Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/a97926-410c-466b-8bf4-ab16b69e6ad5/1/zxyhpxwpKash8rzk16AhoZcmA78.roa
File: zxyhpxwpKash8rzk16AhoZcmA78.roa (raw, json)
Hash identifier: 70K6rD4Zf6j/6l+/CGWqTDecUodvuRJT7jDdW4M/0vI=
Subject key identifier: CF:1C:A1:A7:1C:29:29:AB:21:F2:BC:E4:D7:A0:21:A1:97:26:03:BF
Certificate issuer: /CN=6b6e969fe8fb7b2a6b6e464426a4a703d37eb554
Certificate serial: 0192E76A124FCB88A630C16E2B0545FD7B08
Authority key identifier: 6B:6E:96:9F:E8:FB:7B:2A:6B:6E:46:44:26:A4:A7:03:D3:7E:B5:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a26Wn-j7eyprbkZEJqSnA9N-tVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/a97926-410c-466b-8bf4-ab16b69e6ad5/1/zxyhpxwpKash8rzk16AhoZcmA78.roa
Signing time: Fri 01 Nov 2024 11:09:01 +0000
ROA not before: Fri 01 Nov 2024 11:09:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42831
IP address blocks: 2a04:d180::/29 maxlen: 29
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:e7:6a:12:4f:cb:88:a6:30:c1:6e:2b:05:45:fd:7b:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b6e969fe8fb7b2a6b6e464426a4a703d37eb554
Validity
Not Before: Nov 1 11:09:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cf1ca1a71c2929ab21f2bce4d7a021a1972603bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:26:a6:30:1a:31:f1:a0:d5:b0:31:b7:b5:57:
07:2a:0f:f4:f5:0e:85:cb:66:82:a1:11:c9:4e:72:
a3:b3:f7:6a:c0:5f:b9:8a:12:8e:11:c0:6e:c2:0b:
d0:a7:8e:f6:2c:4f:b5:a9:85:20:af:e3:45:61:0d:
3b:db:b6:48:28:10:59:f3:37:ef:a7:c6:15:40:74:
78:08:96:3d:c4:b3:88:a2:15:0e:ff:5c:51:b5:af:
ec:62:e5:ab:db:f4:ce:02:6e:76:e5:e1:66:8c:07:
66:02:ab:75:f8:2d:88:09:5c:11:1f:78:8e:f0:12:
4d:be:42:13:41:9c:21:93:b0:3a:4d:ad:3b:3d:0a:
2d:d7:aa:9e:62:1f:be:bd:dc:8f:00:e8:6b:63:03:
b7:9a:b0:ae:d8:91:14:5d:31:35:e6:da:00:57:e9:
d0:5d:bb:b8:2e:09:47:93:cd:6b:73:24:3a:24:77:
e9:0b:4a:c0:ac:d6:d2:e6:52:31:9a:de:28:85:40:
dd:1d:ce:bc:8b:56:b4:7b:f3:8f:c2:bf:75:14:e3:
74:2a:21:4d:b3:3d:9c:cb:33:37:c7:13:db:80:8e:
cd:5e:12:07:69:be:ac:c3:5e:02:68:11:fe:2d:ba:
c5:d8:b1:98:ae:fd:2b:8c:2a:03:77:ac:4f:b8:1c:
b2:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:1C:A1:A7:1C:29:29:AB:21:F2:BC:E4:D7:A0:21:A1:97:26:03:BF
X509v3 Authority Key Identifier:
keyid:6B:6E:96:9F:E8:FB:7B:2A:6B:6E:46:44:26:A4:A7:03:D3:7E:B5:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a26Wn-j7eyprbkZEJqSnA9N-tVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/a97926-410c-466b-8bf4-ab16b69e6ad5/1/zxyhpxwpKash8rzk16AhoZcmA78.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/a97926-410c-466b-8bf4-ab16b69e6ad5/1/a26Wn-j7eyprbkZEJqSnA9N-tVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:d180::/29
Signature Algorithm: sha256WithRSAEncryption
89:66:f0:6f:2b:86:4d:c8:81:51:27:1d:96:d9:25:9b:02:da:
18:f7:7b:fc:b8:75:d7:15:f5:a9:bd:ac:7c:fe:72:8e:77:c9:
01:cc:12:dd:1e:b3:83:d8:7f:7e:69:7c:08:dc:89:e1:dd:51:
0b:17:7e:0c:83:f9:f3:15:7d:9d:ff:d7:d1:e8:84:cb:32:2c:
29:0e:b1:c1:ec:7a:08:fa:9b:82:7d:f9:06:08:05:aa:e8:4a:
ca:61:b1:9b:07:84:85:eb:28:ec:ae:da:52:e8:c5:1b:fd:c9:
a6:98:a2:59:e5:ad:da:f2:ff:2b:a0:be:ef:66:8a:ac:95:88:
88:8d:6c:15:43:67:11:2e:45:01:ac:70:77:e2:63:2a:38:b0:
de:0c:65:a7:d6:9a:9e:fd:02:cc:56:d2:29:11:58:f5:f7:98:
26:03:3b:de:78:d2:1a:77:f8:a0:16:88:c1:62:bb:25:3d:7e:
6b:ee:ba:08:c4:04:af:46:10:58:fb:da:70:8e:79:88:18:a2:
70:a2:13:21:92:9d:b2:71:c1:94:f9:37:72:ed:b0:31:66:78:
05:d0:aa:ec:a5:2e:a7:49:6c:e3:24:7c:93:b3:80:ad:fd:02:
c8:33:af:06:14:2b:d0:1f:6e:41:13:40:33:95:fc:e9:57:9d:
7e:c5:5e:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 14 12:06:03 2024 by rpki-client on console.sobornost.net