Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/0b7d86-1ec3-4958-a979-1ab723c00e5f/1/HJjSdYlQdEMV4JOUupzRtCpNbNM.roa
File: HJjSdYlQdEMV4JOUupzRtCpNbNM.roa (raw, json)
Hash identifier: V60i7PZhujJjAiB/oji0u//FHsteL4xZ+pTJccuENMs=
Subject key identifier: 1C:98:D2:75:89:50:74:43:15:E0:93:94:BA:9C:D1:B4:2A:4D:6C:D3
Certificate issuer: /CN=8d4ec3a19083da9d9ba9f2fa5cc0d2123fb301bb
Certificate serial: 019374BA86240BBD86839B4E0E8B6CB26AF3
Authority key identifier: 8D:4E:C3:A1:90:83:DA:9D:9B:A9:F2:FA:5C:C0:D2:12:3F:B3:01:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jU7DoZCD2p2bqfL6XMDSEj-zAbs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/0b7d86-1ec3-4958-a979-1ab723c00e5f/1/HJjSdYlQdEMV4JOUupzRtCpNbNM.roa
Signing time: Thu 28 Nov 2024 21:43:21 +0000
ROA not before: Thu 28 Nov 2024 21:43:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62240
IP address blocks: 2a0c:19c0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:74:ba:86:24:0b:bd:86:83:9b:4e:0e:8b:6c:b2:6a:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d4ec3a19083da9d9ba9f2fa5cc0d2123fb301bb
Validity
Not Before: Nov 28 21:43:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1c98d2758950744315e09394ba9cd1b42a4d6cd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:e3:84:a6:df:a5:50:69:50:b6:ae:42:b5:08:
d8:8a:59:ca:ac:8a:ec:c2:95:46:14:b4:a1:ad:d2:
90:20:e3:f0:a8:7b:69:c4:d5:be:e4:2e:81:84:df:
b6:a6:2b:db:ee:65:3f:f2:55:49:ae:2b:0b:ae:43:
93:82:63:65:8e:2d:b6:1d:cf:4e:f4:7d:fd:4f:a3:
46:db:53:ac:2b:78:68:25:cb:f5:da:0d:fe:ac:04:
59:23:93:94:5a:7b:3b:ee:a0:7f:13:6c:06:f2:b6:
00:c2:d6:4b:88:cc:9b:75:68:1f:28:a8:00:5c:90:
c8:c0:51:cd:aa:1e:08:e3:2f:9d:ac:73:d9:22:5f:
05:ed:b6:5f:1c:f1:fe:c5:87:fa:50:10:55:bd:38:
20:5e:8e:7e:4e:42:e6:ab:cf:5b:f1:cb:89:d4:d0:
58:09:c6:3e:3d:9d:47:6b:08:4b:c2:fe:99:20:90:
e7:92:e2:13:58:84:cf:5b:c2:bc:fb:16:f1:1a:83:
12:7e:34:08:36:aa:b0:b8:c5:54:6a:b9:92:b4:77:
87:c8:a7:09:b7:74:ce:dd:4d:84:6f:60:0f:eb:7f:
fe:b5:f3:66:bd:c1:9a:97:2f:80:01:77:f7:0c:40:
5f:ed:cd:48:19:03:ef:04:62:ab:ea:fd:db:8c:e8:
cc:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:98:D2:75:89:50:74:43:15:E0:93:94:BA:9C:D1:B4:2A:4D:6C:D3
X509v3 Authority Key Identifier:
keyid:8D:4E:C3:A1:90:83:DA:9D:9B:A9:F2:FA:5C:C0:D2:12:3F:B3:01:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jU7DoZCD2p2bqfL6XMDSEj-zAbs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/0b7d86-1ec3-4958-a979-1ab723c00e5f/1/HJjSdYlQdEMV4JOUupzRtCpNbNM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/0b7d86-1ec3-4958-a979-1ab723c00e5f/1/jU7DoZCD2p2bqfL6XMDSEj-zAbs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:19c0::/32
Signature Algorithm: sha256WithRSAEncryption
43:3e:3b:36:a7:13:d2:5a:75:b4:6c:dc:b9:c5:24:c8:96:24:
af:70:d1:6c:90:c0:0c:13:46:45:7b:c2:be:b1:50:ce:4c:89:
4c:40:f8:d4:97:41:06:17:4e:8a:f0:7f:fa:81:6a:1d:ba:47:
57:30:52:50:85:bb:ff:3b:cc:8b:b3:23:ea:28:06:76:49:51:
3e:c3:46:b5:9b:29:48:c6:5f:6d:58:5b:f1:e4:f0:b2:51:ed:
62:e3:54:d0:da:23:36:cf:61:e0:86:91:74:6e:07:1d:1e:1b:
61:dc:df:62:74:6c:9b:12:cb:d5:bb:22:6a:63:62:1c:0c:d8:
01:3c:28:68:b2:0f:b4:7e:10:b0:cc:47:f7:95:83:29:4d:6c:
89:30:d4:5f:e2:94:5a:ff:86:4c:9b:8b:43:92:f1:3f:0d:44:
f4:aa:39:10:01:9a:c7:0c:c5:3c:92:7e:69:5a:ae:a9:36:4c:
14:a3:7e:55:fd:cf:d2:be:fd:9c:84:7f:2f:50:84:a2:75:21:
c0:30:09:e3:85:8a:2d:1d:b5:97:0d:a7:16:b0:17:40:50:b7:
3a:0c:bb:df:d8:9b:96:e1:79:be:5a:d1:d1:fe:a9:4e:6b:b3:
bd:83:1b:80:17:32:a2:46:0e:b8:05:ac:99:43:6e:b4:fc:70:
5d:32:af:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:30:07 2024 by rpki-client on console.sobornost.net