Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/b1083d-c078-415e-8d9d-576337e50dc4/1/cDSjLWUGa6Rol9fiOWObbe98It4.roa
File: cDSjLWUGa6Rol9fiOWObbe98It4.roa (raw, json)
Hash identifier: 2DQksqCntB0+J9W8vVM4yoJqWBcwXXJs3fsUxZUe7D0=
Subject key identifier: 70:34:A3:2D:65:06:6B:A4:68:97:D7:E2:39:63:9B:6D:EF:7C:22:DE
Certificate issuer: /CN=70f4d606e1d17908063977b69877682ed7e2d1ef
Certificate serial: 01928F06AAF39087516AA3E012AB12975D4B
Authority key identifier: 70:F4:D6:06:E1:D1:79:08:06:39:77:B6:98:77:68:2E:D7:E2:D1:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cPTWBuHReQgGOXe2mHdoLtfi0e8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/b1083d-c078-415e-8d9d-576337e50dc4/1/cDSjLWUGa6Rol9fiOWObbe98It4.roa
Signing time: Tue 15 Oct 2024 07:13:51 +0000
ROA not before: Tue 15 Oct 2024 07:13:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25400
IP address blocks: 2001:678:69c::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:8f:06:aa:f3:90:87:51:6a:a3:e0:12:ab:12:97:5d:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70f4d606e1d17908063977b69877682ed7e2d1ef
Validity
Not Before: Oct 15 07:13:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7034a32d65066ba46897d7e239639b6def7c22de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:76:2d:26:26:c6:d1:e0:58:07:89:d6:14:be:
83:c5:c8:bc:43:7c:8a:75:60:de:71:99:c6:79:87:
94:30:c8:e7:77:30:3f:a8:47:f1:d3:c8:0a:79:47:
74:18:ed:63:85:8f:f9:1b:2e:4e:6b:46:cb:e4:5e:
c3:40:1d:b2:97:07:5c:02:ed:db:9f:96:0b:b0:ef:
ce:27:85:28:84:45:02:04:8c:16:37:10:85:0c:fd:
33:47:e3:72:1e:f9:09:1c:cd:b4:08:48:ed:38:2b:
6e:b0:8c:32:ec:35:49:c6:80:93:df:52:53:a0:e7:
1f:1c:5d:4c:1a:1e:49:cb:79:48:d7:91:63:65:ef:
f5:d9:5d:79:c0:a9:ad:b6:ed:55:97:14:bc:24:f0:
2f:90:0d:59:ec:21:36:f8:66:bb:3e:fd:9c:f2:ab:
a4:fd:60:d8:8c:93:e9:b5:34:32:ae:a2:56:f7:89:
01:64:4d:d5:fe:30:41:7d:7a:a6:77:67:cb:e4:c1:
d1:c5:dc:67:b3:e9:41:25:5b:99:77:ed:3d:fd:3e:
88:27:5b:dd:58:79:40:4a:fc:cf:39:61:d0:cd:4e:
da:86:7b:02:05:13:88:24:ef:4d:20:a1:e5:45:84:
90:5b:8e:4e:56:fb:cb:aa:75:30:69:cd:2e:80:35:
c9:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:34:A3:2D:65:06:6B:A4:68:97:D7:E2:39:63:9B:6D:EF:7C:22:DE
X509v3 Authority Key Identifier:
keyid:70:F4:D6:06:E1:D1:79:08:06:39:77:B6:98:77:68:2E:D7:E2:D1:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cPTWBuHReQgGOXe2mHdoLtfi0e8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/b1083d-c078-415e-8d9d-576337e50dc4/1/cDSjLWUGa6Rol9fiOWObbe98It4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/b1083d-c078-415e-8d9d-576337e50dc4/1/cPTWBuHReQgGOXe2mHdoLtfi0e8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:69c::/48
Signature Algorithm: sha256WithRSAEncryption
3c:8f:45:57:f8:c7:52:dc:69:fa:97:3c:d9:6c:98:7f:00:1f:
c8:b3:3e:a3:c2:16:a6:e4:09:1b:a7:22:d0:85:f4:6f:e3:0c:
3b:aa:75:8d:2f:a2:22:10:f8:56:bd:14:dc:60:75:16:b8:75:
a4:1c:f7:13:9c:b9:90:88:cd:c1:25:21:c4:cc:fd:bf:87:ce:
e3:b6:d1:f0:ce:78:36:77:3d:06:7e:5f:73:dd:63:85:8f:0d:
59:3a:92:29:66:3b:ac:81:8f:0f:4c:76:f7:67:43:15:ed:c5:
c5:9b:f1:6e:55:82:01:1d:bf:6f:49:2e:cc:32:f8:d0:62:e9:
77:73:0a:81:32:d5:90:15:bd:12:26:bc:7b:99:50:fd:94:79:
ca:8e:21:2c:76:2c:c9:98:7f:6b:8b:71:74:5e:72:4e:eb:dc:
42:ad:27:ca:65:96:10:6b:2b:94:90:ff:cc:e9:9c:78:93:00:
7e:ac:86:be:bb:92:1f:5e:44:8f:6c:09:cd:16:a8:e1:15:2c:
26:f0:bc:ed:00:71:4b:56:4b:95:17:ec:31:14:d6:6a:31:34:
42:79:0f:c4:b8:43:49:39:de:03:0a:c1:ce:04:da:62:86:c0:
91:52:f4:f4:44:e2:85:b9:ab:3a:7a:a3:95:b3:c9:e3:0b:02:
85:cd:ca:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:29:50 2024 by rpki-client on console.sobornost.net