Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/7f41f1-05aa-4cae-b091-2b156fdf7243/1/KFa6oqlG-TY_OlXSiFSj8C-IiOk.roa
File: KFa6oqlG-TY_OlXSiFSj8C-IiOk.roa (raw, json)
Hash identifier: vN30lsa0T5+l7Vo1OZghyfocdd+j2TkRucFOzIabEsk=
Subject key identifier: 28:56:BA:A2:A9:46:F9:36:3F:3A:55:D2:88:54:A3:F0:2F:88:88:E9
Certificate issuer: /CN=336b69e2dd29bbe48946c4d58ac60eb23dff95c5
Certificate serial: 018E7B25AFBF1518DC442A6D13ECD9CF3174
Authority key identifier: 33:6B:69:E2:DD:29:BB:E4:89:46:C4:D5:8A:C6:0E:B2:3D:FF:95:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M2tp4t0pu-SJRsTVisYOsj3_lcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/7f41f1-05aa-4cae-b091-2b156fdf7243/1/KFa6oqlG-TY_OlXSiFSj8C-IiOk.roa
Signing time: Tue 26 Mar 2024 14:24:11 +0000
ROA not before: Tue 26 Mar 2024 14:24:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2a06:a780::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:7b:25:af:bf:15:18:dc:44:2a:6d:13:ec:d9:cf:31:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=336b69e2dd29bbe48946c4d58ac60eb23dff95c5
Validity
Not Before: Mar 26 14:24:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2856baa2a946f9363f3a55d28854a3f02f8888e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:67:13:b7:1a:ce:8d:d6:a4:2c:dc:c4:c3:31:
15:40:e3:5e:51:f6:a3:7a:28:31:52:ad:3b:40:01:
9e:b9:c7:35:c4:0b:00:f2:eb:19:a7:9b:c4:eb:2d:
c5:b5:25:8a:32:d9:0c:97:11:53:0b:f3:fa:8e:be:
e6:d1:14:eb:c4:f1:d4:9a:e2:2c:1d:32:34:5d:b8:
e4:63:80:29:03:af:b9:f4:e4:1a:13:61:1a:02:27:
f7:f9:ca:82:ce:2b:c3:3a:3c:62:5a:68:86:d8:ac:
e6:a8:6c:e0:76:b5:26:9a:17:42:69:e9:e8:2b:f5:
9f:bd:fe:b4:4c:61:2e:de:45:3c:a3:05:d6:1a:50:
5b:a5:cc:a6:83:95:d4:ad:40:0a:92:6e:1b:bd:43:
c0:ae:a8:b7:48:c2:fa:21:ff:7a:9c:66:32:56:16:
19:f0:95:b9:34:fa:15:75:92:d3:53:a3:77:41:69:
ec:e9:9e:c7:be:c8:79:35:93:49:c3:f2:23:86:1d:
f3:e2:da:9f:56:82:67:35:0f:54:8f:86:b3:70:44:
a9:6d:c3:12:73:23:65:e3:70:e3:c3:3f:21:d4:c3:
30:d0:68:7e:6b:33:7a:25:91:cb:3f:19:1b:30:98:
89:2f:65:9d:3c:72:f5:00:ce:f4:59:e7:a0:c8:26:
d1:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:56:BA:A2:A9:46:F9:36:3F:3A:55:D2:88:54:A3:F0:2F:88:88:E9
X509v3 Authority Key Identifier:
keyid:33:6B:69:E2:DD:29:BB:E4:89:46:C4:D5:8A:C6:0E:B2:3D:FF:95:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M2tp4t0pu-SJRsTVisYOsj3_lcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/7f41f1-05aa-4cae-b091-2b156fdf7243/1/KFa6oqlG-TY_OlXSiFSj8C-IiOk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/7f41f1-05aa-4cae-b091-2b156fdf7243/1/M2tp4t0pu-SJRsTVisYOsj3_lcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a780::/29
