Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/YR2rPhtrKq3iMaEV49Z36ym-Z18.roa
File: YR2rPhtrKq3iMaEV49Z36ym-Z18.roa (raw, json)
Hash identifier: AAfe2H5aPGC1UCGobjQRtxod7PCH3M7OVYvtd3qvDwM=
Subject key identifier: 61:1D:AB:3E:1B:6B:2A:AD:E2:31:A1:15:E3:D6:77:EB:29:BE:67:5F
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 019527930A4E3DE04FF96E7435671AD784A0
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/YR2rPhtrKq3iMaEV49Z36ym-Z18.roa
Signing time: Fri 21 Feb 2025 08:15:02 +0000
ROA not before: Fri 21 Feb 2025 08:15:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 6079
IP address blocks: 2a06:b3c0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:27:93:0a:4e:3d:e0:4f:f9:6e:74:35:67:1a:d7:84:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: Feb 21 08:15:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=611dab3e1b6b2aade231a115e3d677eb29be675f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:20:c9:a6:fc:76:cf:51:b1:f4:33:7a:85:46:
6d:48:c6:c7:04:85:3d:ba:b9:d3:db:42:96:45:7f:
a7:ef:f9:ee:2e:b2:e8:51:35:74:6c:a2:34:32:16:
8f:ab:d9:da:a9:b1:70:f5:49:9f:9c:ba:7a:5b:1f:
c7:52:f3:12:18:2f:e8:ea:a6:92:fa:2d:a0:bc:ab:
39:17:09:20:56:84:9d:69:20:99:0e:1a:da:e8:54:
c7:6e:84:21:0f:38:6f:df:75:9f:6c:bf:08:49:e1:
44:3a:5b:ae:0f:9c:f1:cd:8c:69:89:bb:34:12:e4:
b5:9a:ea:3d:b3:e9:aa:1f:9f:cf:c6:04:c6:81:6a:
68:1b:59:a0:78:c1:12:9e:c7:1f:0b:46:16:d4:5c:
5d:30:75:24:e1:10:00:67:92:c5:47:bd:13:86:0e:
d4:b1:cd:f4:d0:8a:35:c0:ae:39:70:e4:8e:91:9b:
83:08:dd:29:2f:d5:88:6c:79:b4:cf:13:bd:b7:0c:
84:17:3a:1f:87:2c:31:75:30:fc:74:82:24:0c:7e:
e6:a9:b4:96:c2:81:ce:31:72:21:f7:bd:d0:b8:99:
c6:f6:71:5b:fe:40:5d:90:2c:87:f6:bf:14:01:8e:
1a:4d:15:6e:a8:13:5c:26:6a:4d:af:e8:8b:5c:27:
d5:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:1D:AB:3E:1B:6B:2A:AD:E2:31:A1:15:E3:D6:77:EB:29:BE:67:5F
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/YR2rPhtrKq3iMaEV49Z36ym-Z18.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:b3c0::/29
Signature Algorithm: sha256WithRSAEncryption
27:2c:32:ec:62:bc:17:98:2d:fc:29:b4:42:bf:94:e8:61:7d:
8e:90:5c:1d:b2:65:f2:06:8f:8c:78:48:af:72:45:13:63:76:
d8:0e:d3:90:d3:35:03:1a:ec:76:18:70:9a:ef:e4:29:9c:07:
fc:a6:d4:10:2d:2f:35:8e:37:a5:5a:f7:2b:cb:77:de:3c:0e:
bc:09:46:64:95:a3:3e:42:9e:d1:da:4e:bf:69:ed:8e:06:d4:
fd:d0:e7:be:ca:46:c0:a7:fe:cf:a9:b9:09:f9:32:47:84:dc:
b4:b8:26:a6:f2:37:53:31:4e:aa:0c:e7:4f:a3:40:ab:3a:4b:
3c:11:4a:ae:8f:b4:fd:62:7f:94:13:ec:da:13:8b:1a:49:c3:
a5:db:73:21:78:6d:80:0e:34:4f:f9:55:1f:4b:94:38:d9:8c:
73:de:26:31:4d:d0:1c:b5:dc:c7:77:c1:a1:ca:d3:4d:24:d4:
f4:79:d9:81:0c:07:79:70:ba:18:99:e6:e4:db:c7:a8:c2:2c:
b7:b1:77:24:c8:b7:c2:97:18:83:df:a0:cd:e1:6c:9b:a3:81:
c3:d6:94:bd:e1:3c:fc:2c:72:1c:b2:48:a3:9a:81:d7:1e:87:
14:f0:d4:9a:c6:58:ad:76:a4:44:48:05:0a:62:af:34:67:ac:
75:92:d5:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 25 18:07:06 2025 by rpki-client on console.sobornost.net