Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/72faed-a8f8-4a33-8ddc-5cef04b79737/1/YA4coPbjcwqSnvPjF4zJfKILsGk.roa
File: YA4coPbjcwqSnvPjF4zJfKILsGk.roa (raw, json)
Hash identifier: k8y/R8lkcGetmx+8pflXY4l14HDBBXn9CJweDPgs5YQ=
Subject key identifier: 60:0E:1C:A0:F6:E3:73:0A:92:9E:F3:E3:17:8C:C9:7C:A2:0B:B0:69
Certificate issuer: /CN=0d23064e3c27ec92b7eab667649d204e5673838e
Certificate serial: 019424457B4A670D8D2505F617CACC4540E3
Authority key identifier: 0D:23:06:4E:3C:27:EC:92:B7:EA:B6:67:64:9D:20:4E:56:73:83:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DSMGTjwn7JK36rZnZJ0gTlZzg44.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/72faed-a8f8-4a33-8ddc-5cef04b79737/1/YA4coPbjcwqSnvPjF4zJfKILsGk.roa
Signing time: Wed 01 Jan 2025 23:48:40 +0000
ROA not before: Wed 01 Jan 2025 23:48:40 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20811
IP address blocks: 147.189.208.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:7b:4a:67:0d:8d:25:05:f6:17:ca:cc:45:40:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d23064e3c27ec92b7eab667649d204e5673838e
Validity
Not Before: Jan 1 23:48:40 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=600e1ca0f6e3730a929ef3e3178cc97ca20bb069
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:88:c1:7f:fd:46:0d:61:4c:4d:9b:f9:e4:d3:
7c:a8:21:f3:f1:f5:04:d6:b9:7a:52:dc:be:c2:87:
bb:2d:e9:d4:7b:0b:6e:83:b0:8f:be:8f:93:6f:73:
7c:a5:1e:7b:23:65:f4:5f:31:fb:8d:62:e0:9f:9c:
ec:ca:84:28:fc:65:67:f9:f8:aa:b6:35:13:6e:33:
d8:6c:60:79:f2:b8:83:8f:9f:1a:bc:88:77:88:b8:
fd:41:97:bb:38:cc:4f:93:39:03:97:fd:2d:3d:53:
1f:51:14:3d:e3:bf:86:77:45:cb:48:9b:9d:b3:6f:
32:b0:69:1d:32:a5:64:28:44:70:da:01:a7:8c:0a:
ab:4f:0f:71:8a:a6:69:8e:4e:f3:02:c6:e7:39:c6:
3b:57:e9:12:7f:49:c4:4b:45:67:ec:31:c8:c8:fb:
37:dd:5d:ef:25:fd:4f:cd:a3:94:a5:78:7e:1f:db:
60:c0:c6:2b:cf:c7:c7:a6:99:a6:ed:55:65:d8:e3:
66:12:fe:cc:cc:13:58:56:d9:10:02:e3:a9:d3:40:
66:c6:69:1b:53:4f:f0:54:72:bd:9f:d0:72:02:d4:
d0:d7:19:ac:49:a5:31:67:30:58:a7:4f:48:13:96:
68:b3:4e:5a:3c:9d:91:03:8f:cd:9f:ee:2c:21:30:
44:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:0E:1C:A0:F6:E3:73:0A:92:9E:F3:E3:17:8C:C9:7C:A2:0B:B0:69
X509v3 Authority Key Identifier:
keyid:0D:23:06:4E:3C:27:EC:92:B7:EA:B6:67:64:9D:20:4E:56:73:83:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DSMGTjwn7JK36rZnZJ0gTlZzg44.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/72faed-a8f8-4a33-8ddc-5cef04b79737/1/YA4coPbjcwqSnvPjF4zJfKILsGk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/72faed-a8f8-4a33-8ddc-5cef04b79737/1/DSMGTjwn7JK36rZnZJ0gTlZzg44.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.189.208.0/22
