c0:a4:98:ae:13:5b:a3:
c3:6a:06:b9:bb:b6:20:32:41:8b:7f:94:ed:70:44:30:41:9b:
bf:22:cc:c1:49:2e:f4:69:5c:48:e8:d1:6b:16:2b:73:fc:bb:
21:fb:e6:b3:44:ad:48:b1:f0:4a:3e:2f:b5:16:9f:a1:a5:a1:
04:89:4b:b4:0e:b3:84:73:c0:97:a1:5c:1c:0b:8a:ad:31:3d:
c0:a1:9f:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:27:16 2024 by rpki-client on console.sobornost.net