Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/0si2rK1_ZCNHSKFuOyZIZ-Jtq3A.roa
File: 0si2rK1_ZCNHSKFuOyZIZ-Jtq3A.roa (raw, json)
Hash identifier: AifWXGIayWzDF5UAlVNdgIeQc0At7tLcqhS/YZakZIQ=
Subject key identifier: D2:C8:B6:AC:AD:7F:64:23:47:48:A1:6E:3B:26:48:67:E2:6D:AB:70
Certificate issuer: /CN=56b98f83ccbda7c19f004151c98b57c59d268f54
Certificate serial: 01942445A58453FE5DD66DDA900297E6E166
Authority key identifier: 56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/0si2rK1_ZCNHSKFuOyZIZ-Jtq3A.roa
Signing time: Wed 01 Jan 2025 23:48:51 +0000
ROA not before: Wed 01 Jan 2025 23:48:51 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 207108
IP address blocks: 2a0c:8340::/29 maxlen: 29
2a14:72c0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:a5:84:53:fe:5d:d6:6d:da:90:02:97:e6:e1:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56b98f83ccbda7c19f004151c98b57c59d268f54
Validity
Not Before: Jan 1 23:48:51 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d2c8b6acad7f64234748a16e3b264867e26dab70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:59:d0:09:5f:1b:62:85:70:7c:2b:72:e2:95:
9d:1e:ab:1e:c5:73:b3:1c:18:82:e7:16:09:c2:d8:
cc:45:a8:1e:4a:6f:53:5b:40:a5:00:37:64:51:b2:
4e:85:36:74:19:2d:06:7a:56:45:1c:d1:75:8d:3f:
28:a7:24:0d:ce:b8:d6:1d:3f:07:a6:d2:2d:9c:1d:
3e:28:f0:74:cd:91:8b:14:3d:53:6b:15:9d:51:30:
59:6c:bd:e1:f2:bd:c7:76:c8:f1:f7:16:b6:d5:ee:
9c:cf:5f:aa:ce:ee:46:51:d0:96:c5:c6:97:1d:12:
93:e3:28:07:a2:6c:55:9e:4b:b4:53:7d:6f:69:7e:
20:a4:59:9e:c8:4e:9b:f5:c4:bc:b6:28:c4:6e:b5:
77:f3:30:41:f7:57:4c:73:a5:81:a7:ee:18:6a:93:
f4:9e:38:5f:02:5d:f5:ce:de:15:82:da:24:5c:9c:
d8:e0:4e:25:c9:91:51:d1:5e:a8:e4:dd:16:cf:04:
fe:79:51:bb:c6:cf:13:1b:7f:44:4d:05:b0:2e:90:
bd:6a:90:92:75:dd:97:f5:20:dd:32:2c:e0:8f:5b:
88:a3:58:9b:f8:cf:81:db:bb:4b:93:70:b7:6f:43:
fd:eb:6f:01:08:9a:8e:cb:06:70:4c:9c:01:1b:6c:
90:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:C8:B6:AC:AD:7F:64:23:47:48:A1:6E:3B:26:48:67:E2:6D:AB:70
X509v3 Authority Key Identifier:
keyid:56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/0si2rK1_ZCNHSKFuOyZIZ-Jtq3A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:8340::/29
2a14:72c0::/29
Signature Algorithm: sha256WithRSAEncryption
34:c0:cc:0a:51:33:39:7b:20:d4:67:c5:89:3b:fa:e6:a1:b3:
2e:1c:6c:51:d0:9d:d3:57:25:f8:14:25:47:5e:ab:f7:f0:8d:
06:a2:e5:e0:93:cf:f0:5f:02:da:f0:92:c7:44:b3:e7:e9:e2:
b9:4d:22:37:c9:27:6a:e7:01:c8:c9:e2:91:b6:ac:31:ce:29:
d4:91:e8:ae:96:ac:e0:60:73:eb:93:9b:56:19:fb:dc:62:c4:
18:de:d5:7d:45:b8:c0:5d:62:f3:cf:64:50:0d:f6:e2:b3:5b:
2c:e1:bc:11:3a:b9:4a:52:d6:8c:6a:c6:9a:32:f7:c3:75:2f:
d9:71:36:74:f7:59:9d:04:f0:6f:15:38:7f:07:d2:6d:70:34:
a8:c5:f7:57:52:96:d8:e8:37:78:c7:2f:d1:13:8f:ef:2d:b8:
1b:9b:ba:03:4e:ff:63:ef:90:ad:c8:59:8b:c2:7c:3e:f0:ed:
18:a7:2f:56:3a:4c:5d:9d:b6:7f:93:d6:bc:a8:28:9e:3f:c1:
fc:fc:3b:74:0d:c5:57:c3:81:15:bf:be:38:b3:b7:bc:1d:40:
26:d3:4a:0b:0f:42:5c:30:ce:4f:d5:c1:34:fc:a7:5d:97:7d:
33:eb:0c:77:2f:b7:3f:5c:2d:35:18:d8:b7:a4:c9:b1:46:ee:
e3:98:9c:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 23 19:13:54 2025 by rpki-client on console.sobornost.net