Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/cc7247-6f0c-4b74-8690-051076744a65/1/Y0Ub2Pgc_7We7E9haGECDX8eC4Q.roa
File: Y0Ub2Pgc_7We7E9haGECDX8eC4Q.roa (raw, json)
Hash identifier: rJNZuKrgLClW/R8CgxFQ/iDBT+CBhbZEOkpEVaouqq4=
Subject key identifier: 63:45:1B:D8:F8:1C:FF:B5:9E:EC:4F:61:68:61:02:0D:7F:1E:0B:84
Certificate issuer: /CN=6b3a735d09aaa7970def12c4ac60e827fdb3f825
Certificate serial: 01939B9D6170D2EFAF174114F355F106B1AD
Authority key identifier: 6B:3A:73:5D:09:AA:A7:97:0D:EF:12:C4:AC:60:E8:27:FD:B3:F8:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/azpzXQmqp5cN7xLErGDoJ_2z-CU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/cc7247-6f0c-4b74-8690-051076744a65/1/Y0Ub2Pgc_7We7E9haGECDX8eC4Q.roa
Signing time: Fri 06 Dec 2024 10:56:42 +0000
ROA not before: Fri 06 Dec 2024 10:56:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 32931
IP address blocks: 2a0b:2280::/29 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:9b:9d:61:70:d2:ef:af:17:41:14:f3:55:f1:06:b1:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b3a735d09aaa7970def12c4ac60e827fdb3f825
Validity
Not Before: Dec 6 10:56:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=63451bd8f81cffb59eec4f616861020d7f1e0b84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:a9:9b:87:97:b2:63:66:31:36:1a:71:22:be:
43:c8:c0:9e:ee:7f:71:85:7f:f6:4c:a1:3c:e1:14:
ec:98:d4:ff:d9:2d:46:c1:95:9f:a2:36:b8:14:94:
4e:c1:c7:78:3a:33:d2:90:8b:0d:23:01:94:2a:1e:
9b:20:5c:e4:5f:6d:a2:2d:d0:6a:46:46:6c:1e:d6:
ae:02:c7:82:28:11:83:3d:f6:ec:f5:90:5e:e5:d4:
74:e7:5f:dc:f7:1f:0f:74:51:aa:03:1f:81:86:c6:
23:aa:1b:1b:85:3f:e7:2c:8c:f5:b7:6e:2e:fe:ab:
7a:c6:80:ee:f5:47:15:b6:5a:ce:2f:f9:59:7d:d3:
f3:cf:8a:9d:3a:98:b1:b3:81:57:ed:6e:7e:b2:c4:
27:5e:62:98:55:3a:e9:c1:d3:d3:8a:08:a3:88:cd:
15:bd:24:5c:da:0d:e7:43:49:56:ac:e9:eb:fd:74:
aa:c4:00:d0:60:65:b9:44:de:69:dc:78:c1:04:b8:
71:7d:6e:f3:47:d0:79:e2:79:69:29:4c:36:5e:12:
28:e5:d4:aa:72:94:c4:e0:a2:46:45:51:14:ed:a0:
50:8f:42:bc:da:ba:af:d3:c3:b9:34:75:17:ac:6c:
d9:1f:6f:69:17:4a:43:a7:03:f1:45:52:08:c6:b4:
7b:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:45:1B:D8:F8:1C:FF:B5:9E:EC:4F:61:68:61:02:0D:7F:1E:0B:84
X509v3 Authority Key Identifier:
keyid:6B:3A:73:5D:09:AA:A7:97:0D:EF:12:C4:AC:60:E8:27:FD:B3:F8:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/azpzXQmqp5cN7xLErGDoJ_2z-CU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/cc7247-6f0c-4b74-8690-051076744a65/1/Y0Ub2Pgc_7We7E9haGECDX8eC4Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/cc7247-6f0c-4b74-8690-051076744a65/1/azpzXQmqp5cN7xLErGDoJ_2z-CU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:2280::/29
Signature Algorithm: sha256WithRSAEncryption
bf:4e:1b:a2:32:80:fc:d3:6e:8c:62:40:2a:92:ae:60:2b:ef:
ad:a7:75:0d:84:7b:48:48:e2:22:da:ca:72:6a:5c:e5:f8:35:
28:eb:bb:f1:2e:70:51:39:a9:87:1e:2f:de:45:4e:01:48:97:
2f:87:ce:8d:f0:c2:11:12:cd:aa:e1:ce:d9:19:6b:97:4a:a5:
ef:9a:7d:3d:cc:92:04:9d:a2:a2:1d:ba:f3:bc:93:6b:0f:73:
e4:77:72:de:a7:47:3b:9f:89:48:e8:d9:c0:3d:cf:7c:cb:5f:
04:1e:77:66:64:6d:df:62:94:dd:1d:81:ff:6d:b1:d9:3c:97:
de:d9:be:84:7c:12:5d:81:de:db:17:3f:f4:1a:3f:e6:56:b8:
49:75:91:71:e0:da:4a:ff:39:d1:bd:ee:d6:a8:cf:fb:50:6e:
22:22:d1:b5:3c:81:b4:4b:02:b1:d1:f2:89:26:21:bb:59:03:
f6:8a:da:a6:8a:d9:e3:f9:a7:92:24:e8:e8:16:c1:ca:b8:2f:
ac:b6:2f:b9:a9:8e:b2:8c:55:d1:7f:85:85:1f:a1:14:62:ac:
bb:2d:e1:c2:ca:8c:5c:35:85:df:53:bc:d9:de:ed:08:47:e4:
ff:12:95:dd:13:55:e3:6c:58:e2:b5:d0:ed:00:c3:85:83:ba:
07:9e:c2:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:29:41 2024 by rpki-client on console.sobornost.net