Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/1-LBNqjog0v6Alu1GMG3uORBB3zI.roa
File: 1-LBNqjog0v6Alu1GMG3uORBB3zI.roa (raw, json)
Hash identifier: 2pp3ZBRMZEcQ5kTpxlm0GVRnNi2kdcv9gEebXtv6OD4=
Subject key identifier: F8:B0:4D:AA:3A:20:D2:FE:80:96:ED:46:30:6D:EE:39:10:41:DF:32
Certificate issuer: /CN=cfcead390625edba1408108df57cea47160d70e5
Certificate serial: 018D7E42FBE08EB4EFEED7CBBDB6D7200310
Authority key identifier: CF:CE:AD:39:06:25:ED:BA:14:08:10:8D:F5:7C:EA:47:16:0D:70:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z86tOQYl7boUCBCN9XzqRxYNcOU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/1-LBNqjog0v6Alu1GMG3uORBB3zI.roa
Signing time: Tue 06 Feb 2024 11:52:15 +0000
ROA not before: Tue 06 Feb 2024 11:52:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215575
IP address blocks: 2a0f:7803:fb20::/44 maxlen: 48
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7e:42:fb:e0:8e:b4:ef:ee:d7:cb:bd:b6:d7:20:03:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfcead390625edba1408108df57cea47160d70e5
Validity
Not Before: Feb 6 11:52:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f8b04daa3a20d2fe8096ed46306dee391041df32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:a5:a1:f9:5c:95:25:b9:3b:9d:17:ac:b3:15:
c8:50:00:92:df:f8:48:dc:79:86:8c:f3:9f:b8:92:
ef:d1:07:af:7a:d8:e7:83:39:74:41:6c:35:32:b9:
24:b7:d3:cf:8a:b1:55:9a:4e:81:5c:03:c2:b6:f5:
50:02:13:e7:11:41:4f:2d:49:4a:13:12:cc:fc:26:
f6:d4:37:e7:77:32:3e:7d:88:b9:d3:0c:ff:2d:ce:
7a:24:35:4c:cc:9f:de:c4:88:ee:19:f1:2e:3c:3e:
4d:71:27:f7:96:2a:45:87:85:c4:12:fd:47:08:bb:
02:eb:bc:76:66:2e:08:76:31:5e:89:ae:8f:01:2d:
87:a0:0c:4d:22:82:2e:79:2f:4e:7a:e9:da:0c:5e:
f1:06:4a:5d:da:dc:25:ea:71:b7:5f:43:c3:51:0a:
0f:c7:a9:7d:98:df:e5:82:55:9c:26:38:86:6f:5d:
e4:5d:28:cb:e6:96:cd:74:73:97:d4:fb:ae:12:1e:
ff:46:24:11:84:42:22:1b:4f:84:04:7a:ef:fa:04:
d3:4f:4c:f4:95:cc:88:b3:58:e1:d3:a9:0f:c0:2a:
08:56:2b:30:ad:e9:8f:14:c0:cd:8e:a2:16:80:5c:
aa:e9:d7:ef:27:5f:be:cd:5b:b8:a6:f1:5b:fe:c5:
91:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:B0:4D:AA:3A:20:D2:FE:80:96:ED:46:30:6D:EE:39:10:41:DF:32
X509v3 Authority Key Identifier:
keyid:CF:CE:AD:39:06:25:ED:BA:14:08:10:8D:F5:7C:EA:47:16:0D:70:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z86tOQYl7boUCBCN9XzqRxYNcOU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/1-LBNqjog0v6Alu1GMG3uORBB3zI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/z86tOQYl7boUCBCN9XzqRxYNcOU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:7803:fb20::/44
