Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/8aba71-3ba8-4b8d-8eb6-346a3ec1868c/1/YY-hoyGXDDo8SiePezL_ZO2nNOw.roa
File: YY-hoyGXDDo8SiePezL_ZO2nNOw.roa (raw, json)
Hash identifier: A3j7uoljgavovkzwgqN6nFVhnXRD4UmTm39D3QvLFO0=
Subject key identifier: 61:8F:A1:A3:21:97:0C:3A:3C:4A:27:8F:7B:32:FF:64:ED:A7:34:EC
Certificate issuer: /CN=27e0f7bbbe4031a24ef1b9db196aab0642e84a06
Certificate serial: 01941FFA57D10CD554B5667BEE4BFBBB3B66
Authority key identifier: 27:E0:F7:BB:BE:40:31:A2:4E:F1:B9:DB:19:6A:AB:06:42:E8:4A:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J-D3u75AMaJO8bnbGWqrBkLoSgY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/8aba71-3ba8-4b8d-8eb6-346a3ec1868c/1/YY-hoyGXDDo8SiePezL_ZO2nNOw.roa
Signing time: Wed 01 Jan 2025 03:48:07 +0000
ROA not before: Wed 01 Jan 2025 03:48:07 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211174
IP address blocks: 146.185.94.0/24 maxlen: 24
2a04:f340:1000::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:57:d1:0c:d5:54:b5:66:7b:ee:4b:fb:bb:3b:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27e0f7bbbe4031a24ef1b9db196aab0642e84a06
Validity
Not Before: Jan 1 03:48:07 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=618fa1a321970c3a3c4a278f7b32ff64eda734ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:b4:a4:4f:be:ba:4f:17:01:42:ef:18:f2:8a:
68:22:97:fb:17:05:ca:a0:70:28:0f:ab:4c:06:88:
cc:79:20:4d:d6:a2:f6:25:5d:8e:ad:86:11:92:63:
fd:ad:e2:85:28:be:3d:96:9c:8d:aa:11:83:44:a7:
62:08:bf:fd:88:ae:56:51:0b:f0:d9:4e:84:40:3c:
53:48:21:63:51:e0:16:5f:bd:14:00:76:dd:0a:56:
3a:7f:ee:9a:58:02:1e:ea:91:3c:65:28:29:ba:f0:
6b:72:f8:2f:d4:0c:28:5d:c2:3b:b9:39:11:67:de:
a8:cb:6a:9a:6b:ab:b2:90:dc:a7:9e:46:20:f9:90:
72:78:2f:32:ce:58:06:9a:ff:d5:fb:0e:3b:20:1c:
44:f8:74:00:e7:a9:ec:69:ba:41:28:89:ee:8b:9e:
a5:a2:b5:6f:0e:0b:6b:b7:46:9a:cd:4e:df:c1:bb:
0c:21:e1:c9:2d:ea:4a:96:f2:06:d3:f0:95:18:9f:
47:3e:04:86:d8:19:bb:93:30:10:31:c4:c1:16:d5:
11:80:4a:43:c2:57:b3:af:e3:b6:a3:b7:81:90:ff:
ee:67:e2:c3:88:4a:9c:40:65:ca:fa:cf:6f:be:74:
2d:94:c1:66:ce:4c:0f:21:f9:73:11:80:1f:d9:42:
02:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:8F:A1:A3:21:97:0C:3A:3C:4A:27:8F:7B:32:FF:64:ED:A7:34:EC
X509v3 Authority Key Identifier:
keyid:27:E0:F7:BB:BE:40:31:A2:4E:F1:B9:DB:19:6A:AB:06:42:E8:4A:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J-D3u75AMaJO8bnbGWqrBkLoSgY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/8aba71-3ba8-4b8d-8eb6-346a3ec1868c/1/YY-hoyGXDDo8SiePezL_ZO2nNOw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/8aba71-3ba8-4b8d-8eb6-346a3ec1868c/1/J-D3u75AMaJO8bnbGWqrBkLoSgY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.185.94.0/24
