Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/B8rGcPKJF5f1wEBkzjKpT2dRuoo.roa
File: B8rGcPKJF5f1wEBkzjKpT2dRuoo.roa (raw, json)
Hash identifier: pAWL99iYUwCyljKF2iUrndLopI7MfgMdEZUHL+1XHHs=
Subject key identifier: 07:CA:C6:70:F2:89:17:97:F5:C0:40:64:CE:32:A9:4F:67:51:BA:8A
Certificate issuer: /CN=d673d849b7d5047376d57e6f796f0018b70b4506
Certificate serial: 01908455444630E1E684DE1DC9E18AA5838F
Authority key identifier: D6:73:D8:49:B7:D5:04:73:76:D5:7E:6F:79:6F:00:18:B7:0B:45:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1nPYSbfVBHN21X5veW8AGLcLRQY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/B8rGcPKJF5f1wEBkzjKpT2dRuoo.roa
Signing time: Fri 05 Jul 2024 19:18:18 +0000
ROA not before: Fri 05 Jul 2024 19:18:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216441
IP address blocks: 2a04:9307::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:84:55:44:46:30:e1:e6:84:de:1d:c9:e1:8a:a5:83:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d673d849b7d5047376d57e6f796f0018b70b4506
Validity
Not Before: Jul 5 19:18:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=07cac670f2891797f5c04064ce32a94f6751ba8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:8a:65:42:0b:eb:5f:9c:79:db:2a:d6:5f:09:
5d:2a:9b:d4:56:c6:0b:bb:9b:0c:32:33:25:cc:a0:
24:44:90:04:72:71:9b:6e:03:72:c0:c5:d1:11:52:
26:7e:13:95:b4:e5:94:7a:be:d4:8c:9e:50:e5:8b:
b8:1c:b0:48:9c:ad:76:03:91:b8:16:bb:6b:fa:6b:
31:61:9a:fb:2a:7a:87:11:96:9c:3d:a8:8f:c8:fd:
d2:d1:2d:04:a7:e9:46:2c:f2:d8:91:70:c1:8a:97:
87:6c:29:06:e7:a1:7d:81:75:0f:5b:7d:1a:b7:eb:
9f:28:31:2e:10:3c:bd:57:29:eb:a2:c3:bf:3a:ac:
69:bf:f9:26:02:90:a5:ce:6f:df:39:0a:03:78:cf:
f5:ce:e6:45:28:25:cd:24:39:f7:b2:cf:90:2b:89:
81:2c:9d:82:23:e3:8c:1c:ec:c3:bc:48:d3:2a:41:
9b:29:6e:4e:03:71:96:05:28:d7:ad:21:08:c0:54:
60:51:94:32:cc:a9:c3:1a:a7:53:fc:e5:0a:79:97:
68:89:68:73:a4:55:5a:60:96:06:93:56:13:08:f8:
1c:ab:66:35:97:d5:a8:35:e0:7a:80:67:e6:ba:ae:
7e:bf:67:7e:21:e9:08:ad:8d:18:74:e2:12:03:65:
3b:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:CA:C6:70:F2:89:17:97:F5:C0:40:64:CE:32:A9:4F:67:51:BA:8A
X509v3 Authority Key Identifier:
keyid:D6:73:D8:49:B7:D5:04:73:76:D5:7E:6F:79:6F:00:18:B7:0B:45:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1nPYSbfVBHN21X5veW8AGLcLRQY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/B8rGcPKJF5f1wEBkzjKpT2dRuoo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/1nPYSbfVBHN21X5veW8AGLcLRQY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:9307::/44
Signature Algorithm: sha256WithRSAEncryption
14:48:9a:46:a9:6b:b5:86:8d:89:53:9e:6f:9d:24:fe:b6:e6:
6a:f9:28:88:1a:c1:3a:5a:cf:49:aa:32:6f:1d:cc:63:65:09:
66:43:4a:71:60:93:fa:9b:08:1a:d8:b2:f2:9b:4a:68:ca:50:
f9:07:7c:26:7f:9b:cb:7b:cb:5a:9d:95:7b:af:7e:d2:75:85:
fe:70:fe:8d:de:ca:1c:b7:0a:2a:6d:1b:b7:20:86:81:82:e3:
52:de:96:59:c1:f2:f4:92:ee:ff:bf:d6:71:e8:0b:9e:e7:b8:
73:93:9d:29:06:af:c5:8d:a8:7b:48:1c:9b:ed:07:e4:b9:12:
8e:45:80:1b:f3:2a:76:ab:de:a4:ff:31:6c:7c:7f:ee:be:58:
05:7f:d0:70:09:7a:6c:1f:09:65:85:9b:70:f3:09:bf:d3:0f:
7e:ba:2c:66:50:b0:54:a5:26:ea:41:4e:3b:32:00:30:88:3f:
9b:46:16:a4:81:b5:15:2a:c0:e5:1a:ea:db:ae:98:de:fa:a0:
dd:66:a8:71:bd:94:79:3c:9a:08:d6:99:e5:98:80:a8:e1:92:
9d:0b:8a:ea:de:74:eb:2d:b5:46:14:bf:09:59:33:53:f7:b6:
84:1b:c0:bb:5d:b1:ea:58:09:11:15:5e:92:a4:bd:a6:3a:5e:
b6:10:19:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:27:42 2024 by rpki-client on console.sobornost.net