Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/a32411-1e43-412b-82fe-23eb3da556fc/1/m8gpZf1fE_jIYAv8byY9DyEkx8k.roa
File: m8gpZf1fE_jIYAv8byY9DyEkx8k.roa (raw, json)
Hash identifier: s+6ROdAtCD4b6W3phTa4U71iAA7NdevFsQ6JCcyFr+k=
Subject key identifier: 9B:C8:29:65:FD:5F:13:F8:C8:60:0B:FC:6F:26:3D:0F:21:24:C7:C9
Certificate issuer: /CN=e66cf1f3904620aa773742915add0da8e63501b8
Certificate serial: 018F1793CC18C9DF93A0793CDA04C9F4C50E
Authority key identifier: E6:6C:F1:F3:90:46:20:AA:77:37:42:91:5A:DD:0D:A8:E6:35:01:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5mzx85BGIKp3N0KRWt0NqOY1Abg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/a32411-1e43-412b-82fe-23eb3da556fc/1/m8gpZf1fE_jIYAv8byY9DyEkx8k.roa
Signing time: Thu 25 Apr 2024 23:25:13 +0000
ROA not before: Thu 25 Apr 2024 23:25:13 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215751
IP address blocks: 2a0b:4e04::/48 maxlen: 48
2a0b:4e04:42::/48 maxlen: 48
2a0b:4e04:3333::/48 maxlen: 48
2a0b:4e04:b00b::/48 maxlen: 48
2a0b:4e04:beef::/48 maxlen: 48
2a0b:4e04:f00d::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:17:93:cc:18:c9:df:93:a0:79:3c:da:04:c9:f4:c5:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e66cf1f3904620aa773742915add0da8e63501b8
Validity
Not Before: Apr 25 23:25:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9bc82965fd5f13f8c8600bfc6f263d0f2124c7c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:df:ff:fe:99:5d:3d:8a:a0:07:46:e8:62:c2:
2a:0b:8c:ad:44:4f:4d:26:52:de:e2:5a:97:e2:9d:
83:f9:16:7f:df:7e:55:82:86:24:18:af:dc:a5:72:
6e:d4:db:86:c0:68:c2:9b:aa:49:43:c6:89:d2:2a:
e8:6e:ba:a0:f0:22:21:27:12:de:c8:07:79:08:74:
dc:59:9e:08:b9:57:25:5f:e5:10:ce:28:ba:54:56:
2d:7a:1f:df:ba:63:e9:4a:55:08:6a:84:ff:bb:3d:
ab:f7:54:16:37:ab:6c:0e:5c:43:b3:39:95:cd:f2:
0d:a7:04:5f:cb:f4:1b:c0:db:8a:ed:6e:65:cb:f5:
9d:c6:24:bd:ab:e0:1c:e1:a6:ac:6d:5c:23:4a:43:
12:47:b4:eb:d7:97:c5:e9:f0:c3:0b:ef:2a:7d:e3:
07:6d:a9:bf:65:9e:d8:b4:b4:27:0d:11:f2:4c:05:
bd:cf:ef:ce:2a:c6:9c:dc:fa:88:21:6e:a0:85:d9:
88:04:cf:a0:7b:b9:69:08:0c:d3:ea:84:55:4b:29:
ad:cd:fa:5d:31:4c:e7:45:15:73:a3:39:1f:31:08:
74:e4:8e:17:df:8d:b6:49:05:b4:c7:b4:3f:33:73:
4f:c4:71:b3:a2:6d:b0:1c:10:af:c8:a3:30:84:cb:
72:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:C8:29:65:FD:5F:13:F8:C8:60:0B:FC:6F:26:3D:0F:21:24:C7:C9
X509v3 Authority Key Identifier:
keyid:E6:6C:F1:F3:90:46:20:AA:77:37:42:91:5A:DD:0D:A8:E6:35:01:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5mzx85BGIKp3N0KRWt0NqOY1Abg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/a32411-1e43-412b-82fe-23eb3da556fc/1/m8gpZf1fE_jIYAv8byY9DyEkx8k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/a32411-1e43-412b-82fe-23eb3da556fc/1/5mzx85BGIKp3N0KRWt0NqOY1Abg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:4e04::/48
