Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/36e79c-8472-467b-9c14-8281f77ebd22/1/1YmehqSdN7exBl-PytGqo0TRNds.roa
File: 1YmehqSdN7exBl-PytGqo0TRNds.roa (raw, json)
Hash identifier: jeCxlx6SpNaotcJL+XpY5ru3+iNW6BmurFB+a1/tW+o=
Subject key identifier: D5:89:9E:86:A4:9D:37:B7:B1:06:5F:8F:CA:D1:AA:A3:44:D1:35:DB
Certificate issuer: /CN=6d56def8458fd8eb2ed754ac2e90d3505a32aa82
Certificate serial: 0193724AE042E05D856CA8D2DEEB628B2E5B
Authority key identifier: 6D:56:DE:F8:45:8F:D8:EB:2E:D7:54:AC:2E:90:D3:50:5A:32:AA:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bVbe-EWP2Osu11SsLpDTUFoyqoI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/36e79c-8472-467b-9c14-8281f77ebd22/1/1YmehqSdN7exBl-PytGqo0TRNds.roa
Signing time: Thu 28 Nov 2024 10:22:09 +0000
ROA not before: Thu 28 Nov 2024 10:22:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212354
IP address blocks: 2001:67c:b48::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:72:4a:e0:42:e0:5d:85:6c:a8:d2:de:eb:62:8b:2e:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d56def8458fd8eb2ed754ac2e90d3505a32aa82
Validity
Not Before: Nov 28 10:22:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d5899e86a49d37b7b1065f8fcad1aaa344d135db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:b1:38:c3:4b:24:a5:71:2a:21:f4:f4:b0:d9:
1d:0a:f4:2a:a3:1c:10:2c:4a:4d:92:c8:09:71:6e:
26:62:05:8a:11:5d:5e:a9:99:3c:b2:ae:73:b1:9d:
f1:50:74:d7:59:1c:a7:9e:80:a9:b2:c2:c2:49:a2:
8c:77:ee:e3:57:01:66:00:44:c1:6f:2a:ce:c3:a3:
86:8b:f6:ff:98:a9:d2:94:f3:93:8a:4f:3c:64:9c:
5e:2b:ca:22:fa:a4:ed:d2:32:04:3a:0e:2a:16:5d:
25:a6:05:41:93:02:d1:c3:98:af:c0:f9:45:e3:17:
af:d2:56:55:53:30:68:f5:b3:57:d1:4e:1f:a4:69:
e3:98:5b:3d:de:b2:67:6b:af:e3:b1:bf:a6:f9:47:
38:61:08:c7:d2:32:21:81:35:d4:6c:79:51:b1:3d:
62:02:f8:0b:be:76:f7:dd:7f:08:25:32:5c:f9:68:
41:3e:ad:89:c8:02:78:c8:b4:dc:6b:00:ec:32:38:
61:f1:de:b8:29:bb:97:9d:3f:7a:ef:d5:09:65:d6:
3d:60:9a:43:36:eb:d6:36:99:60:ff:1c:9e:a4:52:
c6:57:43:45:69:9a:e6:44:b2:65:a3:47:40:25:1c:
ec:6c:1f:4a:52:1d:56:bf:7b:c2:f6:8d:18:1e:6c:
e3:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:89:9E:86:A4:9D:37:B7:B1:06:5F:8F:CA:D1:AA:A3:44:D1:35:DB
X509v3 Authority Key Identifier:
keyid:6D:56:DE:F8:45:8F:D8:EB:2E:D7:54:AC:2E:90:D3:50:5A:32:AA:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bVbe-EWP2Osu11SsLpDTUFoyqoI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/36e79c-8472-467b-9c14-8281f77ebd22/1/1YmehqSdN7exBl-PytGqo0TRNds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/36e79c-8472-467b-9c14-8281f77ebd22/1/bVbe-EWP2Osu11SsLpDTUFoyqoI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:b48::/48
