Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/126756-9a94-4a91-bf47-8ad6ffb2617d/1/yPrWz37IXjB7ODdHPO3TzqpY_oY.roa
File: yPrWz37IXjB7ODdHPO3TzqpY_oY.roa (raw, json)
Hash identifier: 34zVN/3obTpRgYhbmY7ABdm+4sQRJRCWRUdOZLf3tEk=
Subject key identifier: C8:FA:D6:CF:7E:C8:5E:30:7B:38:37:47:3C:ED:D3:CE:AA:58:FE:86
Certificate issuer: /CN=a4d029f2c321adb59eca5fca57a1eb9bdf531d6a
Certificate serial: 0195EBBEB86BF75A97AA357DB5C413715394
Authority key identifier: A4:D0:29:F2:C3:21:AD:B5:9E:CA:5F:CA:57:A1:EB:9B:DF:53:1D:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pNAp8sMhrbWeyl_KV6Hrm99THWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/126756-9a94-4a91-bf47-8ad6ffb2617d/1/yPrWz37IXjB7ODdHPO3TzqpY_oY.roa
Signing time: Mon 31 Mar 2025 10:28:19 +0000
ROA not before: Mon 31 Mar 2025 10:28:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 21266
IP address blocks: 80.90.64.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:eb:be:b8:6b:f7:5a:97:aa:35:7d:b5:c4:13:71:53:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4d029f2c321adb59eca5fca57a1eb9bdf531d6a
Validity
Not Before: Mar 31 10:28:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c8fad6cf7ec85e307b3837473cedd3ceaa58fe86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:f6:64:15:9e:47:78:7e:6a:6a:21:a1:87:f1:
89:83:b6:e2:2c:0b:f1:3f:6a:36:9d:92:5a:55:34:
1e:aa:9c:dc:f8:1f:9e:cb:12:7a:3f:b8:50:58:0e:
7e:02:82:b0:18:42:ef:4c:63:c1:58:73:30:1f:14:
a7:bd:d4:1e:15:5a:08:67:43:bb:52:2b:03:27:50:
2a:c1:23:29:41:4e:ab:75:cd:1c:8f:bf:4e:67:50:
0e:fb:41:a7:82:ec:aa:80:7f:40:9f:ec:5f:e0:54:
a6:88:c4:7b:43:dc:93:6d:e4:cc:28:8f:e9:eb:df:
37:06:b3:55:1d:ce:47:59:42:f2:4c:73:e7:66:5f:
b0:6e:63:7d:a5:a3:71:1d:9b:ad:37:a3:9e:be:c2:
83:32:dd:31:85:c6:85:aa:9d:3f:8d:16:94:18:ef:
9c:27:59:c2:7a:7a:58:e1:8c:b5:5c:8f:2d:d1:1a:
cd:a2:2d:bc:f0:34:3b:0b:81:b1:19:a6:57:64:c4:
98:1c:43:b9:6f:78:06:cc:cd:9b:b8:ec:22:f9:38:
b5:f5:9c:52:50:44:49:b6:fc:6d:35:ee:9a:10:b6:
77:48:ed:86:23:26:0a:1b:6f:39:42:c5:12:6b:4c:
36:70:23:17:ff:8c:79:7a:14:a3:78:20:6c:a4:8f:
43:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:FA:D6:CF:7E:C8:5E:30:7B:38:37:47:3C:ED:D3:CE:AA:58:FE:86
X509v3 Authority Key Identifier:
keyid:A4:D0:29:F2:C3:21:AD:B5:9E:CA:5F:CA:57:A1:EB:9B:DF:53:1D:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pNAp8sMhrbWeyl_KV6Hrm99THWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/126756-9a94-4a91-bf47-8ad6ffb2617d/1/yPrWz37IXjB7ODdHPO3TzqpY_oY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/126756-9a94-4a91-bf47-8ad6ffb2617d/1/pNAp8sMhrbWeyl_KV6Hrm99THWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.90.64.0/23
Signature Algorithm: sha256WithRSAEncryption
7c:aa:bb:0a:ca:ec:89:89:a0:e3:e8:59:d7:15:a5:8e:3c:71:
11:ea:f0:d2:6a:84:c7:5a:4f:71:38:7b:73:18:89:53:da:55:
75:78:7b:81:8c:ec:44:ca:60:71:4c:d3:6f:10:40:3f:0a:ac:
65:31:1e:0a:23:be:06:a5:58:08:35:0c:cb:56:76:18:5a:1e:
e0:b8:c7:38:b8:12:a6:97:18:3f:f4:b7:0d:b0:06:ba:1a:01:
0d:95:f0:0a:75:82:a9:7b:29:44:85:ae:57:e2:cc:61:4c:00:
14:d7:6f:99:a9:8a:65:0d:b3:7e:0b:d0:f8:cc:9f:51:30:88:
30:3e:a5:f1:16:75:c5:df:4f:87:76:70:b2:ce:03:b6:90:fa:
4b:bd:a6:3b:b2:3a:61:2c:a8:a4:c5:60:93:fb:a2:ed:5a:cf:
73:62:df:40:05:05:7a:3b:34:e2:37:fb:76:2b:48:f5:41:43:
a4:a7:10:e1:37:2c:ad:fb:e1:47:ff:2c:c1:9a:32:69:10:01:
16:b2:a5:66:ae:9b:ac:66:76:72:13:68:5a:aa:ae:78:3f:2e:
9f:15:19:82:2f:8b:21:da:4c:8c:91:72:04:0b:f6:03:e8:af:
42:9f:7a:c8:fc:b8:3b:f8:6b:59:57:6b:1e:05:b7:0a:68:15:
a1:f1:90:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:20 2025 by rpki-client on console.sobornost.net