2a0b:4e04:42::/48
2a0b:4e04:3333::/48
2a0b:4e04:b00b::/48
2a0b:4e04:beef::/48
2a0b:4e04:f00d::/48
Signature Algorithm: sha256WithRSAEncryption
cc:2e:84:4c:ec:22:fd:c1:b2:7d:3a:18:84:a1:6c:88:57:c9:
80:7b:7c:4a:cc:f9:aa:43:cd:61:20:8b:21:b2:0d:cb:32:19:
98:4e:24:b6:c8:07:7d:b0:20:86:2b:9c:24:c4:55:ba:17:60:
3a:37:06:7a:eb:8e:b7:d5:c1:5c:75:95:fc:60:d1:39:46:00:
61:f5:f4:e7:d0:cd:32:b5:8e:77:9d:6b:63:f7:89:9a:39:18:
af:29:31:a4:18:8a:80:b1:ba:36:c0:f7:c5:3c:97:95:e7:4a:
ba:45:6c:60:6c:e4:77:ef:88:53:95:a3:b5:13:21:e1:eb:96:
b3:02:ba:d0:f2:7b:43:99:49:a6:82:e6:8c:4b:d2:4a:39:9a:
8e:1f:2d:59:58:68:e8:be:c4:f0:59:25:f2:d3:fa:6c:dc:ee:
1b:c4:a1:5a:3b:5e:95:63:67:5a:36:7e:b3:c9:f1:29:5c:0f:
5e:ce:48:a2:8c:7d:c2:66:91:70:c6:ab:16:78:5e:74:ab:e0:
e4:47:40:d6:c9:1c:c5:36:c2:fe:d1:9d:aa:3c:ca:22:d7:ce:
55:33:eb:cd:45:da:ba:cf:9b:a7:1b:af:79:cd:33:c2:db:de:
e3:03:f1:5f:c0:e6:96:aa:29:0c:13:bd:38:12:f6:72:ad:a9:
fe:e6:1c:48
-----BEGIN CERTIFICATE-----
MIIFLTCCBBWgAwIBAgISAY8Xk8wYyd+ToHk82gTJ9MUOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU2NmNmMWYzOTA0NjIwYWE3NzM3NDI5MTVhZGQwZGE4ZTYz
NTAxYjgwHhcNMjQwNDI1MjMyNTEzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5YmM4Mjk2NWZkNWYxM2Y4Yzg2MDBiZmM2ZjI2M2QwZjIxMjRjN2M5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmd///pldPYqgB0boYsIqC4ytRE9N
JlLe4lqX4p2D+RZ/335VgoYkGK/cpXJu1NuGwGjCm6pJQ8aJ0irobrqg8CIhJxLe
yAd5CHTcWZ4IuVclX+UQzii6VFYteh/fumPpSlUIaoT/uz2r91QWN6tsDlxDszmV
zfINpwRfy/QbwNuK7W5ly/WdxiS9q+Ac4aasbVwjSkMSR7Tr15fF6fDDC+8qfeMH
bam/ZZ7YtLQnDRHyTAW9z+/OKsac3PqIIW6ghdmIBM+ge7lpCAzT6oRVSymtzfpd
MUznRRVzozkfMQh05I4X3422SQW0x7Q/M3NPxHGzom2wHBCvyKMwhMtymQIDAQAB
o4ICOTCCAjUwHQYDVR0OBBYEFJvIKWX9XxP4yGAL/G8mPQ8hJMfJMB8GA1UdIwQY
MBaAFOZs8fOQRiCqdzdCkVrdDajmNQG4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNW16eDg1QkdJS3AzTjBLUld0ME5xT1kxQWJnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS9hMzI0MTEtMWU0My00MTJiLTgyZmUt
MjNlYjNkYTU1NmZjLzEvbThncFpmMWZFX2pJWUF2OGJ5WTlEeUVreDhrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZS9hMzI0MTEtMWU0My00MTJiLTgyZmUtMjNlYjNkYTU1NmZj
LzEvNW16eDg1QkdJS3AzTjBLUld0ME5xT1kxQWJnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CME8GCCsGAQUFBwEHAQH/BEAwPjA8BAIAAjA2AwcAKgtOBAAA
AwcAKgtOBABCAwcAKgtOBDMzAwcAKgtOBLALAwcAKgtOBL7vAwcAKgtOBPANMA0G
CSqGSIb3DQEBCwUAA4IBAQDMLoRM7CL9wbJ9OhiEoWyIV8mAe3xKzPmqQ81hIIsh
sg3LMhmYTiS2yAd9sCCGK5wkxFW6F2A6NwZ664631cFcdZX8YNE5RgBh9fTn0M0y
tY53nWtj94maORivKTGkGIqAsbo2wPfFPJeV50q6RWxgbOR374hTlaO1EyHh65az
ArrQ8ntDmUmmguaMS9JKOZqOHy1ZWGjovsTwWSXy0/ps3O4bxKFaO16VY2daNn6z
yfEpXA9ezkiijH3CZpFwxqsWeF50q+DkR0DWyRzFNsL+0Z2qPMoi185VM+vNRdq6
z5unG695zTPC297jA/FfwOaWqikME704EvZyran+5hxI
-----END CERTIFICATE-----
Generated at Sat Apr 27 20:46:52 2024 by rpki-client on console.sobornost.net