Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/02c0cf-489d-4fda-9e39-10133232e759/1/TQB3p7s6aK2xOwVZ9U_F3Zg-zMY.roa
File: TQB3p7s6aK2xOwVZ9U_F3Zg-zMY.roa (raw, json)
Hash identifier: ERtIxYum0PqA21HKL0sOLlWtbKEddbi13n9cXPX3zj4=
Subject key identifier: 4D:00:77:A7:BB:3A:68:AD:B1:3B:05:59:F5:4F:C5:DD:98:3E:CC:C6
Certificate issuer: /CN=3b3fff71e59f35063f809fc5eb3af4c419f7bf33
Certificate serial: 0182D5271E5A9D7A588272E4D098A8E66BA3
Authority key identifier: 3B:3F:FF:71:E5:9F:35:06:3F:80:9F:C5:EB:3A:F4:C4:19:F7:BF:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Oz__ceWfNQY_gJ_F6zr0xBn3vzM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/02c0cf-489d-4fda-9e39-10133232e759/1/TQB3p7s6aK2xOwVZ9U_F3Zg-zMY.roa
Signing time: Thu 25 Aug 2022 13:18:06 +0000
ROA not before: Thu 25 Aug 2022 13:18:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208256
IP address blocks: 2a10:1d80::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:d5:27:1e:5a:9d:7a:58:82:72:e4:d0:98:a8:e6:6b:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b3fff71e59f35063f809fc5eb3af4c419f7bf33
Validity
Not Before: Aug 25 13:18:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4d0077a7bb3a68adb13b0559f54fc5dd983eccc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:a3:e1:ed:6b:4d:2f:87:ce:8e:19:49:fd:e3:
e2:c0:e9:16:9b:1d:c8:87:db:08:57:aa:a2:43:e0:
20:7f:e8:09:e3:13:11:63:4c:50:49:a8:f3:6c:d9:
5d:25:40:f1:16:84:90:4c:39:69:c5:af:d9:6f:19:
70:4a:94:6f:36:82:9b:63:72:6a:c5:0f:99:46:c8:
5d:20:9e:2d:21:3b:db:a4:bf:57:d2:a3:48:4f:97:
e6:45:dc:af:89:19:bc:9c:35:3f:f1:9e:8f:bc:76:
ac:55:be:30:fd:e2:b3:18:20:09:a0:16:b4:ce:9b:
7c:53:95:d2:e8:92:ae:9f:18:56:c7:2f:86:dd:84:
ad:fd:e6:3b:7b:9d:ee:79:47:36:bc:c5:75:99:8b:
68:60:eb:f2:11:8a:63:32:a4:1f:d6:66:e8:ab:73:
76:4f:b6:42:a4:56:3c:cb:4f:6b:6a:45:c0:15:db:
82:ff:de:28:3f:ed:b4:f4:8d:63:fb:7e:f3:ae:32:
33:30:57:ae:3b:2a:30:16:f7:24:17:36:ea:87:fa:
98:af:9d:03:fe:56:de:dc:8a:63:2b:3c:a3:04:dc:
80:c0:0c:bb:ad:ec:24:24:0b:54:65:ac:0c:ee:d9:
b6:c5:32:af:83:23:42:b2:b6:4a:ea:65:bb:5c:5d:
e6:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:00:77:A7:BB:3A:68:AD:B1:3B:05:59:F5:4F:C5:DD:98:3E:CC:C6
X509v3 Authority Key Identifier:
keyid:3B:3F:FF:71:E5:9F:35:06:3F:80:9F:C5:EB:3A:F4:C4:19:F7:BF:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Oz__ceWfNQY_gJ_F6zr0xBn3vzM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/02c0cf-489d-4fda-9e39-10133232e759/1/TQB3p7s6aK2xOwVZ9U_F3Zg-zMY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/02c0cf-489d-4fda-9e39-10133232e759/1/Oz__ceWfNQY_gJ_F6zr0xBn3vzM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:1d80::/29
Signature Algorithm: sha256WithRSAEncryption
ac:39:b6:ef:1d:24:4d:eb:42:6d:48:1e:8d:96:e6:70:6c:77:
3a:3b:f4:af:ca:e2:b1:55:4f:df:cf:b4:f5:e5:30:ba:73:0f:
8d:3d:99:43:a7:20:e9:f6:bf:6c:fc:aa:4c:55:54:59:a8:51:
8f:87:f1:15:8f:a5:f4:ff:59:fd:af:20:33:4e:8e:ba:ed:7e:
a9:30:8c:da:e5:09:50:e7:ee:c1:59:99:87:1e:20:d4:b1:73:
b9:31:b3:58:0e:3a:10:d8:ac:b7:68:bd:28:f9:97:8a:08:b9:
8c:0b:13:3c:1d:53:a7:e1:8e:4e:43:5e:64:1f:00:c6:6f:4a:
01:9a:b2:10:d0:78:c7:ff:4c:43:0d:f7:8f:b6:75:27:27:7d:
53:6f:94:8e:7d:76:62:e2:62:35:6a:d6:21:ec:42:3f:78:dc:
7e:2c:2b:da:6e:01:30:3b:f3:a8:6b:48:28:b8:82:e3:d8:1f:
4d:75:be:e2:8f:c7:01:87:67:ad:e2:10:eb:4f:e9:c1:ed:29:
33:23:4c:de:26:62:9c:83:0e:ed:f4:d5:c3:9c:dc:c3:ee:52:
cf:9d:dd:c9:57:c0:7b:9e:2c:0f:bd:b1:c1:d6:33:d9:40:84:
50:19:60:83:8a:21:7f:92:8c:f9:a8:c5:6f:55:97:51:9e:bc:
46:50:3d:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:16 2023 by rpki-client on console.sobornost.net