Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/051b82-06c9-48b7-b548-98d5e5d90473/1/lCCuB0jDyuvAYXLOJTOn_cNgWc8.roa
File: lCCuB0jDyuvAYXLOJTOn_cNgWc8.roa (raw, json)
Hash identifier: HjbYsGUKFf1MWsIB+SCbfNSuwlwT3QlGjytiQ5MDhE4=
Subject key identifier: 94:20:AE:07:48:C3:CA:EB:C0:61:72:CE:25:33:A7:FD:C3:60:59:CF
Certificate issuer: /CN=3f36ffd1621521e92cf2e7814190d3a253e00637
Certificate serial: 019428259C92C1D5C487FFA3552F8D5C23F9
Authority key identifier: 3F:36:FF:D1:62:15:21:E9:2C:F2:E7:81:41:90:D3:A2:53:E0:06:37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pzb_0WIVIeks8ueBQZDTolPgBjc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/051b82-06c9-48b7-b548-98d5e5d90473/1/lCCuB0jDyuvAYXLOJTOn_cNgWc8.roa
Signing time: Thu 02 Jan 2025 17:52:20 +0000
ROA not before: Thu 02 Jan 2025 17:52:20 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215286
IP address blocks: 2001:678:110::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:25:9c:92:c1:d5:c4:87:ff:a3:55:2f:8d:5c:23:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f36ffd1621521e92cf2e7814190d3a253e00637
Validity
Not Before: Jan 2 17:52:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9420ae0748c3caebc06172ce2533a7fdc36059cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:77:24:e0:0a:43:de:3a:1c:80:ef:e3:d7:44:
74:7c:96:10:54:7f:f2:52:5f:25:c5:54:3f:55:b4:
a6:2a:2d:59:98:8b:13:45:23:0f:4a:f0:68:6c:e7:
2f:0e:6c:ac:32:87:a6:b0:3b:ed:a2:98:45:f7:28:
a9:2d:ac:28:23:ec:01:a4:07:ce:ec:0f:2f:48:4f:
ff:8c:0e:5d:f1:b2:33:62:00:5a:2d:9c:4a:7f:ab:
95:9e:ed:b3:e0:74:65:ca:d5:64:a2:34:56:1b:5f:
8f:e1:29:a8:08:bf:61:ac:19:b1:d4:70:51:a8:0a:
eb:7f:34:1b:e8:78:03:67:cb:80:5b:f9:7e:4c:48:
b2:ed:f4:cc:17:de:fc:8a:e2:7f:b2:66:e4:3c:e6:
c5:e9:7f:9b:8f:5b:b5:49:2c:d9:c5:75:68:99:84:
3d:44:66:49:0c:67:46:80:9a:f0:f8:93:12:20:71:
59:cf:b5:cb:83:ce:20:6e:3f:ad:79:33:16:1c:6c:
38:eb:25:10:83:31:13:5e:89:e7:a2:70:57:c2:5c:
31:74:e1:26:e8:2c:c6:49:e5:29:10:53:34:b9:f5:
a1:99:75:69:f3:87:6d:04:be:ac:ee:86:de:80:7e:
cc:33:2e:fb:09:85:cb:0c:95:58:69:11:d3:2d:4d:
c5:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:20:AE:07:48:C3:CA:EB:C0:61:72:CE:25:33:A7:FD:C3:60:59:CF
X509v3 Authority Key Identifier:
keyid:3F:36:FF:D1:62:15:21:E9:2C:F2:E7:81:41:90:D3:A2:53:E0:06:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pzb_0WIVIeks8ueBQZDTolPgBjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/051b82-06c9-48b7-b548-98d5e5d90473/1/lCCuB0jDyuvAYXLOJTOn_cNgWc8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/051b82-06c9-48b7-b548-98d5e5d90473/1/Pzb_0WIVIeks8ueBQZDTolPgBjc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:110::/48
Signature Algorithm: sha256WithRSAEncryption
85:19:6e:cf:ec:29:34:a0:f8:1b:78:58:27:db:34:c7:d8:d4:
71:c4:75:4c:56:7b:c0:4e:6f:de:16:89:77:f2:90:79:36:d3:
c3:d9:ad:92:8d:1a:55:e4:6b:1c:b7:9b:a5:6c:aa:28:6c:b8:
d2:5d:b8:e0:82:ad:26:cb:0b:4d:ae:f2:cd:b0:aa:dc:4c:eb:
9e:25:ef:34:1c:fc:9e:e8:c3:8a:e8:c1:9f:bd:50:bb:cd:fb:
ea:d3:71:28:6c:bc:43:8c:c7:ee:7e:cb:70:7a:32:15:b6:e6:
3f:f4:8d:12:4d:ff:74:ac:bb:ec:cf:bf:b9:2f:f5:6a:70:10:
d2:6d:1d:81:dd:9f:26:9c:96:6a:dd:65:eb:55:8d:fc:33:ae:
ab:b6:99:b1:b5:bd:3e:ed:08:6b:a2:4c:1b:31:79:55:1d:db:
47:c8:2b:25:75:ab:1b:37:8b:66:95:42:30:1c:64:1a:9a:c2:
73:3f:db:29:cd:eb:47:e4:fd:8c:f3:c0:c8:1d:6d:0b:5e:23:
dc:60:06:a0:99:ec:9d:0f:3b:36:22:9e:bd:20:e8:b2:86:c0:
dc:e1:3d:82:88:d1:22:03:1c:bb:85:2a:98:97:84:60:28:c8:
27:5f:5c:8b:ca:0e:f4:4f:5c:c2:db:62:56:46:2b:9f:b9:a7:
24:6c:2c:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 21 15:04:51 2025 by rpki-client on console.sobornost.net