IPv6:
2a04:f340:1000::/40
Signature Algorithm: sha256WithRSAEncryption
66:d8:e0:93:f6:35:95:fc:84:6b:e2:af:0b:7b:64:46:31:2a:
89:68:d8:69:ac:e3:42:74:ea:13:5f:67:45:a5:ab:89:c6:57:
a7:1c:68:1f:55:b6:cb:ec:42:c6:32:1b:bd:2e:52:b7:2e:3d:
fd:e5:c6:75:e9:0c:e7:ca:e1:4a:68:8f:73:14:36:a5:5e:66:
a3:20:c9:14:0a:1f:9e:32:00:d4:83:af:67:94:f6:db:b5:62:
de:71:7e:e0:77:2a:bc:0f:78:94:13:0c:8e:31:6f:f8:9a:f0:
d0:fd:b6:b7:57:7f:71:12:d7:05:f0:33:05:03:5d:19:62:b1:
32:6d:d1:07:d6:d6:05:f7:f3:46:a6:cf:ab:24:28:a4:36:6b:
b7:1e:6e:2b:3a:58:e6:c9:16:d4:23:b1:fd:d0:7c:ea:1d:b4:
01:c8:5c:c0:b7:e2:3d:28:c5:8b:85:19:ed:f0:75:37:c5:b5:
d2:e6:00:6d:45:42:e1:14:f4:dd:41:10:0b:df:17:fb:26:64:
0a:e4:de:79:f7:89:01:81:6d:79:77:33:89:7d:bc:66:38:bc:
e3:6b:49:91:b6:2e:eb:a3:f3:5c:61:47:65:75:27:66:08:50:
2a:97:f6:83:28:d5:4b:d3:ad:af:80:a0:67:0b:48:7b:f9:6e:
2b:02:8e:13
-----BEGIN CERTIFICATE-----
MIIFDTCCA/WgAwIBAgISAZQf+lfRDNVUtWZ77kv7uztmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI3ZTBmN2JiYmU0MDMxYTI0ZWYxYjlkYjE5NmFhYjA2NDJl
ODRhMDYwHhcNMjUwMTAxMDM0ODA3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MThmYTFhMzIxOTcwYzNhM2M0YTI3OGY3YjMyZmY2NGVkYTczNGVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqbSkT766TxcBQu8Y8opoIpf7FwXK
oHAoD6tMBojMeSBN1qL2JV2OrYYRkmP9reKFKL49lpyNqhGDRKdiCL/9iK5WUQvw
2U6EQDxTSCFjUeAWX70UAHbdClY6f+6aWAIe6pE8ZSgpuvBrcvgv1AwoXcI7uTkR
Z96oy2qaa6uykNynnkYg+ZByeC8yzlgGmv/V+w47IBxE+HQA56nsabpBKInui56l
orVvDgtrt0aazU7fwbsMIeHJLepKlvIG0/CVGJ9HPgSG2Bm7kzAQMcTBFtURgEpD
wlezr+O2o7eBkP/uZ+LDiEqcQGXK+s9vvnQtlMFmzkwPIflzEYAf2UICfwIDAQAB
o4ICGTCCAhUwHQYDVR0OBBYEFGGPoaMhlww6PEonj3sy/2TtpzTsMB8GA1UdIwQY
MBaAFCfg97u+QDGiTvG52xlqqwZC6EoGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSi1EM3U3NUFNYUpPOGJuYkdXcXJCa0xvU2dZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC84YWJhNzEtM2JhOC00YjhkLThlYjYt
MzQ2YTNlYzE4NjhjLzEvWVktaG95R1hERG84U2llUGV6TF9aTzJuTk93LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOC84YWJhNzEtM2JhOC00YjhkLThlYjYtMzQ2YTNlYzE4Njhj
LzEvSi1EM3U3NUFNYUpPOGJuYkdXcXJCa0xvU2dZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC8GCCsGAQUFBwEHAQH/BCAwHjAMBAIAATAGAwQAkrleMA4E
AgACMAgDBgAqBPNAEDANBgkqhkiG9w0BAQsFAAOCAQEAZtjgk/Y1lfyEa+KvC3tk
RjEqiWjYaazjQnTqE19nRaWricZXpxxoH1W2y+xCxjIbvS5Sty49/eXGdekM58rh
SmiPcxQ2pV5moyDJFAofnjIA1IOvZ5T227Vi3nF+4HcqvA94lBMMjjFv+Jrw0P22
t1d/cRLXBfAzBQNdGWKxMm3RB9bWBffzRqbPqyQopDZrtx5uKzpY5skW1COx/dB8
6h20AchcwLfiPSjFi4UZ7fB1N8W10uYAbUVC4RT03UEQC98X+yZkCuTeefeJAYFt
eXcziX28Zji842tJkbYu66PzXGFHZXUnZghQKpf2gyjVS9Otr4CgZwtIe/luKwKO
Ew==
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:22 2025 by rpki-client on console.sobornost.net