Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/mZEdLMX-IRI2vleOs28nOCLp0kQ.roa
File: mZEdLMX-IRI2vleOs28nOCLp0kQ.roa (raw, json)
Hash identifier: dYj7ye5nM/gWZ7b3aH2efxzdYVSlpgUQH0UFNuJzivI=
Subject key identifier: 99:91:1D:2C:C5:FE:21:12:36:BE:57:8E:B3:6F:27:38:22:E9:D2:44
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0190C9979ADAE6F25BB7580042B47FE28254
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/mZEdLMX-IRI2vleOs28nOCLp0kQ.roa
Signing time: Fri 19 Jul 2024 06:04:34 +0000
ROA not before: Fri 19 Jul 2024 06:04:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:c997:3cde/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:c9:97:9a:da:e6:f2:5b:b7:58:00:42:b4:7f:e2:82:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jul 19 06:04:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=99911d2cc5fe211236be578eb36f273822e9d244
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:4b:d4:c9:3f:ae:d1:47:8f:d3:53:66:af:f1:
64:bb:a3:37:b1:2d:71:7c:de:5d:a8:6a:21:87:c6:
8e:40:e1:9a:a0:16:60:f3:df:15:e8:fb:22:34:74:
4a:71:89:16:c9:f3:12:13:33:3c:d8:92:f5:e4:c2:
55:7b:21:f5:77:cd:60:9f:00:d2:06:a6:1a:25:52:
49:0c:b1:d3:40:66:86:fd:1a:76:05:37:9c:71:7b:
de:d6:bb:35:91:2f:77:bb:77:ef:73:18:88:67:c5:
c7:69:61:26:21:06:5f:99:46:75:f7:44:f4:f7:e6:
8c:b1:b8:c6:39:81:0b:cd:10:d3:74:4b:e4:22:68:
01:64:0f:a9:58:11:bf:93:60:0c:ff:f6:92:41:df:
7b:2c:04:93:dd:ff:35:a3:a7:15:0b:50:16:fc:c7:
e8:10:a7:e2:45:31:e3:02:76:f5:56:7a:5a:6a:03:
9b:95:94:d5:5a:57:1a:f6:8d:a9:ec:1b:96:e6:50:
21:9d:32:23:f5:35:25:fe:7a:aa:f8:0c:cd:f1:2c:
85:35:0c:48:c3:63:ec:1b:ac:a8:47:59:56:8c:1f:
3c:32:17:d9:6f:e5:2d:c4:bf:9e:fb:a1:3f:37:8c:
5f:b0:29:e4:76:ed:38:79:9c:60:69:65:c2:16:0f:
48:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:91:1D:2C:C5:FE:21:12:36:BE:57:8E:B3:6F:27:38:22:E9:D2:44
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/mZEdLMX-IRI2vleOs28nOCLp0kQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:c997:3cde/128
Signature Algorithm: sha256WithRSAEncryption
16:37:8b:81:d7:4c:4c:49:cb:47:a5:52:f6:0e:0e:96:9f:35:
8c:d2:50:f1:94:04:01:15:6d:09:91:36:34:0e:12:c2:22:c8:
47:c0:0c:8d:d8:10:bd:3e:41:f7:39:3a:84:36:16:31:33:3f:
88:14:6b:a8:03:bb:8e:e0:20:f0:86:fe:5d:78:c3:b8:81:18:
38:95:9a:30:17:a8:f1:8a:d6:7a:94:1f:01:db:b4:5d:2e:d9:
6d:8a:a6:96:1f:14:e1:ee:c8:ee:b8:b1:99:84:34:81:d8:f9:
95:bc:29:19:82:13:af:a1:ae:5b:f0:25:83:af:28:ed:0c:e6:
0c:b5:83:4d:b6:d0:2c:67:fa:5c:b5:2e:73:48:e9:c2:db:f8:
70:20:a0:87:63:52:f2:4d:ad:55:bb:aa:e0:f7:eb:02:b6:93:
17:d7:6a:47:db:66:ff:34:f3:c5:64:27:be:55:0e:db:bb:00:
dd:39:d5:3d:27:a7:fa:ce:7f:4d:54:d5:ff:f4:e1:80:95:51:
0c:6f:6b:15:05:12:a4:d5:56:59:b8:07:9f:ee:d7:27:79:4b:
60:39:4d:67:74:2f:57:b6:16:ae:3d:81:18:42:d0:2a:14:3b:
77:54:ee:9c:0e:ab:7b:97:8d:b1:87:c5:04:49:2c:02:13:ba:
20:b4:f1:c5
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Jul 27 04:45:18 2024 by rpki-client on console.sobornost.net