Signature Algorithm: sha256WithRSAEncryption
9c:de:91:dc:2c:ef:3f:f8:61:52:52:40:a5:42:2c:e9:3a:7a:
b3:1a:89:7d:98:7d:3b:80:f1:9d:f0:a8:95:de:35:8f:9b:78:
b7:7f:66:e8:82:e8:b2:1e:a8:f6:c5:ea:0a:64:9c:ad:0a:a0:
5c:71:58:ad:8d:50:3b:fc:32:c2:5a:cf:fb:5b:7c:5d:c6:13:
9b:99:ed:dd:ee:2e:86:36:81:21:5a:60:40:a8:5b:ec:70:71:
ac:91:8e:95:17:22:42:22:a5:67:1a:d6:39:e1:a8:25:95:19:
2d:ae:c1:f0:bb:1a:d3:5d:18:c6:34:f4:17:15:30:3f:9a:00:
3e:53:10:99:d7:8c:d8:b7:4d:44:b5:06:e0:04:28:d8:bb:0b:
a0:2d:9e:b9:b9:15:63:99:f9:9a:e1:62:77:fd:23:24:8e:48:
ab:b5:ae:cc:bd:16:2f:82:c2:0f:a7:bf:d4:a8:57:52:5b:29:
fb:5d:e3:48:bb:d9:66:1a:b7:b2:92:1b:f6:3d:8f:a6:0a:22:
de:e8:99:c9:7e:7d:0c:3b:d3:da:19:b5:39:49:a5:7a:c7:f6:
96:ff:ea:85:6c:f8:86:16:ae:96:b5:24:28:9e:71:75:2e:11:
ef:56:61:d9:ea:b0:df:e3:42:58:b9:eb:b5:31:2c:c2:29:a7:
87:f0:f9:57
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQkRXtKZw2NJQX2F8rMRUDjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBkMjMwNjRlM2MyN2VjOTJiN2VhYjY2NzY0OWQyMDRlNTY3
MzgzOGUwHhcNMjUwMTAxMjM0ODQwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MDBlMWNhMGY2ZTM3MzBhOTI5ZWYzZTMxNzhjYzk3Y2EyMGJiMDY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1IjBf/1GDWFMTZv55NN8qCHz8fUE
1rl6Uty+woe7LenUewtug7CPvo+Tb3N8pR57I2X0XzH7jWLgn5zsyoQo/GVn+fiq
tjUTbjPYbGB58riDj58avIh3iLj9QZe7OMxPkzkDl/0tPVMfURQ947+Gd0XLSJud
s28ysGkdMqVkKERw2gGnjAqrTw9xiqZpjk7zAsbnOcY7V+kSf0nES0Vn7DHIyPs3
3V3vJf1PzaOUpXh+H9tgwMYrz8fHppmm7VVl2ONmEv7MzBNYVtkQAuOp00Bmxmkb
U0/wVHK9n9ByAtTQ1xmsSaUxZzBYp09IE5Zos05aPJ2RA4/Nn+4sITBE0QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGAOHKD243MKkp7z4xeMyXyiC7BpMB8GA1UdIwQY
MBaAFA0jBk48J+ySt+q2Z2SdIE5Wc4OOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRFNNR1Rqd243SkszNnJablpKMGdUbFp6ZzQ0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS83MmZhZWQtYThmOC00YTMzLThkZGMt
NWNlZjA0Yjc5NzM3LzEvWUE0Y29QYmpjd3FTbnZQakY0ekpmS0lMc0drLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMS83MmZhZWQtYThmOC00YTMzLThkZGMtNWNlZjA0Yjc5NzM3
LzEvRFNNR1Rqd243SkszNnJablpKMGdUbFp6ZzQ0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCk73QMA0G
CSqGSIb3DQEBCwUAA4IBAQCc3pHcLO8/+GFSUkClQizpOnqzGol9mH07gPGd8KiV
3jWPm3i3f2boguiyHqj2xeoKZJytCqBccVitjVA7/DLCWs/7W3xdxhObme3d7i6G
NoEhWmBAqFvscHGskY6VFyJCIqVnGtY54agllRktrsHwuxrTXRjGNPQXFTA/mgA+
UxCZ14zYt01EtQbgBCjYuwugLZ65uRVjmfma4WJ3/SMkjkirta7MvRYvgsIPp7/U
qFdSWyn7XeNIu9lmGreykhv2PY+mCiLe6JnJfn0MO9PaGbU5SaV6x/aW/+qFbPiG
Fq6WtSQonnF1LhHvVmHZ6rDf40JYueu1MSzCKaeH8PlX
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:18 2025 by rpki-client on console.sobornost.net