Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/372143-5dba-4dc3-a04b-9fa1e69103b0/1/jNYjnrCMdyWr4TYeDdrvzNYN6LA.roa
File: jNYjnrCMdyWr4TYeDdrvzNYN6LA.roa (raw, json)
Hash identifier: Sx8S0PO9QZSaQiO4C47yD1J4hONoc3n86EqiYDgy8lw=
Subject key identifier: 8C:D6:23:9E:B0:8C:77:25:AB:E1:36:1E:0D:DA:EF:CC:D6:0D:E8:B0
Certificate issuer: /CN=2f2ac25de2d9ba70c463fa95ef3aa5a412c87498
Certificate serial: 0188022E9D482E0D58985808D403553A3660
Authority key identifier: 2F:2A:C2:5D:E2:D9:BA:70:C4:63:FA:95:EF:3A:A5:A4:12:C8:74:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LyrCXeLZunDEY_qV7zqlpBLIdJg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/372143-5dba-4dc3-a04b-9fa1e69103b0/1/jNYjnrCMdyWr4TYeDdrvzNYN6LA.roa
Signing time: Tue 09 May 2023 20:23:09 +0000
ROA not before: Tue 09 May 2023 20:23:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35913
IP address blocks: 2a11:6e40::/32 maxlen: 32
2a11:b1c1::/32 maxlen: 32
2a11:2a47::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:02:2e:9d:48:2e:0d:58:98:58:08:d4:03:55:3a:36:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f2ac25de2d9ba70c463fa95ef3aa5a412c87498
Validity
Not Before: May 9 20:23:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8cd6239eb08c7725abe1361e0ddaefccd60de8b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:00:2d:8d:a1:8b:18:21:a8:8f:2a:d7:59:6f:
de:a2:e7:c4:2e:c5:09:be:7b:e5:25:8d:5e:0a:55:
2d:b3:d1:7b:67:80:c3:5f:d1:62:81:5a:04:dc:59:
13:e7:b4:b3:79:ec:6b:9c:cb:90:11:5c:26:66:16:
a8:94:2b:35:97:ef:96:d5:0c:4e:59:af:ba:d5:b8:
44:10:b6:77:fd:89:00:99:32:24:89:59:9b:e6:b4:
30:89:cb:3c:0e:e9:57:1d:d2:01:39:b3:47:50:ef:
40:ba:e5:0c:78:74:8a:99:fe:e7:ed:cf:44:63:08:
ba:50:eb:15:6b:f3:26:13:de:11:ae:31:47:3f:b4:
91:67:ba:2c:9d:c3:97:db:ed:f3:a9:a0:a9:89:51:
e3:93:d4:90:e5:a0:bb:fc:84:d9:4a:b6:e1:68:9e:
17:9a:85:45:68:81:40:bd:c0:20:32:d9:dc:cc:a0:
b1:19:df:31:e8:b8:6b:c2:38:fa:35:9f:da:c8:64:
b8:b1:8e:ae:54:67:9e:18:d6:6f:d2:14:1c:d3:25:
29:10:39:c6:06:ba:4d:7e:41:24:99:1f:0f:74:68:
07:76:9d:d2:20:0f:41:5e:db:d4:c8:d0:66:b7:f9:
57:29:78:84:3c:b3:e3:9b:a2:b6:ec:15:cb:d1:b4:
ad:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:D6:23:9E:B0:8C:77:25:AB:E1:36:1E:0D:DA:EF:CC:D6:0D:E8:B0
X509v3 Authority Key Identifier:
keyid:2F:2A:C2:5D:E2:D9:BA:70:C4:63:FA:95:EF:3A:A5:A4:12:C8:74:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LyrCXeLZunDEY_qV7zqlpBLIdJg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/372143-5dba-4dc3-a04b-9fa1e69103b0/1/jNYjnrCMdyWr4TYeDdrvzNYN6LA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/372143-5dba-4dc3-a04b-9fa1e69103b0/1/LyrCXeLZunDEY_qV7zqlpBLIdJg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:2a47::/32
2a11:6e40::/32
2a11:b1c1::/32
Signature Algorithm: sha256WithRSAEncryption
95:76:5d:4c:bb:54:d2:d1:c9:16:78:32:83:de:48:18:e7:61:
fe:a0:e8:26:fa:41:af:d1:66:db:cb:b1:71:55:17:86:1c:f4:
b3:f4:1a:fb:a4:c3:1e:84:c8:41:23:9f:db:7b:de:ef:be:22:
bc:f7:4d:62:6e:d9:b5:04:6c:ac:f5:2d:e6:6b:99:88:9a:f8:
f1:de:e1:0c:cc:22:91:51:05:4f:46:df:53:fa:9a:e5:04:23:
ff:af:1e:10:66:8a:e4:42:ab:0c:0c:50:54:60:da:79:30:57:
90:c7:51:5f:f5:4e:1c:71:df:7a:58:52:07:c9:2f:52:5f:3c:
0a:a1:66:4a:0b:88:01:e4:38:f9:93:1a:2b:d5:3c:c7:61:09:
9d:a5:f0:66:77:1d:54:7c:d5:70:cb:a4:bc:81:ac:17:25:3f:
8a:51:d7:01:f7:27:a1:83:86:81:01:b0:68:75:bd:a7:89:56:
3a:12:6f:be:1f:19:80:41:9b:8c:23:bc:3d:bd:20:f2:c5:f1:
d9:80:ad:c3:42:11:83:9b:64:e3:60:3c:2a:90:e3:3d:31:5b:
ed:fe:04:fb:99:7e:3a:bc:67:78:1c:4e:a1:5a:1a:7c:49:e3:
2f:2f:6c:14:8b:04:25:0d:b0:91:79:9d:31:5f:60:86:0b:12:
5f:50:db:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:16 2023 by rpki-client on console.sobornost.net