Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/e4637f-2de1-4815-bb6b-f11712149966/1/5YkjXXO1-roWgSaa-VjH_Qj1GQk.roa
File: 5YkjXXO1-roWgSaa-VjH_Qj1GQk.roa (raw, json)
Hash identifier: zhJALOAXOJL7mF2t5wg9TLqnLmZcgXJJ2Y83N1a9W4U=
Subject key identifier: E5:89:23:5D:73:B5:FA:BA:16:81:26:9A:F9:58:C7:FD:08:F5:19:09
Certificate issuer: /CN=79cb91394b790781d3a8773a855e5a9a3af20810
Certificate serial: 0195E28C72F55B5968E59E79411E27CAD6C7
Authority key identifier: 79:CB:91:39:4B:79:07:81:D3:A8:77:3A:85:5E:5A:9A:3A:F2:08:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ecuROUt5B4HTqHc6hV5amjryCBA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/e4637f-2de1-4815-bb6b-f11712149966/1/5YkjXXO1-roWgSaa-VjH_Qj1GQk.roa
Signing time: Sat 29 Mar 2025 15:36:49 +0000
ROA not before: Sat 29 Mar 2025 15:36:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 62513
IP address blocks: 2a14:d281::/32 maxlen: 48
2a14:d282::/32 maxlen: 48
2a14:d283::/32 maxlen: 48
2a14:d284::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e2:8c:72:f5:5b:59:68:e5:9e:79:41:1e:27:ca:d6:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79cb91394b790781d3a8773a855e5a9a3af20810
Validity
Not Before: Mar 29 15:36:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e589235d73b5faba1681269af958c7fd08f51909
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:36:34:af:01:b2:91:d4:62:09:64:de:eb:cd:
e0:40:bb:e8:4d:40:86:61:df:e7:20:30:7e:46:ea:
49:35:c0:2e:6f:4d:9c:02:81:e0:9b:76:d2:0d:25:
fb:32:da:fc:98:1a:6f:be:15:93:79:a9:17:83:1d:
f9:d3:87:e4:2e:15:21:e0:55:30:9e:c1:f7:87:f8:
fe:aa:47:b4:ad:c4:88:dc:1b:fe:62:1e:4e:59:8c:
b5:4b:12:1f:c9:30:fc:1d:94:c1:be:9c:d1:b5:26:
13:98:08:f0:29:bf:a3:d4:20:f7:9e:92:c5:bf:ab:
01:1e:66:af:6b:22:7e:25:f0:d5:5e:0b:a0:d5:f9:
71:ee:89:7d:fe:4a:02:40:32:52:74:04:b0:e1:22:
56:ba:b6:e4:04:b8:75:cc:62:62:d0:d7:80:a2:56:
47:9c:a9:ef:0d:80:56:8a:14:15:05:b8:4a:5d:75:
c3:b1:b1:5c:e3:5e:a8:1a:cc:25:cb:67:d3:d3:3f:
99:6e:67:63:f9:24:f6:0d:26:09:7d:19:59:99:fc:
bb:80:62:bf:6d:a8:ab:1c:b4:9a:44:e5:ff:d2:44:
c4:72:09:67:f1:47:ed:a6:3c:43:58:03:0f:75:a9:
83:68:8b:45:f4:09:0c:cf:00:98:ec:d6:e5:5f:72:
cf:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:89:23:5D:73:B5:FA:BA:16:81:26:9A:F9:58:C7:FD:08:F5:19:09
X509v3 Authority Key Identifier:
keyid:79:CB:91:39:4B:79:07:81:D3:A8:77:3A:85:5E:5A:9A:3A:F2:08:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ecuROUt5B4HTqHc6hV5amjryCBA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/e4637f-2de1-4815-bb6b-f11712149966/1/5YkjXXO1-roWgSaa-VjH_Qj1GQk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/e4637f-2de1-4815-bb6b-f11712149966/1/ecuROUt5B4HTqHc6hV5amjryCBA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:d281::-2a14:d284:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
