Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/c9db0e-903e-485e-b67f-2c7a2a746279/1/GJPTqZvqPoNrBv6z-OxDP35BlmQ.roa
File: GJPTqZvqPoNrBv6z-OxDP35BlmQ.roa (raw, json)
Hash identifier: fPHVz8VfKs9l6mBcc0upQLBwvUS/ECIZYAojKVM4eMg=
Subject key identifier: 18:93:D3:A9:9B:EA:3E:83:6B:06:FE:B3:F8:EC:43:3F:7E:41:96:64
Certificate issuer: /CN=5376467ef0921c51190e2ea60f2abb3bd6e9c19f
Certificate serial: 0193A179ED41E43809C39701572846BF32FB
Authority key identifier: 53:76:46:7E:F0:92:1C:51:19:0E:2E:A6:0F:2A:BB:3B:D6:E9:C1:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U3ZGfvCSHFEZDi6mDyq7O9bpwZ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/c9db0e-903e-485e-b67f-2c7a2a746279/1/GJPTqZvqPoNrBv6z-OxDP35BlmQ.roa
Signing time: Sat 07 Dec 2024 14:15:42 +0000
ROA not before: Sat 07 Dec 2024 14:15:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8772
IP address blocks: 2a0b:480::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:a1:79:ed:41:e4:38:09:c3:97:01:57:28:46:bf:32:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5376467ef0921c51190e2ea60f2abb3bd6e9c19f
Validity
Not Before: Dec 7 14:15:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1893d3a99bea3e836b06feb3f8ec433f7e419664
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:82:e2:01:85:45:07:ca:70:ca:64:92:62:6b:
9d:2d:3c:02:55:58:47:f4:f2:88:44:e1:c8:28:fb:
af:b2:84:39:d6:e1:a2:b4:47:15:8b:32:52:6a:bb:
21:57:99:45:1a:f1:d0:8d:cf:e1:53:7b:49:25:c3:
84:90:9a:b2:cd:1c:43:fe:0b:a8:0f:23:23:ab:d5:
4b:e8:a4:81:ef:ed:dc:68:18:79:45:db:5c:c8:60:
3e:f3:5a:2e:22:e7:5f:60:9f:38:4d:a1:7e:33:6e:
22:b5:10:21:e9:1e:7a:e0:8d:b9:47:b7:8d:60:6c:
2f:12:d5:e1:68:fc:20:f7:22:d0:de:e1:d6:93:c5:
61:e6:48:8f:a9:71:ee:8f:58:13:96:b6:bb:8f:b1:
62:5d:35:ae:37:fe:5a:e8:58:6b:18:eb:82:54:15:
bd:38:05:88:04:ac:00:81:45:97:dd:58:98:87:ee:
35:3f:29:b9:bc:77:4f:3a:04:80:fc:36:4a:c2:39:
ae:04:84:97:98:f8:f4:8e:23:39:8e:93:3b:e5:48:
81:5d:ec:aa:92:49:88:29:b2:28:28:8a:27:a6:b2:
42:2d:43:5b:71:d1:6a:f1:28:7c:0f:c6:f1:eb:35:
47:85:0d:a8:f1:e2:29:c4:14:5b:75:d4:ff:6e:f1:
54:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:93:D3:A9:9B:EA:3E:83:6B:06:FE:B3:F8:EC:43:3F:7E:41:96:64
X509v3 Authority Key Identifier:
keyid:53:76:46:7E:F0:92:1C:51:19:0E:2E:A6:0F:2A:BB:3B:D6:E9:C1:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U3ZGfvCSHFEZDi6mDyq7O9bpwZ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/c9db0e-903e-485e-b67f-2c7a2a746279/1/GJPTqZvqPoNrBv6z-OxDP35BlmQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/c9db0e-903e-485e-b67f-2c7a2a746279/1/U3ZGfvCSHFEZDi6mDyq7O9bpwZ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:480::/29
Signature Algorithm: sha256WithRSAEncryption
39:58:02:22:6e:bf:95:63:53:5f:f9:e6:0f:48:e0:d7:53:91:
e2:95:ff:27:a8:f8:1e:d8:3d:99:21:ad:5e:75:ff:7a:0b:b8:
9f:45:a1:a4:c5:0a:32:b7:05:d9:e3:b1:d2:3d:e3:d5:76:19:
e9:25:4d:89:15:81:e4:f2:fa:1a:c3:d8:3a:4e:54:35:73:5f:
72:e7:5b:d8:bb:fc:08:b5:a7:66:52:0b:dd:d0:88:b2:2e:ab:
af:c7:dc:61:21:47:55:dc:8c:9f:96:03:bb:b1:58:ac:38:80:
a4:73:c7:8d:38:6a:db:e3:29:34:bb:da:46:5d:cd:d5:30:35:
a8:94:a3:f8:f4:c0:e8:9a:2d:fa:cb:cd:d8:d8:83:f4:61:10:
15:9e:d2:c7:db:b5:3f:de:03:06:34:08:ce:33:b5:e4:59:aa:
a1:5c:6c:20:3b:6e:08:e4:26:d5:d9:46:d0:5c:8d:c6:6c:0a:
3b:51:82:a4:d8:8c:60:9f:06:7b:04:1a:67:94:b6:4f:32:2b:
03:f4:59:e2:1b:af:58:3e:eb:cf:af:1a:0a:53:f8:09:17:2c:
f9:fc:8a:d5:e9:30:e4:8c:b3:cd:34:aa:a1:da:f1:8e:6c:34:
fc:4f:9e:4c:2d:42:c2:00:e1:3a:03:11:6a:d1:07:8b:45:28:
59:25:50:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:30:32 2024 by rpki-client on console.sobornost.net