Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/fd362f-afcb-4cf5-98c6-0948989e6d55/1/Bphpn12g84SEmlaG-1aOp9hONv4.roa
File: Bphpn12g84SEmlaG-1aOp9hONv4.roa (raw, json)
Hash identifier: 3oa1A37s4soMNHLrWujq1T2GITBLIa0DCtKVoQ6IHY4=
Subject key identifier: 06:98:69:9F:5D:A0:F3:84:84:9A:56:86:FB:56:8E:A7:D8:4E:36:FE
Certificate issuer: /CN=7c3d022a240ce71e0a6e1e9aae0112da840cc34b
Certificate serial: 0193B1E2F924A629FF6E39466878AB97EF33
Authority key identifier: 7C:3D:02:2A:24:0C:E7:1E:0A:6E:1E:9A:AE:01:12:DA:84:0C:C3:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fD0CKiQM5x4Kbh6argES2oQMw0s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/fd362f-afcb-4cf5-98c6-0948989e6d55/1/Bphpn12g84SEmlaG-1aOp9hONv4.roa
Signing time: Tue 10 Dec 2024 18:44:22 +0000
ROA not before: Tue 10 Dec 2024 18:44:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214586
IP address blocks: 2a05:9080:9::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:b1:e2:f9:24:a6:29:ff:6e:39:46:68:78:ab:97:ef:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c3d022a240ce71e0a6e1e9aae0112da840cc34b
Validity
Not Before: Dec 10 18:44:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0698699f5da0f384849a5686fb568ea7d84e36fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:19:b3:81:2f:fd:da:f4:a9:8a:c3:58:5d:45:
11:1b:c9:b2:db:44:5c:a5:f6:14:70:b9:00:1e:01:
e1:98:c3:2d:b8:1a:89:91:01:3a:53:94:8c:ba:83:
9e:07:e1:bb:59:b5:a6:32:08:b7:6a:ef:be:1a:d9:
75:7d:08:7c:70:2b:1f:50:08:5f:31:86:97:7b:35:
3b:90:c7:5e:07:77:3c:d6:2d:63:11:8c:1d:40:2c:
86:8d:32:11:e3:6d:e9:26:ff:53:47:ac:d2:ec:21:
84:48:b9:02:5c:0f:0d:5e:80:0f:d9:da:78:31:1a:
84:7b:1e:6a:b2:40:3f:7a:b5:c8:0c:c7:f8:70:7b:
40:9a:b3:55:47:cb:ed:af:a0:e8:9a:ad:58:c4:54:
89:41:cc:02:b1:63:79:af:85:84:0e:75:a5:4d:29:
ac:2f:64:80:f8:fe:2a:45:f3:75:64:46:7f:14:83:
16:a9:a0:89:c0:2d:5f:76:3d:5c:e5:ee:f9:c4:19:
b5:aa:79:6e:d2:f3:c4:e9:5f:ed:a0:a8:df:f8:9d:
47:80:5c:0f:fa:f2:38:7b:f3:0a:01:29:2e:f7:8d:
fb:db:2d:30:85:c6:8b:00:83:9f:3f:70:4d:a2:9d:
42:a8:54:75:94:80:40:3f:bc:4d:4c:2d:46:26:9d:
c5:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:98:69:9F:5D:A0:F3:84:84:9A:56:86:FB:56:8E:A7:D8:4E:36:FE
X509v3 Authority Key Identifier:
keyid:7C:3D:02:2A:24:0C:E7:1E:0A:6E:1E:9A:AE:01:12:DA:84:0C:C3:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fD0CKiQM5x4Kbh6argES2oQMw0s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/fd362f-afcb-4cf5-98c6-0948989e6d55/1/Bphpn12g84SEmlaG-1aOp9hONv4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/fd362f-afcb-4cf5-98c6-0948989e6d55/1/fD0CKiQM5x4Kbh6argES2oQMw0s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:9080:9::/48
Signature Algorithm: sha256WithRSAEncryption
61:99:c6:d6:45:ae:b4:cf:a3:f5:92:ec:f3:c3:05:ef:68:fc:
c0:eb:9c:35:2c:c3:60:df:a6:2e:4e:a8:eb:98:68:f1:99:ee:
66:25:46:1d:2c:35:d1:35:61:f3:69:d6:96:b4:c9:52:06:06:
f7:75:5c:05:81:0b:df:23:79:01:bc:a9:af:2d:df:f0:41:97:
84:09:56:84:57:08:61:68:ca:ab:41:7b:b2:62:d6:32:55:47:
49:63:52:56:c0:b0:47:bb:1d:a0:8b:c7:eb:e6:b1:68:c2:78:
b9:ef:82:f9:f1:ef:8c:61:24:50:f5:e0:61:46:84:fb:fe:f0:
eb:cd:43:2a:f4:c5:81:5d:aa:65:ef:ee:35:db:ba:c0:d6:71:
15:e5:44:9d:8b:9e:ae:88:c6:e0:34:2c:4b:83:46:1e:0e:25:
4f:a0:d1:1d:36:bf:b8:aa:8e:aa:0e:89:77:23:d5:e2:fc:c0:
fb:e9:4c:94:0f:1a:78:99:30:10:92:c2:bc:dd:39:e2:c3:65:
81:dd:d9:ff:39:d5:12:e3:5f:d4:0d:a8:a4:d4:76:cd:e4:4a:
d9:03:f2:e7:56:5b:8c:0f:1e:fa:b3:ca:07:78:6f:53:9a:06:
71:f1:d6:14:ba:1d:09:16:37:ff:ee:41:a9:5e:e2:fd:76:6d:
7a:e8:e0:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:29:54 2024 by rpki-client on console.sobornost.net