Signature Algorithm: sha256WithRSAEncryption
9d:01:5a:d8:b6:13:64:0e:2e:9b:94:01:ac:ec:55:39:1b:8c:
ec:2b:6d:c2:d1:c5:2f:67:35:42:9a:22:40:d8:0e:9f:10:ce:
bd:64:7a:83:1b:fe:7b:a8:4f:d9:3b:e3:b6:07:03:92:c2:45:
2b:98:df:e8:8f:bb:31:fc:ee:34:27:da:ff:3d:ef:a8:73:9d:
d1:72:b1:b9:7b:aa:4b:4c:79:58:51:a4:c0:ed:05:d7:9a:aa:
a2:ed:1a:ee:b2:96:c7:fe:df:31:d5:af:d9:01:4b:d1:3c:77:
ec:a9:1c:0a:11:c1:9b:5f:12:5d:95:76:4c:d8:22:91:b6:1b:
7d:73:95:e3:52:b0:e9:80:73:a5:c0:47:59:d0:3c:27:7e:7f:
b2:1a:b5:df:f4:6d:41:81:e9:a4:cb:7e:f4:5f:c4:48:e1:d7:
37:52:8c:43:3d:e0:6b:24:b0:ec:bb:26:5f:6f:48:d0:7c:d1:
c2:5d:69:4e:8e:e6:57:c5:df:5d:0c:f5:52:cd:a4:06:40:ec:
67:75:23:97:39:9c:07:1f:9a:60:a0:36:38:40:4c:cc:33:09:
62:5e:18:ce:49:82:a5:73:68:4f:f6:de:f9:9a:e7:16:12:37:
ee:ec:45:1c:0d:08:a9:d1:e8:17:c5:66:8f:0c:82:25:b8:b8:
2d:f7:28:61
-----BEGIN CERTIFICATE-----
MIIFATCCA+mgAwIBAgISAY1+QvvgjrTv7tfLvbbXIAMQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNmY2VhZDM5MDYyNWVkYmExNDA4MTA4ZGY1N2NlYTQ3MTYw
ZDcwZTUwHhcNMjQwMjA2MTE1MjE1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmOGIwNGRhYTNhMjBkMmZlODA5NmVkNDYzMDZkZWUzOTEwNDFkZjMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh6Wh+VyVJbk7nRessxXIUACS3/hI
3HmGjPOfuJLv0Qevetjngzl0QWw1Mrkkt9PPirFVmk6BXAPCtvVQAhPnEUFPLUlK
ExLM/Cb21DfndzI+fYi50wz/Lc56JDVMzJ/exIjuGfEuPD5NcSf3lipFh4XEEv1H
CLsC67x2Zi4IdjFeia6PAS2HoAxNIoIueS9OeunaDF7xBkpd2twl6nG3X0PDUQoP
x6l9mN/lglWcJjiGb13kXSjL5pbNdHOX1PuuEh7/RiQRhEIiG0+EBHrv+gTTT0z0
lcyIs1jh06kPwCoIViswremPFMDNjqIWgFyq6dfvJ1++zVu4pvFb/sWRjwIDAQAB
o4ICDTCCAgkwHQYDVR0OBBYEFPiwTao6INL+gJbtRjBt7jkQQd8yMB8GA1UdIwQY
MBaAFM/OrTkGJe26FAgQjfV86kcWDXDlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvejg2dE9RWWw3Ym9VQ0JDTjlYenFSeFlOY09VLmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS9jNDY0N2EtNjA0Mi00ZmU4LWEyNzYt
ZjViNmE3MThmNGI1LzEvMS1MQk5xam9nMHY2QWx1MUdNRzN1T1JCQjN6SS5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvZDUvYzQ2NDdhLTYwNDItNGZlOC1hMjc2LWY1YjZhNzE4ZjRi
NS8xL3o4NnRPUVlsN2JvVUNCQ045WHpxUnhZTmNPVS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHBCoPeAP7
IDANBgkqhkiG9w0BAQsFAAOCAQEAnQFa2LYTZA4um5QBrOxVORuM7CttwtHFL2c1
QpoiQNgOnxDOvWR6gxv+e6hP2TvjtgcDksJFK5jf6I+7MfzuNCfa/z3vqHOd0XKx
uXuqS0x5WFGkwO0F15qqou0a7rKWx/7fMdWv2QFL0Tx37KkcChHBm18SXZV2TNgi
kbYbfXOV41Kw6YBzpcBHWdA8J35/shq13/RtQYHppMt+9F/ESOHXN1KMQz3gaySw
7LsmX29I0HzRwl1pTo7mV8XfXQz1Us2kBkDsZ3UjlzmcBx+aYKA2OEBMzDMJYl4Y
zkmCpXNoT/be+ZrnFhI37uxFHA0IqdHoF8VmjwyCJbi4LfcoYQ==
-----END CERTIFICATE-----
Generated at Tue Jun 11 12:27:05 2024 by rpki-client on console.sobornost.net