93:b3:ca:af:fc:fa:ac:c2:2c:78:b4:ce:94:47:0b:b8:c0:da:
8d:39:d8:23:e8:c2:4b:d9:3c:f7:31:4b:8f:5d:0b:7c:a2:e9:
97:66:f1:bf:13:f2:93:cc:86:42:8a:d8:6a:fc:c7:d3:80:25:
c8:19:8c:ff:91:ae:fc:2f:39:a6:51:94:b7:93:c4:aa:0c:e9:
c4:1f:af:e9:5f:31:d3:72:38:56:17:a0:e2:29:30:52:4f:7c:
5f:9c:43:1a:3c:25:ae:df:cc:83:ac:9c:67:f2:9d:cc:e3:70:
bb:2a:8b:ac:9d:68:f4:ae:36:3d:08:98:5f:7c:5c:5e:93:ff:
5a:6e:7a:bd:28:ab:16:bd:67:93:8b:42:7c:5c:e9:3e:5c:ff:
e7:9b:e7:51:1c:dc:99:3b:0f:5b:07:fc:fc:07:ea:f9:b6:68:
ec:2d:83:f4:7c:8a:5f:ff:94:a3:dc:b1:2f:9b:88:4c:9b:8c:
a0:6d:13:e9:3a:e1:42:69:29:51:36:00:f1:bf:bf:4b:d3:af:
a4:c3:32:5a:58:f6:cb:82:33:e3:28:1b:0c:c6:15:6d:84:8a:
bb:70:89:d4:bc:e6:90:01:1f:6a:16:21:58:e5:14:6e:4c:51:
47:7f:db:da:fd:09:42:03:aa:13:04:76:43:44:7e:fd:07:b7:
c5:71:23:09
-----BEGIN CERTIFICATE-----
MIIFBzCCA++gAwIBAgISAZXijHL1W1lo5Z55QR4nytbHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc5Y2I5MTM5NGI3OTA3ODFkM2E4NzczYTg1NWU1YTlhM2Fm
MjA4MTAwHhcNMjUwMzI5MTUzNjQ5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNTg5MjM1ZDczYjVmYWJhMTY4MTI2OWFmOTU4YzdmZDA4ZjUxOTA5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtjY0rwGykdRiCWTe683gQLvoTUCG
Yd/nIDB+RupJNcAub02cAoHgm3bSDSX7Mtr8mBpvvhWTeakXgx3504fkLhUh4FUw
nsH3h/j+qke0rcSI3Bv+Yh5OWYy1SxIfyTD8HZTBvpzRtSYTmAjwKb+j1CD3npLF
v6sBHmavayJ+JfDVXgug1flx7ol9/koCQDJSdASw4SJWurbkBLh1zGJi0NeAolZH
nKnvDYBWihQVBbhKXXXDsbFc416oGswly2fT0z+Zbmdj+ST2DSYJfRlZmfy7gGK/
bairHLSaROX/0kTEcgln8UftpjxDWAMPdamDaItF9AkMzwCY7NblX3LP/wIDAQAB
o4ICEzCCAg8wHQYDVR0OBBYEFOWJI11ztfq6FoEmmvlYx/0I9RkJMB8GA1UdIwQY
MBaAFHnLkTlLeQeB06h3OoVeWpo68ggQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZWN1Uk9VdDVCNEhUcUhjNmhWNWFtanJ5Q0JBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC9lNDYzN2YtMmRlMS00ODE1LWJiNmIt
ZjExNzEyMTQ5OTY2LzEvNVlralhYTzEtcm9XZ1NhYS1WakhfUWoxR1FrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNC9lNDYzN2YtMmRlMS00ODE1LWJiNmItZjExNzEyMTQ5OTY2
LzEvZWN1Uk9VdDVCNEhUcUhjNmhWNWFtanJ5Q0JBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCkGCCsGAQUFBwEHAQH/BBowGDAWBAIAAjAQMA4DBQAqFNKB
AwUAKhTShDANBgkqhkiG9w0BAQsFAAOCAQEAk7PKr/z6rMIseLTOlEcLuMDajTnY
I+jCS9k89zFLj10LfKLpl2bxvxPyk8yGQorYavzH04AlyBmM/5Gu/C85plGUt5PE
qgzpxB+v6V8x03I4Vheg4ikwUk98X5xDGjwlrt/Mg6ycZ/KdzONwuyqLrJ1o9K42
PQiYX3xcXpP/Wm56vSirFr1nk4tCfFzpPlz/55vnURzcmTsPWwf8/Afq+bZo7C2D
9HyKX/+Uo9yxL5uITJuMoG0T6TrhQmkpUTYA8b+/S9OvpMMyWlj2y4Iz4ygbDMYV
bYSKu3CJ1LzmkAEfahYhWOUUbkxRR3/b2v0JQgOqEwR2Q0R+/Qe3xXEjCQ==
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:20 2025 by rpki-client on console.sobornost.net