Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/83f977-82b8-4695-9c08-1896555a2f0e/1/BaqEOd8WP059LzMRDsSaVP8QqUc.roa
File: BaqEOd8WP059LzMRDsSaVP8QqUc.roa (raw, json)
Hash identifier: zUfC84uoUeKj7I8rZlvbWahFa3pTFEd/JcH8qHHfwbM=
Subject key identifier: 05:AA:84:39:DF:16:3F:4E:7D:2F:33:11:0E:C4:9A:54:FF:10:A9:47
Certificate issuer: /CN=828bbad6f4916842bbe320284fafe10caf59edf0
Certificate serial: 0193D3CDA665157CE9C3CCAAEC833ECD64DC
Authority key identifier: 82:8B:BA:D6:F4:91:68:42:BB:E3:20:28:4F:AF:E1:0C:AF:59:ED:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gou61vSRaEK74yAoT6_hDK9Z7fA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/83f977-82b8-4695-9c08-1896555a2f0e/1/BaqEOd8WP059LzMRDsSaVP8QqUc.roa
Signing time: Tue 17 Dec 2024 08:48:10 +0000
ROA not before: Tue 17 Dec 2024 08:48:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51720
IP address blocks: 2a00:d340:ffff::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:d3:cd:a6:65:15:7c:e9:c3:cc:aa:ec:83:3e:cd:64:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=828bbad6f4916842bbe320284fafe10caf59edf0
Validity
Not Before: Dec 17 08:48:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=05aa8439df163f4e7d2f33110ec49a54ff10a947
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:6f:47:b3:0a:fc:2e:22:00:80:a4:87:3f:a1:
07:f2:2a:0c:95:ad:c9:fa:38:a7:f5:ba:01:fa:36:
f3:fb:aa:2e:5c:61:26:01:36:35:25:7d:0c:da:12:
53:96:80:0c:df:d9:4e:2f:f5:2e:e2:ec:1b:a7:11:
3f:60:bf:d4:d4:b6:a8:c4:c2:d3:6c:52:f4:1c:43:
8d:2b:1c:e0:54:75:21:80:a0:58:26:2b:73:46:8b:
fe:30:8e:0d:48:1f:9b:44:49:64:57:cf:32:4c:8e:
44:bd:b1:8f:ac:70:c6:71:ac:e4:8d:c6:55:f9:59:
5f:10:e7:74:fb:3e:93:4c:a1:d7:2f:fc:ce:5d:33:
75:65:a2:c1:5c:bc:31:0a:a6:b8:5e:17:ee:56:65:
ae:9e:da:43:bd:9a:70:61:68:e0:16:84:17:9b:63:
25:48:c2:92:51:a1:77:bf:38:99:b6:05:ef:d2:34:
54:e3:da:e3:e6:86:c5:3e:82:46:21:0f:c1:44:46:
34:c3:e9:f0:b6:f1:73:99:e5:9a:a8:f3:60:5f:3f:
f6:a7:56:47:d3:54:7e:cc:29:cf:cd:5a:b7:ba:10:
b1:df:35:55:75:4f:9a:35:68:70:fb:bd:48:b5:e6:
d5:cf:ef:3d:30:85:68:37:c7:b1:95:0a:86:19:1e:
18:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:AA:84:39:DF:16:3F:4E:7D:2F:33:11:0E:C4:9A:54:FF:10:A9:47
X509v3 Authority Key Identifier:
keyid:82:8B:BA:D6:F4:91:68:42:BB:E3:20:28:4F:AF:E1:0C:AF:59:ED:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gou61vSRaEK74yAoT6_hDK9Z7fA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/83f977-82b8-4695-9c08-1896555a2f0e/1/BaqEOd8WP059LzMRDsSaVP8QqUc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/83f977-82b8-4695-9c08-1896555a2f0e/1/gou61vSRaEK74yAoT6_hDK9Z7fA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:d340:ffff::/48
Signature Algorithm: sha256WithRSAEncryption
0d:0c:ce:84:6b:8e:1c:57:c9:58:56:fb:c3:a6:c1:9a:5a:61:
81:4b:c3:6a:f4:09:2b:c8:72:85:fa:4a:7f:4d:21:ec:a8:20:
41:0f:2b:fe:1c:db:87:49:d7:8f:78:6f:fb:73:2e:26:12:0b:
a3:c7:0e:ef:a0:3a:ff:9e:8c:e2:09:90:14:63:93:a4:97:ce:
e2:de:92:ff:f0:26:31:3a:58:0a:a0:86:21:34:67:f1:82:bc:
5f:5d:0d:6e:89:2e:84:bb:f6:07:9b:08:0e:71:6f:7b:aa:3a:
c8:66:d2:0e:2e:28:45:cf:1b:76:9c:27:cf:ab:19:ec:65:43:
65:a1:96:37:8c:b5:62:e0:8b:94:a6:ba:c2:a7:f9:13:f4:10:
8f:d7:23:8c:7c:69:c9:a3:d2:64:44:b1:da:4a:9c:60:de:85:
e6:79:1c:b2:d1:ec:22:f7:a8:e6:35:8b:47:88:e4:f6:ee:93:
1a:f2:ba:a3:2b:45:66:32:c5:e6:04:16:88:b7:d3:56:e0:d0:
6f:32:ac:b8:ed:58:6d:a4:0a:e9:7a:c5:6c:25:0d:22:92:c9:
47:23:4a:6b:c5:3f:d1:18:2c:07:12:86:5b:8e:69:45:03:0f:
f6:91:73:bf:58:ae:77:67:fc:d7:84:79:bb:65:80:46:16:2e:
68:21:06:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:29:27 2024 by rpki-client on console.sobornost.net