Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/9a0497-cd0d-48dc-86ae-51c99bc8e8d0/1/VB_aErX2W6fK8I9psVBWiEl-cUQ.roa
File: VB_aErX2W6fK8I9psVBWiEl-cUQ.roa (raw, json)
Hash identifier: Ax20cg3QJa0NPbV/I9af0fTUqjSoU2oiDOsWc5JimLA=
Subject key identifier: 54:1F:DA:12:B5:F6:5B:A7:CA:F0:8F:69:B1:50:56:88:49:7E:71:44
Certificate issuer: /CN=ca35f54a3b0e2e48dd5efb3624c1fe0e85fe261d
Certificate serial: 0193F52F684BED56046EE252E67C3ACB8FBA
Authority key identifier: CA:35:F5:4A:3B:0E:2E:48:DD:5E:FB:36:24:C1:FE:0E:85:FE:26:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yjX1SjsOLkjdXvs2JMH-DoX-Jh0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/9a0497-cd0d-48dc-86ae-51c99bc8e8d0/1/VB_aErX2W6fK8I9psVBWiEl-cUQ.roa
Signing time: Mon 23 Dec 2024 20:22:24 +0000
ROA not before: Mon 23 Dec 2024 20:22:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 14618
IP address blocks: 2001:67c:fc0::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:f5:2f:68:4b:ed:56:04:6e:e2:52:e6:7c:3a:cb:8f:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca35f54a3b0e2e48dd5efb3624c1fe0e85fe261d
Validity
Not Before: Dec 23 20:22:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=541fda12b5f65ba7caf08f69b1505688497e7144
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:66:87:73:bd:06:ba:a0:0e:93:f0:41:f8:12:
ad:b2:0b:98:1e:eb:f9:0c:4a:9f:03:38:ab:f2:b1:
eb:16:73:12:de:5e:3d:d4:87:b0:65:96:e0:b8:0e:
47:b0:a4:bd:4f:0b:5c:f7:05:64:f8:a8:6b:f9:0b:
77:43:fb:0e:82:f4:df:25:4c:0a:92:4b:91:82:3f:
58:ca:d2:d7:4b:a5:fb:ca:e0:32:48:74:87:fe:45:
b8:c0:1a:1b:0c:24:31:76:a9:ac:b1:34:84:ab:18:
67:7a:d6:39:eb:54:a4:21:56:93:08:5b:09:fc:21:
ac:64:18:ff:ea:30:b6:d6:ae:88:97:3d:95:9b:e1:
51:f4:06:14:76:ad:b1:6b:a6:e1:f7:75:75:98:72:
08:a8:ed:bb:2e:11:36:8a:ac:77:7c:2e:11:21:04:
82:e4:8c:91:12:0d:3d:a0:4f:54:96:ed:e6:b9:25:
46:fa:f9:c6:3a:cd:02:f6:bb:9f:af:55:68:fe:81:
d6:32:cd:10:c2:ea:b7:a1:87:86:60:2a:15:e8:ed:
bd:b1:cb:5a:8b:75:fd:ab:8f:1f:1a:61:b9:07:8e:
1a:a0:e5:78:78:87:58:7f:ee:87:1e:7d:aa:21:f3:
83:48:31:c7:c9:63:f8:13:ee:9e:80:33:dd:e0:8b:
8e:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:1F:DA:12:B5:F6:5B:A7:CA:F0:8F:69:B1:50:56:88:49:7E:71:44
X509v3 Authority Key Identifier:
keyid:CA:35:F5:4A:3B:0E:2E:48:DD:5E:FB:36:24:C1:FE:0E:85:FE:26:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yjX1SjsOLkjdXvs2JMH-DoX-Jh0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/9a0497-cd0d-48dc-86ae-51c99bc8e8d0/1/VB_aErX2W6fK8I9psVBWiEl-cUQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/9a0497-cd0d-48dc-86ae-51c99bc8e8d0/1/yjX1SjsOLkjdXvs2JMH-DoX-Jh0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:fc0::/48
Signature Algorithm: sha256WithRSAEncryption
00:ae:98:05:d7:74:27:94:92:f3:a4:f3:4a:37:9e:8b:69:94:
49:fa:74:02:00:20:65:ae:c1:68:8d:6a:e1:18:c0:08:e3:4a:
90:f7:de:46:36:9a:fc:27:fa:1a:f2:f5:50:be:b2:30:d4:0a:
4f:dc:a9:ab:a9:06:0d:20:e8:c3:d1:32:b1:bb:a8:15:58:f2:
25:21:99:15:4c:b3:8d:76:65:4f:e1:b8:ce:3c:b1:9a:f3:e1:
fe:03:e3:19:68:da:ef:59:a3:c9:82:0d:d4:33:da:f5:e6:ad:
e8:af:27:1d:8b:55:7b:fd:2b:72:89:50:4a:47:19:9d:9e:f3:
9b:21:f6:ca:5f:8b:5f:c7:66:1a:a1:8c:2f:af:54:06:fb:5e:
16:ac:f8:67:9a:df:c6:99:9d:9c:ae:af:49:c8:87:ae:36:8b:
74:a5:f5:d4:ae:7a:d7:a0:13:fb:7d:b6:85:5c:e6:1f:dc:b7:
20:f0:ac:94:e8:4c:0a:07:a5:39:03:b5:68:20:0b:20:0f:12:
48:83:4e:6e:c2:35:6e:4d:2c:d9:fc:19:b5:fe:fb:32:62:be:
02:4e:ef:5f:83:c0:4e:42:75:4f:f4:e5:a0:18:9b:96:ec:c2:
be:d3:9b:68:56:a0:52:d8:b0:6a:1c:aa:c3:c7:54:7d:2e:ea:
f6:33:31:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:29:54 2024 by rpki-client on console.sobornost.net