Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/0b7d86-1ec3-4958-a979-1ab723c00e5f/1/lc_ZnzmkngY0sodcizkIqhuzC70.roa
File: lc_ZnzmkngY0sodcizkIqhuzC70.roa (raw, json)
Hash identifier: ai21H6Ojd+rIxdvz8BuEQbQ4xb1pH2HpdJMIDMXYIWI=
Subject key identifier: 95:CF:D9:9F:39:A4:9E:06:34:B2:87:5C:8B:39:08:AA:1B:B3:0B:BD
Certificate issuer: /CN=8d4ec3a19083da9d9ba9f2fa5cc0d2123fb301bb
Certificate serial: 019426D9542ACDCC53FAF535A568AC9403F8
Authority key identifier: 8D:4E:C3:A1:90:83:DA:9D:9B:A9:F2:FA:5C:C0:D2:12:3F:B3:01:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jU7DoZCD2p2bqfL6XMDSEj-zAbs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/0b7d86-1ec3-4958-a979-1ab723c00e5f/1/lc_ZnzmkngY0sodcizkIqhuzC70.roa
Signing time: Thu 02 Jan 2025 11:49:24 +0000
ROA not before: Thu 02 Jan 2025 11:49:24 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 62240
IP address blocks: 2a0c:19c0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:54:2a:cd:cc:53:fa:f5:35:a5:68:ac:94:03:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d4ec3a19083da9d9ba9f2fa5cc0d2123fb301bb
Validity
Not Before: Jan 2 11:49:24 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=95cfd99f39a49e0634b2875c8b3908aa1bb30bbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:5c:af:fe:5a:ab:90:71:31:66:e4:35:c3:08:
60:aa:8f:3f:ea:27:56:26:cb:ae:98:af:0f:bf:c2:
49:29:fc:e8:c2:c5:78:43:7c:77:aa:0b:59:f9:3e:
6a:78:fc:96:3a:f8:7d:09:1b:95:18:ca:e8:f1:07:
18:f0:1a:5c:2a:25:dc:21:b0:6b:8f:0c:09:18:18:
12:49:2f:e3:09:7f:42:f4:23:70:49:6f:7b:63:5c:
fa:d6:18:9b:15:61:6d:f6:9d:76:54:ab:ba:64:ea:
b6:fa:e7:8f:e7:b5:3f:28:cb:90:c7:e4:dc:43:3c:
50:55:f7:20:19:32:de:f3:5e:a5:cb:b6:01:c3:a9:
ff:e3:eb:c0:bf:05:a9:77:69:e8:27:61:eb:ef:f1:
42:f8:1b:97:f5:46:c8:c5:12:8e:eb:ca:87:4a:fa:
1a:bc:62:2c:3f:35:99:36:fb:84:5c:9d:ab:2d:5f:
9d:f2:2d:8f:32:a0:9c:bd:52:80:6a:88:32:90:e8:
06:c9:43:1d:6c:f9:f6:30:c7:33:37:56:51:6a:e4:
c7:1a:86:8e:f3:9e:88:6f:ef:8f:f0:d1:87:33:2d:
4d:69:91:5a:c0:ad:10:51:2a:2a:98:15:4f:8f:ae:
8b:ff:cd:03:60:8f:90:40:eb:5a:09:03:13:e7:67:
bb:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:CF:D9:9F:39:A4:9E:06:34:B2:87:5C:8B:39:08:AA:1B:B3:0B:BD
X509v3 Authority Key Identifier:
keyid:8D:4E:C3:A1:90:83:DA:9D:9B:A9:F2:FA:5C:C0:D2:12:3F:B3:01:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jU7DoZCD2p2bqfL6XMDSEj-zAbs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/0b7d86-1ec3-4958-a979-1ab723c00e5f/1/lc_ZnzmkngY0sodcizkIqhuzC70.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/0b7d86-1ec3-4958-a979-1ab723c00e5f/1/jU7DoZCD2p2bqfL6XMDSEj-zAbs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:19c0::/32
