Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/d03109-e2dc-4bc9-ba2e-d649e227097f/1/9OgKB27gzsCcGw9Nmkpk_BKGYN0.roa
File: 9OgKB27gzsCcGw9Nmkpk_BKGYN0.roa (raw, json)
Hash identifier: IYyjG2po+AE3vOkbCAJiIxqWxTS0/Gs1ClYdWGtWDGY=
Subject key identifier: F4:E8:0A:07:6E:E0:CE:C0:9C:1B:0F:4D:9A:4A:64:FC:12:86:60:DD
Certificate issuer: /CN=52502a29ac06b65e932e1bd97d7fcf29c371cb3d
Certificate serial: 018CEE10641A538B2F8B4D4721824015B392
Authority key identifier: 52:50:2A:29:AC:06:B6:5E:93:2E:1B:D9:7D:7F:CF:29:C3:71:CB:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UlAqKawGtl6TLhvZfX_PKcNxyz0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/d03109-e2dc-4bc9-ba2e-d649e227097f/1/9OgKB27gzsCcGw9Nmkpk_BKGYN0.roa
Signing time: Tue 09 Jan 2024 11:51:40 +0000
ROA not before: Tue 09 Jan 2024 11:51:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57027
IP address blocks: 2a09:2b80:2::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ee:10:64:1a:53:8b:2f:8b:4d:47:21:82:40:15:b3:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52502a29ac06b65e932e1bd97d7fcf29c371cb3d
Validity
Not Before: Jan 9 11:51:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f4e80a076ee0cec09c1b0f4d9a4a64fc128660dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:96:6f:21:8d:9e:32:9b:d6:67:81:b1:ec:07:
4d:53:3d:7c:a2:23:f0:58:34:08:ad:99:0b:3f:30:
13:d0:c9:ec:1d:05:3d:91:fe:62:ac:6d:08:de:89:
e9:bf:5f:43:bb:67:fa:45:5c:3f:f5:17:43:d4:d3:
30:bd:a8:54:22:b4:fc:81:ba:7d:d5:cb:78:93:5d:
ef:04:c6:f3:73:8b:27:04:9d:32:7b:72:d5:2b:8e:
0a:0b:d0:4f:16:46:e2:d8:65:46:7e:85:44:e7:99:
3a:f6:52:70:54:36:f0:2f:7a:35:fb:24:35:ce:77:
09:c2:0f:e7:aa:50:95:3f:8c:ec:d9:5f:e1:32:f9:
28:42:3b:f3:49:fa:d1:53:4d:56:03:f4:27:01:84:
1e:fc:08:24:e1:99:69:c9:4c:44:5c:9b:4d:43:27:
75:93:30:d6:23:47:69:10:4b:3f:4c:41:be:9b:43:
2d:c9:30:91:a0:65:b9:44:68:e0:8a:e0:b2:b2:d1:
37:0c:84:e3:b1:c8:c5:38:44:c1:12:ea:ed:88:13:
13:33:7a:17:11:6e:9a:55:a2:8c:ef:05:03:30:e6:
13:7f:11:c9:4c:28:ee:8f:79:25:8a:6c:62:4e:8d:
3d:66:69:2e:fb:0c:aa:8d:03:3d:c3:f6:a5:3c:fa:
fe:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:E8:0A:07:6E:E0:CE:C0:9C:1B:0F:4D:9A:4A:64:FC:12:86:60:DD
X509v3 Authority Key Identifier:
keyid:52:50:2A:29:AC:06:B6:5E:93:2E:1B:D9:7D:7F:CF:29:C3:71:CB:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UlAqKawGtl6TLhvZfX_PKcNxyz0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/d03109-e2dc-4bc9-ba2e-d649e227097f/1/9OgKB27gzsCcGw9Nmkpk_BKGYN0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/d03109-e2dc-4bc9-ba2e-d649e227097f/1/UlAqKawGtl6TLhvZfX_PKcNxyz0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:2b80:2::/48
Signature Algorithm: sha256WithRSAEncryption
40:ff:c4:45:27:47:07:07:a8:f5:60:52:c9:8b:4f:36:0f:c6:
b0:cd:15:1f:13:8e:97:18:27:02:c5:6b:05:25:04:1d:3b:ee:
17:c3:ae:50:4d:4e:da:aa:47:dd:95:e8:79:f8:88:15:2d:81:
d6:d9:fb:d0:d4:f6:8f:c1:1b:9b:56:08:5c:4a:16:17:b3:34:
7a:be:a3:84:9a:55:49:8c:d4:59:09:4d:f4:d8:f7:42:3e:24:
0a:da:2e:8d:3c:38:99:d7:53:fd:b4:66:b1:67:92:31:b8:8b:
bc:a5:41:85:d3:c2:8b:de:f0:de:19:0a:84:37:3f:01:c0:10:
5c:e8:a3:be:b2:6a:68:c4:91:92:b1:01:38:dc:5a:16:92:ea:
a0:6c:cd:bd:51:ed:9f:d4:65:e8:a5:56:57:90:e3:69:df:63:
d9:95:60:7e:cd:61:40:b9:3f:e4:f2:ae:6a:76:a3:bc:a6:30:
10:3e:3b:9c:05:5b:44:1e:9a:da:26:85:ab:6b:c2:cf:e0:ef:
7c:8a:e0:b4:25:e5:b5:9e:2a:9f:fe:83:ce:c4:75:92:b3:02:
ad:82:18:19:75:c2:58:8f:c3:8a:7f:b1:9a:d9:55:cb:25:8e:
d0:ba:bc:58:97:1b:d8:6b:27:fc:34:83:65:45:3b:db:e7:ca:
c6:61:51:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 16 18:32:10 2024 by rpki-client on console.sobornost.net