Signature Algorithm: sha256WithRSAEncryption
1d:03:e0:61:11:34:49:50:a8:50:55:99:35:3a:e8:52:99:63:
41:c5:11:b7:cc:46:48:c7:bc:5b:11:26:88:28:e8:61:0d:ef:
fb:1b:5f:06:bc:20:98:50:c1:21:ef:c6:56:c9:e1:fa:43:80:
09:2b:a7:0e:29:08:17:1e:a0:06:f6:d7:ad:65:07:08:4c:07:
81:b8:fd:5a:d3:45:a8:75:11:ef:a5:f8:bc:1c:27:e4:a7:a0:
72:0f:ee:93:ef:ef:38:74:20:1e:70:de:1b:12:13:e9:5a:94:
28:4c:51:50:77:17:b5:48:ea:bd:c3:e5:d2:46:15:d4:ee:43:
01:89:92:52:61:6d:02:7c:57:68:bb:49:cb:8b:7a:a4:32:5e:
18:a5:9c:b0:0c:8e:73:89:3f:32:af:d4:19:3c:fc:ce:e2:00:
83:2c:d9:54:55:37:6d:ed:97:74:08:a3:41:57:6b:1f:4a:1f:
18:3c:bc:9f:ad:73:bd:e0:97:18:0f:fa:9b:b3:ff:bc:0d:d5:
df:7c:7e:e7:50:d0:ae:17:2f:e6:72:1c:cf:cb:16:28:2b:bb:
23:6f:e3:83:2d:a0:fd:16:ec:61:99:b7:eb:64:c7:07:26:f1:
68:14:5c:0d:b7:c3:60:11:e3:76:7d:5f:80:c3:d0:56:2e:c5:
47:48:26:1f
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAY57Ja+/FRjcRCptE+zZzzF0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMzNmI2OWUyZGQyOWJiZTQ4OTQ2YzRkNThhYzYwZWIyM2Rm
Zjk1YzUwHhcNMjQwMzI2MTQyNDExWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyODU2YmFhMmE5NDZmOTM2M2YzYTU1ZDI4ODU0YTNmMDJmODg4OGU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5WcTtxrOjdakLNzEwzEVQONeUfaj
eigxUq07QAGeucc1xAsA8usZp5vE6y3FtSWKMtkMlxFTC/P6jr7m0RTrxPHUmuIs
HTI0XbjkY4ApA6+59OQaE2EaAif3+cqCzivDOjxiWmiG2KzmqGzgdrUmmhdCaeno
K/Wfvf60TGEu3kU8owXWGlBbpcymg5XUrUAKkm4bvUPArqi3SML6If96nGYyVhYZ
8JW5NPoVdZLTU6N3QWns6Z7Hvsh5NZNJw/Ijhh3z4tqfVoJnNQ9Uj4azcESpbcMS
cyNl43Djwz8h1MMw0Gh+azN6JZHLPxkbMJiJL2WdPHL1AM70WeegyCbRMQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFChWuqKpRvk2PzpV0ohUo/AviIjpMB8GA1UdIwQY
MBaAFDNraeLdKbvkiUbE1YrGDrI9/5XFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTTJ0cDR0MHB1LVNKUnNUVmlzWU9zajNfbGNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy83ZjQxZjEtMDVhYS00Y2FlLWIwOTEt
MmIxNTZmZGY3MjQzLzEvS0ZhNm9xbEctVFlfT2xYU2lGU2o4Qy1JaU9rLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNy83ZjQxZjEtMDVhYS00Y2FlLWIwOTEtMmIxNTZmZGY3MjQz
LzEvTTJ0cDR0MHB1LVNKUnNUVmlzWU9zajNfbGNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKgangDAN
BgkqhkiG9w0BAQsFAAOCAQEAHQPgYRE0SVCoUFWZNTroUpljQcURt8xGSMe8WxEm
iCjoYQ3v+xtfBrwgmFDBIe/GVsnh+kOACSunDikIFx6gBvbXrWUHCEwHgbj9WtNF
qHUR76X4vBwn5Kegcg/uk+/vOHQgHnDeGxIT6VqUKExRUHcXtUjqvcPl0kYV1O5D
AYmSUmFtAnxXaLtJy4t6pDJeGKWcsAyOc4k/Mq/UGTz8zuIAgyzZVFU3be2XdAij
QVdrH0ofGDy8n61zveCXGA/6m7P/vA3V33x+51DQrhcv5nIcz8sWKCu7I2/jgy2g
/RbsYZm362THBybxaBRcDbfDYBHjdn1fgMPQVi7FR0gmHw==
-----END CERTIFICATE-----
Generated at Wed Mar 27 13:23:31 2024 by rpki-client on console.sobornost.net