Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/c1f962-88d6-4642-a2d3-7a7473c545b1/1/yZedmLHqwHm_jp6i-QDVb0eQ1fU.roa
File: yZedmLHqwHm_jp6i-QDVb0eQ1fU.roa (raw, json)
Hash identifier: tXSAiQOIwQWxN7COGmNqTXUWyQelhvhD5KWfqi3wsHU=
Subject key identifier: C9:97:9D:98:B1:EA:C0:79:BF:8E:9E:A2:F9:00:D5:6F:47:90:D5:F5
Certificate issuer: /CN=6ec24e2ac9cd53399651590cf391ad6bbf1b3e26
Certificate serial: 018CC2DB333E59E93F62674F0D9FBF283F3C
Authority key identifier: 6E:C2:4E:2A:C9:CD:53:39:96:51:59:0C:F3:91:AD:6B:BF:1B:3E:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bsJOKsnNUzmWUVkM85Gta78bPiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/c1f962-88d6-4642-a2d3-7a7473c545b1/1/yZedmLHqwHm_jp6i-QDVb0eQ1fU.roa
Signing time: Mon 01 Jan 2024 02:29:54 +0000
ROA not before: Mon 01 Jan 2024 02:29:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216441
IP address blocks: 2001:67c:98::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:db:33:3e:59:e9:3f:62:67:4f:0d:9f:bf:28:3f:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ec24e2ac9cd53399651590cf391ad6bbf1b3e26
Validity
Not Before: Jan 1 02:29:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c9979d98b1eac079bf8e9ea2f900d56f4790d5f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:56:1e:c7:19:cf:32:04:9a:31:31:14:d8:d3:
da:92:6d:f0:d7:8d:e9:74:10:9d:3e:f4:06:d0:70:
b7:c3:2f:95:d5:94:2c:78:b0:59:55:b3:40:8a:f2:
21:41:7a:70:8d:f9:53:7e:7d:93:63:b1:15:de:9b:
27:9b:29:1d:9a:e2:17:1a:1b:03:ca:97:c5:72:3b:
00:6e:4e:96:fc:d2:31:c8:b6:ad:87:11:b1:c8:54:
c9:5a:a4:cf:34:57:05:55:d4:a4:b2:e5:5a:4d:78:
55:59:67:63:80:08:7f:4a:76:08:98:21:d8:ba:2a:
8f:eb:59:59:2b:70:e4:42:d9:71:c4:20:b8:0f:90:
79:75:96:82:b2:32:4e:87:7f:b0:26:9a:2c:fc:92:
60:b4:5a:04:a6:eb:2b:e5:3a:de:72:a4:47:74:7b:
93:85:62:b1:52:a9:17:b7:29:a3:6d:2c:70:51:0e:
39:9e:59:30:63:7a:81:65:5d:c3:6a:59:25:7b:6c:
b6:a3:80:32:17:56:02:9d:56:f8:49:84:f3:40:54:
cd:46:a0:7e:c6:7a:8d:42:77:8b:3b:21:c7:b3:13:
37:c3:fa:6d:d5:27:66:b1:b5:a1:99:0f:cf:0b:29:
a8:cf:1c:67:36:ab:5e:26:b1:17:00:15:1d:6a:f2:
b4:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:97:9D:98:B1:EA:C0:79:BF:8E:9E:A2:F9:00:D5:6F:47:90:D5:F5
X509v3 Authority Key Identifier:
keyid:6E:C2:4E:2A:C9:CD:53:39:96:51:59:0C:F3:91:AD:6B:BF:1B:3E:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bsJOKsnNUzmWUVkM85Gta78bPiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/c1f962-88d6-4642-a2d3-7a7473c545b1/1/yZedmLHqwHm_jp6i-QDVb0eQ1fU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/c1f962-88d6-4642-a2d3-7a7473c545b1/1/bsJOKsnNUzmWUVkM85Gta78bPiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:98::/48
