Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/yzS5saqZmvfLrP5ZMitifKMGoG8.roa
File: yzS5saqZmvfLrP5ZMitifKMGoG8.roa (raw, json)
Hash identifier: AF5+gCr6uoirpp1iHmwqxTO2TQvWrmslD/huU/aCXCo=
Subject key identifier: CB:34:B9:B1:AA:99:9A:F7:CB:AC:FE:59:32:2B:62:7C:A3:06:A0:6F
Certificate issuer: /CN=70f68cded39e3ec54cee2233252ef3937ba9828d
Certificate serial: 0194258F0A979D921AF389A352DFC15A0C15
Authority key identifier: 70:F6:8C:DE:D3:9E:3E:C5:4C:EE:22:33:25:2E:F3:93:7B:A9:82:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/yzS5saqZmvfLrP5ZMitifKMGoG8.roa
Signing time: Thu 02 Jan 2025 05:48:38 +0000
ROA not before: Thu 02 Jan 2025 05:48:38 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211201
IP address blocks: 193.33.96.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:0a:97:9d:92:1a:f3:89:a3:52:df:c1:5a:0c:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70f68cded39e3ec54cee2233252ef3937ba9828d
Validity
Not Before: Jan 2 05:48:38 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cb34b9b1aa999af7cbacfe59322b627ca306a06f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:c5:b5:e9:b5:d2:49:d0:34:b8:6a:6f:35:0b:
fd:4d:10:81:4b:4a:f2:1f:da:56:af:5b:bc:a5:d7:
ad:5d:1d:37:23:6c:82:ed:d7:5b:a4:3c:4a:db:13:
04:1a:a2:e7:f1:4c:cf:c3:0a:ef:d5:b4:fb:cc:4f:
18:12:86:aa:54:67:33:b9:36:79:d3:ad:0b:0d:40:
d4:27:bc:0f:cb:74:e8:6f:90:e0:78:55:ce:59:25:
5b:61:95:f9:e1:40:48:84:1c:e6:2e:de:6c:46:ce:
6b:cd:c1:a2:aa:12:e2:d9:5e:da:5d:d1:24:82:d3:
28:eb:b5:44:db:1b:52:c6:9e:4e:7a:c1:9f:08:c3:
32:22:d1:d4:32:ad:85:46:c0:6a:fe:05:ed:6a:bd:
ae:80:6b:04:9c:d0:aa:27:e7:b1:96:98:3c:4e:3f:
59:84:ce:e3:98:54:24:5d:ab:bd:07:0e:4a:44:fb:
f1:65:4d:02:30:93:d9:88:c0:b3:96:34:61:7c:66:
e8:e2:f5:8f:cc:d7:24:84:a1:c1:1d:46:e5:bb:eb:
e1:f3:32:db:c6:69:f2:91:65:51:20:e3:46:b2:75:
eb:ab:af:4b:cc:c7:da:76:a1:23:be:45:75:29:88:
03:4b:63:a8:36:c8:4f:7a:79:30:58:af:70:d0:a3:
8c:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:34:B9:B1:AA:99:9A:F7:CB:AC:FE:59:32:2B:62:7C:A3:06:A0:6F
X509v3 Authority Key Identifier:
keyid:70:F6:8C:DE:D3:9E:3E:C5:4C:EE:22:33:25:2E:F3:93:7B:A9:82:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/yzS5saqZmvfLrP5ZMitifKMGoG8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.33.96.0/24
Signature Algorithm: sha256WithRSAEncryption
03:bd:6e:fe:c6:0d:55:ad:fe:f2:6f:63:4f:14:e9:52:4b:40:
dd:6b:ca:29:a8:a1:7f:3f:5f:9e:4b:01:ad:10:b3:1b:b0:33:
77:d5:80:1a:a3:f1:89:c1:6d:cd:be:e7:f3:f8:17:b3:08:ea:
9d:28:58:9e:a5:c6:08:88:57:28:29:c4:13:15:98:05:06:a6:
93:88:c1:08:cc:70:a9:9a:b1:26:65:6b:90:7b:66:66:3e:ba:
70:87:5c:99:3e:42:ec:ec:60:b3:44:d6:9a:ab:bd:95:3a:22:
cd:62:3c:84:2e:81:23:87:bc:e2:7e:53:b2:96:ef:58:9b:56:
e2:92:59:8b:41:12:b3:61:b0:48:7e:e6:f9:a4:c4:aa:17:98:
71:fd:cc:47:03:d9:40:4f:15:7a:9d:a1:e4:74:92:12:27:f9:
b0:9e:f4:d3:01:a1:c9:44:51:28:47:9f:03:75:97:ea:b6:c6:
9b:67:f4:95:9f:7a:de:a3:92:ac:25:18:85:01:4c:f5:6e:fa:
72:6a:54:4a:a0:63:39:f2:cd:41:56:bd:c2:c0:c1:60:55:3a:
6d:bc:bb:00:87:99:5d:54:65:22:05:6e:fd:fa:7a:6e:18:f1:
cb:e8:33:1d:ee:1c:d3:4d:18:70:7f:9e:55:38:98:5e:9d:9e:
ec:37:78:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:44 2025 by rpki-client on console.sobornost.net