Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/a8dadc-611b-4063-adb6-55b659cd82bb/1/dQiQD2rrBdTUZiFp_jTmJvaIXZ0.roa
File: dQiQD2rrBdTUZiFp_jTmJvaIXZ0.roa (raw, json)
Hash identifier: qCw9RCAQaZp4HQczQCFFdihbx06PWMzVQUVN+52Fgmw=
Subject key identifier: 75:08:90:0F:6A:EB:05:D4:D4:66:21:69:FE:34:E6:26:F6:88:5D:9D
Certificate issuer: /CN=217b7ab062bc828b348d05306e65354748b9d6d6
Certificate serial: 019397973C6B93A84E7D5443916D829DA00B
Authority key identifier: 21:7B:7A:B0:62:BC:82:8B:34:8D:05:30:6E:65:35:47:48:B9:D6:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IXt6sGK8gos0jQUwbmU1R0i51tY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/a8dadc-611b-4063-adb6-55b659cd82bb/1/dQiQD2rrBdTUZiFp_jTmJvaIXZ0.roa
Signing time: Thu 05 Dec 2024 16:11:31 +0000
ROA not before: Thu 05 Dec 2024 16:11:31 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212128
IP address blocks: 2a10:cbc0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:97:97:3c:6b:93:a8:4e:7d:54:43:91:6d:82:9d:a0:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=217b7ab062bc828b348d05306e65354748b9d6d6
Validity
Not Before: Dec 5 16:11:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7508900f6aeb05d4d4662169fe34e626f6885d9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:d3:9e:30:bc:c6:33:0e:fb:1d:e5:ed:c1:c0:
f7:c9:ca:f4:5f:42:e6:fa:20:12:bd:fe:c9:08:10:
49:98:14:2d:eb:c0:ac:b3:3b:fb:e9:18:9a:5d:cd:
2a:61:7d:ee:f1:50:e5:a9:fe:dc:bd:57:68:68:e9:
bd:92:e1:b9:11:8c:24:b3:d5:9a:f2:28:95:f9:ae:
cd:7e:a2:bd:d9:aa:1a:02:e9:0c:e4:a5:6a:7f:b3:
b7:6d:bb:4e:72:2a:64:b4:17:36:76:8b:c2:df:87:
db:64:41:31:fe:32:d4:53:1a:6a:88:c4:8f:c8:51:
61:3a:9e:b1:f5:d0:ae:34:44:8f:f9:33:76:4d:c7:
7a:28:6a:21:fb:0d:ae:cc:b9:af:97:c7:2a:43:ae:
f9:b2:a2:78:22:4c:a3:cc:b7:04:6b:3d:37:e6:eb:
2b:0c:85:bf:e7:4a:f7:20:e2:0f:d7:f5:7d:8e:f6:
ab:5e:09:0c:dc:ea:d5:58:8d:1a:de:02:50:a0:f2:
cd:c0:c5:a5:fc:bf:18:ba:c3:5b:39:1b:2a:f1:29:
97:70:f9:a5:2e:71:b1:a0:01:ae:4c:33:16:21:f9:
e9:e6:99:e7:f9:c3:f3:89:e4:10:3e:88:46:75:be:
a9:fd:6d:79:55:47:bd:56:b5:27:65:1d:bf:6d:ef:
09:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:08:90:0F:6A:EB:05:D4:D4:66:21:69:FE:34:E6:26:F6:88:5D:9D
X509v3 Authority Key Identifier:
keyid:21:7B:7A:B0:62:BC:82:8B:34:8D:05:30:6E:65:35:47:48:B9:D6:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IXt6sGK8gos0jQUwbmU1R0i51tY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/a8dadc-611b-4063-adb6-55b659cd82bb/1/dQiQD2rrBdTUZiFp_jTmJvaIXZ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/a8dadc-611b-4063-adb6-55b659cd82bb/1/IXt6sGK8gos0jQUwbmU1R0i51tY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:cbc0::/29
Signature Algorithm: sha256WithRSAEncryption
27:d2:39:76:c5:b6:e7:ae:8a:66:c6:f3:4a:0e:c7:57:75:7c:
33:fe:99:18:6a:dd:88:36:54:d2:12:da:a7:5b:ec:91:63:64:
29:ed:67:9b:0c:fa:c8:0e:94:62:36:a1:59:a8:67:3d:0e:6d:
b1:1a:ac:06:37:af:4e:18:eb:16:c6:d2:99:a0:bb:5a:8f:58:
0b:7d:d0:67:ee:a1:12:8d:09:d5:a7:86:67:10:a8:b2:38:ac:
31:86:ab:89:7a:89:8e:9a:9c:e9:be:fd:75:36:b6:99:69:bd:
79:c0:87:ef:ee:94:97:9d:cf:83:10:32:74:4a:d9:2d:29:b8:
9a:ca:d8:4a:75:85:65:96:50:2d:22:e5:10:12:cc:1b:65:85:
80:51:90:f8:2c:57:b2:68:35:e4:af:b8:f5:e4:df:1e:b5:14:
6f:a0:00:c6:e9:94:ba:54:cb:bf:46:cd:37:df:b6:15:8d:93:
db:c7:e6:94:a8:90:e9:78:91:25:46:1d:87:07:c2:c4:f0:d0:
73:95:98:38:71:0f:16:23:6f:95:05:be:76:30:f4:59:55:57:
f6:35:9a:1c:0c:56:98:2e:e4:66:cb:02:b0:48:0c:fc:89:e4:
31:b0:61:ae:d3:47:18:7f:8d:b6:90:53:74:67:3b:45:79:4f:
34:20:36:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:30:02 2024 by rpki-client on console.sobornost.net