Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/c48271-dee5-4841-a7dd-b0d72e910efe/1/GJMcm2qcBYioGvxteXp8nkYN7Rs.roa
File: GJMcm2qcBYioGvxteXp8nkYN7Rs.roa (raw, json)
Hash identifier: G9TxdqEUKV52lyrXky16pBNJ/sRIOGq0+gol9jhuIkQ=
Subject key identifier: 18:93:1C:9B:6A:9C:05:88:A8:1A:FC:6D:79:7A:7C:9E:46:0D:ED:1B
Certificate issuer: /CN=488c65dc359b58ca6ba5d3daeb874f058684e8c6
Certificate serial: 018CC725886DDEBDB4F0C229AAEED3EB652F
Authority key identifier: 48:8C:65:DC:35:9B:58:CA:6B:A5:D3:DA:EB:87:4F:05:86:84:E8:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SIxl3DWbWMprpdPa64dPBYaE6MY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/c48271-dee5-4841-a7dd-b0d72e910efe/1/GJMcm2qcBYioGvxteXp8nkYN7Rs.roa
Signing time: Mon 01 Jan 2024 22:29:34 +0000
ROA not before: Mon 01 Jan 2024 22:29:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8315
IP address blocks: 2001:678:76c::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:25:88:6d:de:bd:b4:f0:c2:29:aa:ee:d3:eb:65:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=488c65dc359b58ca6ba5d3daeb874f058684e8c6
Validity
Not Before: Jan 1 22:29:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=18931c9b6a9c0588a81afc6d797a7c9e460ded1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:53:d8:dc:db:52:f3:66:97:1a:66:bc:d7:4c:
ac:45:5a:e3:9a:b4:1a:61:8f:5e:6a:84:ea:c3:6f:
12:90:0b:95:89:04:e4:35:3f:00:15:dc:ed:ef:d8:
6d:95:59:14:c7:45:c9:72:39:0f:46:4f:ad:cc:e7:
d2:0c:4d:0d:d4:ca:14:54:0e:49:33:23:13:c9:b3:
c0:ef:50:9f:05:16:32:24:4c:91:df:bf:88:28:66:
04:36:77:16:c8:a4:c1:dd:10:69:c4:25:a3:60:f4:
f6:e5:61:c8:b0:87:75:70:76:b8:23:6c:aa:4d:5c:
46:cf:62:26:01:f4:c9:05:32:9d:ec:fb:ff:0d:17:
3c:17:b2:f3:bd:8c:21:d9:97:6f:49:fc:e7:d9:08:
bc:8a:05:53:75:bf:54:4f:e7:72:8e:9e:a3:34:6b:
9d:3c:a1:e1:a5:be:73:1a:9d:1b:8c:a3:70:c0:f5:
5e:da:06:96:fe:46:9d:55:7f:40:2c:4a:96:6b:3d:
f6:22:b0:6b:5a:83:1c:d0:27:54:42:ba:01:c4:b8:
f2:c9:71:f8:95:2d:d5:03:af:84:91:c5:0e:80:ff:
e2:2a:72:52:f0:cf:eb:c4:31:04:06:2a:9f:28:cf:
ce:15:e6:51:b3:ca:3b:90:ef:b1:29:c3:f9:15:9e:
cd:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:93:1C:9B:6A:9C:05:88:A8:1A:FC:6D:79:7A:7C:9E:46:0D:ED:1B
X509v3 Authority Key Identifier:
keyid:48:8C:65:DC:35:9B:58:CA:6B:A5:D3:DA:EB:87:4F:05:86:84:E8:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SIxl3DWbWMprpdPa64dPBYaE6MY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/c48271-dee5-4841-a7dd-b0d72e910efe/1/GJMcm2qcBYioGvxteXp8nkYN7Rs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/c48271-dee5-4841-a7dd-b0d72e910efe/1/SIxl3DWbWMprpdPa64dPBYaE6MY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:76c::/48
Signature Algorithm: sha256WithRSAEncryption
5c:a3:b9:ac:e8:20:b4:49:83:89:3e:65:52:22:71:65:e0:24:
49:c9:9c:eb:34:dc:45:32:76:20:30:68:6a:79:e7:9b:78:f2:
64:a2:d3:26:a7:b6:dd:98:97:2c:e4:14:7e:d2:32:b2:2c:f4:
4d:f9:ce:1a:ad:b3:54:e6:65:e2:8d:93:ec:2f:9d:f7:6e:55:
61:30:53:4d:b1:25:1e:1f:6f:ac:24:54:e8:53:a5:16:82:b6:
a5:3f:50:58:d1:3b:91:f7:89:a2:47:f7:c0:85:41:26:36:d7:
06:dd:56:f9:30:f1:7a:26:a0:20:3c:20:ea:03:d4:b2:87:9c:
35:f0:72:2c:0f:70:42:66:fb:29:42:a0:69:00:a7:2b:be:aa:
0b:73:54:8e:11:3c:71:d9:05:dc:a3:65:46:0b:20:4b:5c:6b:
09:3a:3b:ad:23:72:9d:a2:ef:be:15:4a:c4:f0:50:7e:ca:dd:
35:42:a0:a4:40:c7:38:dc:a4:50:b0:ed:a0:34:fe:84:3b:22:
a3:d7:19:f3:f4:f1:7a:71:d6:ab:b9:a4:f2:61:d1:10:03:1a:
38:b6:f7:5e:4f:56:ea:f4:6c:9d:68:1a:c6:7f:a6:7c:f2:b8:
db:f1:e0:f6:da:10:50:41:94:6a:fd:20:2f:5e:96:bb:7e:7a:
68:a5:8f:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:27:28 2024 by rpki-client on console.sobornost.net