Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/lqvw0jZlrLwl7ISomVqtWKlpesQ.roa
File: lqvw0jZlrLwl7ISomVqtWKlpesQ.roa (raw, json)
Hash identifier: gr63ePqSrGr9FMdlJGsUpgSV2abPn4Hafn2/BFNu1og=
Subject key identifier: 96:AB:F0:D2:36:65:AC:BC:25:EC:84:A8:99:5A:AD:58:A9:69:7A:C4
Certificate issuer: /CN=58ad60da52671e9083cf39864eca2aa23241be9e
Certificate serial: 01935582B79C1F7BAF1C5B06747503684CEC
Authority key identifier: 58:AD:60:DA:52:67:1E:90:83:CF:39:86:4E:CA:2A:A2:32:41:BE:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WK1g2lJnHpCDzzmGTsoqojJBvp4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/lqvw0jZlrLwl7ISomVqtWKlpesQ.roa
Signing time: Fri 22 Nov 2024 20:14:10 +0000
ROA not before: Fri 22 Nov 2024 20:14:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201207
IP address blocks: 2a13:bd40::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:55:82:b7:9c:1f:7b:af:1c:5b:06:74:75:03:68:4c:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58ad60da52671e9083cf39864eca2aa23241be9e
Validity
Not Before: Nov 22 20:14:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=96abf0d23665acbc25ec84a8995aad58a9697ac4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:47:5c:33:b1:11:98:21:36:19:22:76:4f:47:
10:75:b4:07:ed:fe:76:b6:f1:c3:dc:09:27:7c:e3:
5f:f6:6c:f4:98:e4:50:1e:91:2c:5c:93:d5:cc:00:
3f:85:ed:c1:31:07:69:4f:a8:ab:2f:41:fc:4e:8e:
4a:e7:14:de:48:e2:9d:34:be:1e:5e:9f:65:8d:37:
31:69:63:69:80:d7:66:29:d0:6e:3f:04:43:85:e2:
25:76:31:e1:53:9a:b8:ed:f4:18:f8:15:d2:d7:7a:
c6:15:51:14:02:6c:3a:cf:eb:f5:e9:ac:14:60:ff:
70:3e:9d:52:73:24:88:d2:5b:e4:f6:cb:05:2c:82:
08:49:3b:bb:e0:c3:05:9f:f8:6d:66:35:f4:eb:00:
98:ea:6d:05:b2:c4:82:77:54:5e:2d:1c:e6:8e:66:
1c:76:68:62:e9:74:e3:64:55:24:06:81:19:de:3b:
a3:1e:be:a2:65:90:61:c2:ca:cc:a1:0b:b0:8a:9d:
7f:d2:c0:42:70:7a:c5:41:ff:e1:d9:11:67:6d:0e:
d1:49:da:05:e4:b4:4d:67:8e:7f:e1:69:a1:80:0a:
4d:09:d3:47:20:17:44:61:58:fa:23:df:72:e3:a6:
de:56:ce:1c:91:fa:53:71:41:e5:96:0f:11:b6:1b:
c5:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:AB:F0:D2:36:65:AC:BC:25:EC:84:A8:99:5A:AD:58:A9:69:7A:C4
X509v3 Authority Key Identifier:
keyid:58:AD:60:DA:52:67:1E:90:83:CF:39:86:4E:CA:2A:A2:32:41:BE:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WK1g2lJnHpCDzzmGTsoqojJBvp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/lqvw0jZlrLwl7ISomVqtWKlpesQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/WK1g2lJnHpCDzzmGTsoqojJBvp4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:bd40::/29
Signature Algorithm: sha256WithRSAEncryption
03:5a:3c:90:fc:21:53:98:0b:a3:a0:7d:69:f7:ba:9b:cc:d1:
87:80:ec:3c:1f:a8:b4:ef:30:65:12:d6:98:65:38:91:8c:b5:
f8:85:57:4a:f5:05:46:1c:1d:e6:ab:0c:5e:c3:12:ff:c9:f1:
8f:dc:a2:06:f5:65:e2:7e:c0:ad:3a:a6:8f:57:33:40:56:20:
1e:d4:29:7d:64:dd:6a:c5:e7:92:fc:62:0e:4f:54:bf:0a:59:
c8:0b:ff:d0:df:2a:4d:2f:83:b9:ce:5a:b6:67:51:37:70:62:
6d:63:40:5d:72:58:24:67:33:2b:cb:26:6b:13:c5:84:11:4c:
82:ac:20:a4:50:4f:ad:d5:ab:de:03:08:35:34:f1:69:19:c1:
66:69:99:54:e6:b3:71:50:96:d0:e9:55:25:7c:28:ae:9a:3a:
23:2a:40:0a:35:ee:c0:b0:92:20:f6:0c:a8:95:4d:5b:22:2d:
2c:80:f2:12:4a:dd:5a:30:93:82:9c:1a:9e:45:55:d8:2e:ae:
3f:4d:8a:a3:2f:29:6e:05:45:d0:87:c8:66:ad:05:78:d8:57:
c2:a8:aa:9e:77:40:a8:22:74:5d:f4:ee:9f:b5:4b:aa:68:58:
a6:30:d1:11:c9:23:95:cc:b7:9e:13:f3:f5:18:7f:9d:0b:43:
82:26:94:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:29:39 2024 by rpki-client on console.sobornost.net