Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/9a0497-cd0d-48dc-86ae-51c99bc8e8d0/1/RJTZRkgtu7eb0CrOOk4SDg7RltA.roa
File: RJTZRkgtu7eb0CrOOk4SDg7RltA.roa (raw, json)
Hash identifier: Gq1oYsI0rRRxJLjt+69IEWOV1q/8aKoK5Fe7heeJMYs=
Subject key identifier: 44:94:D9:46:48:2D:BB:B7:9B:D0:2A:CE:3A:4E:12:0E:0E:D1:96:D0
Certificate issuer: /CN=ca35f54a3b0e2e48dd5efb3624c1fe0e85fe261d
Certificate serial: 0193F52F68A990B7069ED78A75CA6864155F
Authority key identifier: CA:35:F5:4A:3B:0E:2E:48:DD:5E:FB:36:24:C1:FE:0E:85:FE:26:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yjX1SjsOLkjdXvs2JMH-DoX-Jh0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/9a0497-cd0d-48dc-86ae-51c99bc8e8d0/1/RJTZRkgtu7eb0CrOOk4SDg7RltA.roa
Signing time: Mon 23 Dec 2024 20:22:25 +0000
ROA not before: Mon 23 Dec 2024 20:22:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16509
IP address blocks: 2001:67c:fc0::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:f5:2f:68:a9:90:b7:06:9e:d7:8a:75:ca:68:64:15:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca35f54a3b0e2e48dd5efb3624c1fe0e85fe261d
Validity
Not Before: Dec 23 20:22:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4494d946482dbbb79bd02ace3a4e120e0ed196d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:1c:0d:86:55:bd:2b:db:0e:11:5c:47:c5:b0:
be:c4:f4:42:03:fe:9d:a3:80:16:66:e4:70:70:76:
ee:80:53:6a:9d:c4:6e:b3:77:ac:91:74:09:01:9d:
f5:2c:db:33:15:20:d2:e7:f6:7c:b7:58:24:09:62:
1a:64:7f:80:67:c6:82:bb:65:31:56:c6:ed:ba:f1:
65:b1:db:b1:d2:df:18:49:01:a6:33:e9:dd:cd:21:
b5:df:cb:27:44:4b:3b:16:51:bc:33:1b:5c:66:c7:
d8:88:6a:3d:af:55:95:db:4c:5b:55:42:c4:97:93:
e9:db:76:8b:f2:77:82:46:28:73:be:09:c0:65:e9:
b2:99:46:b7:f1:49:6f:f9:08:43:b3:b1:d4:a6:c1:
f7:3e:b0:b7:f9:e2:8c:1b:a6:d3:62:3d:35:33:01:
60:36:a7:d9:53:b9:dd:7b:28:dd:f5:59:6c:09:f2:
b3:07:dc:dd:d4:46:61:86:99:9b:d7:14:92:25:34:
07:ce:d5:e5:96:9e:ef:b6:b2:00:9f:a5:a8:f8:13:
88:44:c4:42:35:a4:7e:0f:12:c2:e7:14:7a:cb:57:
ba:6c:41:80:92:eb:36:e8:a2:f5:fa:b8:a7:4d:c1:
a8:f7:97:33:3d:d5:c1:f1:e1:7a:b7:66:c3:bb:ec:
91:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:94:D9:46:48:2D:BB:B7:9B:D0:2A:CE:3A:4E:12:0E:0E:D1:96:D0
X509v3 Authority Key Identifier:
keyid:CA:35:F5:4A:3B:0E:2E:48:DD:5E:FB:36:24:C1:FE:0E:85:FE:26:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yjX1SjsOLkjdXvs2JMH-DoX-Jh0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/9a0497-cd0d-48dc-86ae-51c99bc8e8d0/1/RJTZRkgtu7eb0CrOOk4SDg7RltA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/9a0497-cd0d-48dc-86ae-51c99bc8e8d0/1/yjX1SjsOLkjdXvs2JMH-DoX-Jh0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:fc0::/48
Signature Algorithm: sha256WithRSAEncryption
d6:d9:4c:bf:44:93:9c:de:32:c4:51:01:c2:bd:61:2c:09:65:
c6:a1:99:d9:41:fd:20:43:a3:08:24:3c:16:75:b9:a5:bc:5b:
4a:5e:76:36:55:a7:77:dc:54:d9:e3:42:0b:d0:d5:c0:1a:67:
64:ce:cd:2b:99:19:c0:d8:2f:b8:72:8a:a3:49:54:6d:5a:0d:
bf:2b:84:8a:24:39:cb:2f:ab:b2:e7:03:e9:b7:c5:19:a9:62:
41:1d:f2:82:0c:02:45:3a:a1:13:b2:ec:0d:0c:8f:a9:ce:5f:
4b:30:5d:d3:01:04:f4:23:f8:8f:d1:d6:0c:24:5e:ed:22:4f:
42:9b:72:66:f4:82:1c:97:41:70:8d:b6:e3:83:27:85:93:81:
21:ef:1a:8c:1b:bd:5d:d5:a6:31:7d:1b:a3:77:1f:62:ad:77:
cf:54:aa:49:06:c0:54:81:65:b7:c2:b4:bb:89:1a:8a:18:d9:
96:4a:09:f9:4b:63:68:24:4b:88:8f:ef:b9:67:45:40:f3:0c:
15:f7:ce:99:02:cf:71:9c:21:ae:89:af:1c:e3:12:18:2f:6d:
6d:89:28:20:ab:b0:80:ae:c0:c4:f9:17:fe:86:7b:da:aa:17:
8c:db:8a:ea:37:49:95:3f:01:71:10:46:c0:b5:45:67:27:5c:
d7:b1:27:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:29:54 2024 by rpki-client on console.sobornost.net