Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/b45765-2c33-4a49-91eb-946892f88beb/1/i_-XUVQMgSyCFbx1tsU7767j5p0.roa
File: i_-XUVQMgSyCFbx1tsU7767j5p0.roa (raw, json)
Hash identifier: KDekDkOWxEwaRiy4KzggtQJt9FoZ/7lD6Z5zynu9CPs=
Subject key identifier: 8B:FF:97:51:54:0C:81:2C:82:15:BC:75:B6:C5:3B:EF:AE:E3:E6:9D
Certificate issuer: /CN=6cf9b24f2c0847d041c1e66a12f01eaba478b4fc
Certificate serial: 019222E0287B6CDB962A674C70E8C1B6A360
Authority key identifier: 6C:F9:B2:4F:2C:08:47:D0:41:C1:E6:6A:12:F0:1E:AB:A4:78:B4:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bPmyTywIR9BBweZqEvAeq6R4tPw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/b45765-2c33-4a49-91eb-946892f88beb/1/i_-XUVQMgSyCFbx1tsU7767j5p0.roa
Signing time: Tue 24 Sep 2024 07:12:48 +0000
ROA not before: Tue 24 Sep 2024 07:12:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208168
IP address blocks: 2a0f:2480::/29 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:22:e0:28:7b:6c:db:96:2a:67:4c:70:e8:c1:b6:a3:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cf9b24f2c0847d041c1e66a12f01eaba478b4fc
Validity
Not Before: Sep 24 07:12:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8bff9751540c812c8215bc75b6c53befaee3e69d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:cf:f6:10:16:31:27:bc:b5:9c:09:c9:55:29:
e2:33:74:ec:59:78:ae:3b:f6:e9:9f:c8:50:fa:7b:
e2:85:e4:e3:fc:ef:79:74:d9:d3:81:81:09:3a:b0:
b5:64:ae:87:9c:1d:1b:b8:b9:0e:63:1b:ae:3e:21:
08:2c:e8:3b:0a:63:0d:e1:c9:3d:e3:83:b4:d3:99:
b4:22:16:92:42:41:31:7b:f7:8f:33:8b:d6:e6:ce:
6d:62:9a:49:19:4e:2e:18:a5:54:bf:c2:de:5c:bc:
a7:fa:5a:ad:2c:ad:bd:ed:ef:3c:a9:89:3a:b4:f6:
a9:d1:e8:1a:e1:22:40:ac:ec:6d:0e:c2:d0:96:2e:
f5:04:b9:da:4b:a1:4e:96:cf:c2:d3:8a:16:c8:fc:
6f:c2:9f:87:0a:10:77:24:93:27:d6:7a:f8:65:76:
58:78:49:47:a8:ee:be:21:95:fc:eb:84:04:9f:0d:
92:26:70:b5:18:bd:7f:27:43:54:c4:e0:1c:7f:d3:
e6:a1:95:9b:bf:93:4f:7e:e7:11:33:68:79:b5:ec:
ae:df:49:1a:4a:61:e8:76:d1:64:70:72:a5:f0:64:
50:be:7b:57:21:76:c1:74:e7:e6:88:06:d0:f5:5d:
53:38:53:43:1f:27:02:b0:c5:99:80:2a:72:70:9d:
94:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:FF:97:51:54:0C:81:2C:82:15:BC:75:B6:C5:3B:EF:AE:E3:E6:9D
X509v3 Authority Key Identifier:
keyid:6C:F9:B2:4F:2C:08:47:D0:41:C1:E6:6A:12:F0:1E:AB:A4:78:B4:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bPmyTywIR9BBweZqEvAeq6R4tPw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/b45765-2c33-4a49-91eb-946892f88beb/1/i_-XUVQMgSyCFbx1tsU7767j5p0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/b45765-2c33-4a49-91eb-946892f88beb/1/bPmyTywIR9BBweZqEvAeq6R4tPw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:2480::/29
Signature Algorithm: sha256WithRSAEncryption
a0:8c:38:59:7e:e8:48:e0:88:29:58:1b:60:98:29:84:3e:ef:
14:0b:9c:31:b9:de:f8:03:d3:d7:13:f4:3e:7d:d4:b7:8f:09:
b0:24:9d:11:8d:47:a0:7b:26:b6:c3:be:96:39:56:08:8e:20:
1c:3b:9b:be:a4:50:ae:22:46:84:93:1e:46:12:7a:03:4e:6c:
e9:cd:c0:6d:ff:5a:6f:fc:0a:7d:0d:9a:19:28:32:b3:af:dc:
16:c7:d8:5b:b7:c5:e1:aa:ce:7e:90:d7:ce:0b:be:e1:45:ab:
a2:71:6d:28:f2:9a:9f:93:98:30:dc:8b:5f:32:69:f3:46:b8:
4b:a9:8f:81:22:b1:f6:f4:da:e4:fb:ea:37:c6:0d:9b:a1:f7:
68:94:27:e0:be:bf:92:16:55:79:cb:6b:6f:b8:88:b3:b8:b3:
ec:6a:04:cd:24:08:4d:d5:32:c6:53:78:57:ab:55:d0:d3:80:
76:30:32:86:59:f3:1c:73:52:33:24:66:24:a3:17:50:dc:f7:
6a:ea:97:d8:9c:7d:b9:b8:53:c8:c8:63:f0:1c:8a:54:a8:78:
00:53:1e:9d:de:c8:13:b1:3b:a7:7b:aa:c1:c2:33:0a:cb:89:
64:eb:f2:ad:0b:53:28:64:47:78:20:01:a1:6c:00:81:a0:a0:
34:39:6f:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:29:26 2024 by rpki-client on console.sobornost.net