Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/c4e5a0-8219-4ff9-8287-1f4bea23e4c7/1/H5krHLOTfQfSAq5ZyQd2uLVWzwA.roa
File: H5krHLOTfQfSAq5ZyQd2uLVWzwA.roa (raw, json)
Hash identifier: qH+3FMPR6Y65XZqVuFmLycWaGGcJEYNm2Vpzbnw3FqY=
Subject key identifier: 1F:99:2B:1C:B3:93:7D:07:D2:02:AE:59:C9:07:76:B8:B5:56:CF:00
Certificate issuer: /CN=01626ffd800eafa336bdf343141f03f7c393c364
Certificate serial: 01906DC0CB9E2A77EF3A40263FB9269F2DD6
Authority key identifier: 01:62:6F:FD:80:0E:AF:A3:36:BD:F3:43:14:1F:03:F7:C3:93:C3:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AWJv_YAOr6M2vfNDFB8D98OTw2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/c4e5a0-8219-4ff9-8287-1f4bea23e4c7/1/H5krHLOTfQfSAq5ZyQd2uLVWzwA.roa
Signing time: Mon 01 Jul 2024 10:04:29 +0000
ROA not before: Mon 01 Jul 2024 10:04:29 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 21433
IP address blocks: 2a02:ee80:40d4::/47 maxlen: 47
2a02:ee80:40d4::/48 maxlen: 48
2a02:ee80:40d5::/48 maxlen: 48
2a02:ee80:40d6::/47 maxlen: 47
2a02:ee80:40d6::/48 maxlen: 48
2a02:ee80:40d7::/48 maxlen: 48
2a02:ee80:4248::/47 maxlen: 47
2a02:ee80:4248::/48 maxlen: 48
2a02:ee80:4249::/48 maxlen: 48
2a02:ee80:4250::/47 maxlen: 47
2a02:ee80:4250::/48 maxlen: 48
2a02:ee80:4251::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:6d:c0:cb:9e:2a:77:ef:3a:40:26:3f:b9:26:9f:2d:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01626ffd800eafa336bdf343141f03f7c393c364
Validity
Not Before: Jul 1 10:04:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1f992b1cb3937d07d202ae59c90776b8b556cf00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:99:74:9b:7f:a4:87:37:4e:ce:d2:63:b2:c5:
29:34:8b:43:99:0a:e7:2c:c3:da:94:b2:81:80:a2:
45:6b:30:37:21:41:00:a5:f1:45:c0:5f:f1:3a:dc:
5c:79:c7:f2:c3:ee:11:7b:e7:3b:d8:db:e9:21:f2:
af:89:38:55:6a:f0:7a:95:0f:28:56:3c:f7:b9:44:
9f:60:e0:7e:a4:8f:36:b6:c6:d6:47:51:55:59:ae:
a1:3f:0f:b3:60:86:1b:6b:8e:bd:6b:4c:08:b8:9b:
a1:64:8d:77:99:fc:e2:26:98:a9:8a:66:16:ca:17:
40:ee:13:51:74:d1:15:60:0a:08:7c:8d:6f:52:91:
d6:56:f8:d3:22:4d:bb:c5:0e:20:d5:48:d0:49:14:
fe:1f:62:80:88:4b:5c:f3:35:1c:8b:06:94:74:fa:
47:6f:e3:83:12:87:01:4f:a9:d4:b7:48:d5:56:cb:
3a:36:59:bf:12:f9:26:7b:6e:d0:e5:5f:fb:30:08:
17:66:1b:81:5c:48:f0:3e:ce:bf:78:95:dd:11:2b:
9a:fb:ff:f5:93:c9:04:46:92:b1:0e:0c:30:4b:3d:
5f:20:7d:38:bb:12:c6:d6:79:8a:2f:d4:b4:9b:d1:
32:f2:61:eb:85:a5:1d:d9:09:d0:39:70:22:93:4a:
db:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:99:2B:1C:B3:93:7D:07:D2:02:AE:59:C9:07:76:B8:B5:56:CF:00
X509v3 Authority Key Identifier:
keyid:01:62:6F:FD:80:0E:AF:A3:36:BD:F3:43:14:1F:03:F7:C3:93:C3:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AWJv_YAOr6M2vfNDFB8D98OTw2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c4e5a0-8219-4ff9-8287-1f4bea23e4c7/1/H5krHLOTfQfSAq5ZyQd2uLVWzwA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c4e5a0-8219-4ff9-8287-1f4bea23e4c7/1/AWJv_YAOr6M2vfNDFB8D98OTw2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:ee80:40d4::/46
2a02:ee80:4248::/47
2a02:ee80:4250::/47
Signature Algorithm: sha256WithRSAEncryption
93:9e:c2:cb:21:7f:01:82:20:c9:af:2c:c2:c7:57:de:5c:af:
d0:3c:57:5b:79:77:ce:d7:fa:48:dd:63:e2:8f:4e:46:36:36:
b6:44:7c:5c:71:f0:26:f0:d3:c0:f9:52:89:4e:18:02:78:c9:
d5:2b:36:18:77:3c:9e:db:39:24:62:b4:28:cb:08:7b:59:be:
49:b5:73:d2:60:01:c6:a3:a9:ce:f7:54:37:c1:fb:de:e9:4e:
32:5d:79:e8:40:a4:f9:05:a6:81:40:df:fe:cd:c9:f1:a7:c3:
e5:1a:ee:54:b5:ad:07:32:87:f0:5d:dc:e3:74:df:f6:d8:04:
3d:93:10:b4:77:2c:e0:b7:79:d5:ad:fe:8f:c0:38:10:1f:7f:
79:47:5d:61:62:9f:f2:72:30:99:de:3e:cb:bd:6e:41:8f:d2:
9a:d0:71:a8:57:6f:cc:25:fc:71:b1:ca:5b:5f:84:6e:54:c7:
0a:b8:c8:4d:b3:b6:a8:f9:9d:91:5e:e9:8b:9e:09:c0:44:3f:
93:64:33:66:02:36:49:01:de:f3:b7:a6:16:34:41:52:58:31:
7f:a9:23:30:c6:32:3a:cd:50:66:e7:f7:cb:6c:7f:e5:0c:f8:
47:b9:15:f5:eb:3e:41:0e:0a:f3:e7:e5:5e:19:6c:7b:07:67:
98:a9:23:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 30 01:00:34 2024 by rpki-client on console.sobornost.net