Signature Algorithm: sha256WithRSAEncryption
14:8f:25:d6:a1:33:5b:64:f8:a1:86:fb:2d:8e:fc:88:26:57:
9a:86:59:82:a2:e4:0b:31:e5:09:18:07:24:96:a7:9c:ca:56:
4b:21:6a:19:d9:9e:22:6e:09:fa:62:87:21:57:15:f8:7f:3a:
86:ea:91:57:b1:13:0f:0b:43:b7:5f:16:2f:f7:3b:09:32:21:
0b:98:bd:b9:ca:ed:e3:6c:ab:ed:ae:23:3d:7c:aa:a0:d0:ac:
c2:37:77:6c:6e:0d:fc:7d:8a:d7:ba:80:87:9d:3b:4d:2d:e7:
85:50:b9:1d:4b:a2:db:42:a8:20:22:2e:39:dd:91:36:06:23:
f9:d8:b8:4c:91:6a:50:40:1e:43:0b:5b:45:ef:ce:9a:70:fc:
35:aa:6f:77:0d:8d:ac:49:74:f1:9e:38:e0:d8:bf:15:bd:34:
37:3e:b1:ee:64:df:b0:a1:72:ef:f9:a8:df:54:a6:e7:84:30:
6f:40:be:09:9b:00:5a:b7:03:d5:4b:dd:d5:08:c4:b1:0f:2a:
df:81:31:20:3c:8c:d9:9a:77:51:e4:fa:e2:95:db:f1:e4:cb:
8c:73:1e:00:fc:7a:cc:7f:c6:77:a2:89:5e:91:d4:c4:b7:5b:
40:f6:fb:b1:38:dd:1d:69:cd:fa:b1:3f:38:a8:fd:8d:21:be:
e5:62:b7:31
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAZNySuBC4F2FbKjS3utiiy5bMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkNTZkZWY4NDU4ZmQ4ZWIyZWQ3NTRhYzJlOTBkMzUwNWEz
MmFhODIwHhcNMjQxMTI4MTAyMjA5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNTg5OWU4NmE0OWQzN2I3YjEwNjVmOGZjYWQxYWFhMzQ0ZDEzNWRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx7E4w0skpXEqIfT0sNkdCvQqoxwQ
LEpNksgJcW4mYgWKEV1eqZk8sq5zsZ3xUHTXWRynnoCpssLCSaKMd+7jVwFmAETB
byrOw6OGi/b/mKnSlPOTik88ZJxeK8oi+qTt0jIEOg4qFl0lpgVBkwLRw5ivwPlF
4xev0lZVUzBo9bNX0U4fpGnjmFs93rJna6/jsb+m+Uc4YQjH0jIhgTXUbHlRsT1i
AvgLvnb33X8IJTJc+WhBPq2JyAJ4yLTcawDsMjhh8d64KbuXnT9679UJZdY9YJpD
NuvWNplg/xyepFLGV0NFaZrmRLJlo0dAJRzsbB9KUh1Wv3vC9o0YHmzjNQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFNWJnoaknTe3sQZfj8rRqqNE0TXbMB8GA1UdIwQY
MBaAFG1W3vhFj9jrLtdUrC6Q01BaMqqCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYlZiZS1FV1AyT3N1MTFTc0xwRFRVRm95cW9JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi8zNmU3OWMtODQ3Mi00NjdiLTljMTQt
ODI4MWY3N2ViZDIyLzEvMVltZWhxU2RON2V4QmwtUHl0R3FvMFRSTmRzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYi8zNmU3OWMtODQ3Mi00NjdiLTljMTQtODI4MWY3N2ViZDIy
LzEvYlZiZS1FV1AyT3N1MTFTc0xwRFRVRm95cW9JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfAtI
MA0GCSqGSIb3DQEBCwUAA4IBAQAUjyXWoTNbZPihhvstjvyIJleahlmCouQLMeUJ
GAcklqecylZLIWoZ2Z4ibgn6YochVxX4fzqG6pFXsRMPC0O3XxYv9zsJMiELmL25
yu3jbKvtriM9fKqg0KzCN3dsbg38fYrXuoCHnTtNLeeFULkdS6LbQqggIi453ZE2
BiP52LhMkWpQQB5DC1tF786acPw1qm93DY2sSXTxnjjg2L8VvTQ3PrHuZN+woXLv
+ajfVKbnhDBvQL4JmwBatwPVS93VCMSxDyrfgTEgPIzZmndR5Prildvx5MuMcx4A
/HrMf8Z3oolekdTEt1tA9vuxON0dac36sT84qP2NIb7lYrcx
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:30:06 2024 by rpki-client on console.sobornost.net