Signature Algorithm: sha256WithRSAEncryption
df:6d:c0:e4:95:4f:ca:9b:a3:b1:9d:d5:f5:78:8c:80:19:27:
dc:96:55:f0:56:79:ae:1a:bf:9c:af:70:01:c6:08:c8:4a:96:
bd:80:81:e9:68:e4:c4:f1:2d:52:f2:85:96:cd:bc:0e:db:96:
a6:8d:e1:ff:26:58:db:2b:7d:c1:82:f8:a2:d6:b7:f7:f2:e7:
d7:27:a5:5c:37:46:42:da:2f:ad:74:8d:25:36:f5:3f:4a:ba:
5c:97:76:50:29:90:94:83:9d:f8:a2:49:2f:56:8c:d9:85:d0:
0e:57:b2:ff:ec:28:4e:39:4a:3d:a8:db:47:48:65:30:82:d1:
84:00:d8:07:00:a4:ee:18:77:d5:5a:f5:83:06:97:eb:c2:8f:
5f:e8:15:fe:d7:5f:15:1a:ea:76:99:fd:1b:31:6b:4e:8d:7f:
77:e1:2f:5b:71:73:25:ec:0c:52:a9:c7:b0:35:18:d2:cb:c4:
9b:d9:df:13:c6:34:f8:d2:99:73:09:e6:d0:e5:bb:bb:e1:26:
0c:94:45:f8:0d:dc:0c:80:97:ef:0a:bd:a6:01:10:d6:33:d7:
00:f3:b7:ed:ac:aa:57:f2:57:3b:db:db:38:50:a9:b2:06:89:
1f:b8:7b:37:6c:e4:66:ab:df:63:63:43:58:79:1d:b6:56:c2:
bd:f9:12:33
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAZQm2VQqzcxT+vU1pWislAP4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhkNGVjM2ExOTA4M2RhOWQ5YmE5ZjJmYTVjYzBkMjEyM2Zi
MzAxYmIwHhcNMjUwMTAyMTE0OTI0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NWNmZDk5ZjM5YTQ5ZTA2MzRiMjg3NWM4YjM5MDhhYTFiYjMwYmJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr1yv/lqrkHExZuQ1wwhgqo8/6idW
JsuumK8Pv8JJKfzowsV4Q3x3qgtZ+T5qePyWOvh9CRuVGMro8QcY8BpcKiXcIbBr
jwwJGBgSSS/jCX9C9CNwSW97Y1z61hibFWFt9p12VKu6ZOq2+ueP57U/KMuQx+Tc
QzxQVfcgGTLe816ly7YBw6n/4+vAvwWpd2noJ2Hr7/FC+BuX9UbIxRKO68qHSvoa
vGIsPzWZNvuEXJ2rLV+d8i2PMqCcvVKAaogykOgGyUMdbPn2MMczN1ZRauTHGoaO
856Ib++P8NGHMy1NaZFawK0QUSoqmBVPj66L/80DYI+QQOtaCQMT52e7eQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFJXP2Z85pJ4GNLKHXIs5CKobswu9MB8GA1UdIwQY
MBaAFI1Ow6GQg9qdm6ny+lzA0hI/swG7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvalU3RG9aQ0QycDJicWZMNlhNRFNFai16QWJzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC8wYjdkODYtMWVjMy00OTU4LWE5Nzkt
MWFiNzIzYzAwZTVmLzEvbGNfWm56bWtuZ1kwc29kY2l6a0lxaHV6QzcwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZC8wYjdkODYtMWVjMy00OTU4LWE5NzktMWFiNzIzYzAwZTVm
LzEvalU3RG9aQ0QycDJicWZMNlhNRFNFai16QWJzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgwZwDAN
BgkqhkiG9w0BAQsFAAOCAQEA323A5JVPypujsZ3V9XiMgBkn3JZV8FZ5rhq/nK9w
AcYIyEqWvYCB6WjkxPEtUvKFls28DtuWpo3h/yZY2yt9wYL4ota39/Ln1yelXDdG
QtovrXSNJTb1P0q6XJd2UCmQlIOd+KJJL1aM2YXQDley/+woTjlKPajbR0hlMILR
hADYBwCk7hh31Vr1gwaX68KPX+gV/tdfFRrqdpn9GzFrTo1/d+EvW3FzJewMUqnH
sDUY0svEm9nfE8Y0+NKZcwnm0OW7u+EmDJRF+A3cDICX7wq9pgEQ1jPXAPO37ayq
V/JXO9vbOFCpsgaJH7h7N2zkZqvfY2NDWHkdtlbCvfkSMw==
-----END CERTIFICATE-----
Generated at Thu Jan 23 19:16:46 2025 by rpki-client on console.sobornost.net