Signature Algorithm: sha256WithRSAEncryption
11:da:58:a0:04:4c:37:54:85:d3:75:a3:ad:c3:7c:fd:8a:87:
c4:70:f1:b4:af:78:da:8b:b1:9f:92:c6:3a:17:6e:fa:22:95:
d8:71:df:cc:9e:54:26:55:ee:7e:74:38:21:b6:23:ba:1f:62:
b7:66:e3:a9:9f:5f:77:4c:e8:ea:8b:56:fd:1f:9b:a3:d3:1b:
72:46:1c:9e:ea:10:fc:c7:9b:f3:b7:24:aa:af:01:63:8e:6f:
e1:f2:a5:e1:5f:96:cb:79:53:b8:2b:80:69:2d:6a:4b:e9:60:
58:5b:81:c7:23:9b:ca:79:b7:19:55:8b:1e:3b:2e:9e:90:2c:
f2:3e:d3:fe:47:42:c2:cf:0d:78:08:c6:f3:0d:62:65:04:58:
40:49:87:45:b5:87:3a:fc:90:74:af:6a:56:cb:0b:2c:b6:5a:
fd:74:86:8b:29:05:78:37:dc:8b:fd:c2:e8:21:fd:e7:bf:92:
ab:bc:a3:03:b8:61:ae:4c:a3:7c:dc:6e:4e:5b:ac:14:4c:84:
d1:fa:5a:a7:45:0a:15:2e:74:61:86:df:76:ac:9a:7d:32:91:
d9:d8:46:21:ed:2f:3a:f4:de:e9:0b:94:13:25:98:f9:61:dc:
77:9b:d8:cb:e8:bc:a2:f2:7b:74:b7:12:99:d7:de:8f:fc:83:
5a:ad:45:0d
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYzC2zM+Wek/YmdPDZ+/KD88MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlYzI0ZTJhYzljZDUzMzk5NjUxNTkwY2YzOTFhZDZiYmYx
YjNlMjYwHhcNMjQwMTAxMDIyOTU0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjOTk3OWQ5OGIxZWFjMDc5YmY4ZTllYTJmOTAwZDU2ZjQ3OTBkNWY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn1YexxnPMgSaMTEU2NPakm3w143p
dBCdPvQG0HC3wy+V1ZQseLBZVbNAivIhQXpwjflTfn2TY7EV3psnmykdmuIXGhsD
ypfFcjsAbk6W/NIxyLathxGxyFTJWqTPNFcFVdSksuVaTXhVWWdjgAh/SnYImCHY
uiqP61lZK3DkQtlxxCC4D5B5dZaCsjJOh3+wJpos/JJgtFoEpusr5TrecqRHdHuT
hWKxUqkXtymjbSxwUQ45nlkwY3qBZV3Dalkle2y2o4AyF1YCnVb4SYTzQFTNRqB+
xnqNQneLOyHHsxM3w/pt1SdmsbWhmQ/PCymozxxnNqteJrEXABUdavK0JwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFMmXnZix6sB5v46eovkA1W9HkNX1MB8GA1UdIwQY
MBaAFG7CTirJzVM5llFZDPORrWu/Gz4mMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYnNKT0tzbk5Vem1XVVZrTTg1R3RhNzhiUGlZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS9jMWY5NjItODhkNi00NjQyLWEyZDMt
N2E3NDczYzU0NWIxLzEveVplZG1MSHF3SG1fanA2aS1RRFZiMGVRMWZVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMS9jMWY5NjItODhkNi00NjQyLWEyZDMtN2E3NDczYzU0NWIx
LzEvYnNKT0tzbk5Vem1XVVZrTTg1R3RhNzhiUGlZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfACY
MA0GCSqGSIb3DQEBCwUAA4IBAQAR2ligBEw3VIXTdaOtw3z9iofEcPG0r3jai7Gf
ksY6F276IpXYcd/MnlQmVe5+dDghtiO6H2K3ZuOpn193TOjqi1b9H5uj0xtyRhye
6hD8x5vztySqrwFjjm/h8qXhX5bLeVO4K4BpLWpL6WBYW4HHI5vKebcZVYseOy6e
kCzyPtP+R0LCzw14CMbzDWJlBFhASYdFtYc6/JB0r2pWywsstlr9dIaLKQV4N9yL
/cLoIf3nv5KrvKMDuGGuTKN83G5OW6wUTITR+lqnRQoVLnRhht92rJp9MpHZ2EYh
7S869N7pC5QTJZj5Ydx3m9jL6Lyi8nt0txKZ196P/INarUUN
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:25:34 2024 by rpki-client on console.sobornost.net