Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/e1ad7a-12e7-4fd0-b61e-d1a7772db076/1/yM5CLi9XK2yH-oyDEjS2WaOQOAc.roa
File: yM5CLi9XK2yH-oyDEjS2WaOQOAc.roa (raw, json)
Hash identifier: YQCLrHs0bfdXW8OGr643mhnjzpJDOEACn1ych1yGrnQ=
Subject key identifier: C8:CE:42:2E:2F:57:2B:6C:87:FA:8C:83:12:34:B6:59:A3:90:38:07
Certificate issuer: /CN=17067977efd14bc89fb0daba03bb0f600fbb0184
Certificate serial: 019624FD435EE9B6DE32D79EF95B5EAD3191
Authority key identifier: 17:06:79:77:EF:D1:4B:C8:9F:B0:DA:BA:03:BB:0F:60:0F:BB:01:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FwZ5d-_RS8ifsNq6A7sPYA-7AYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/e1ad7a-12e7-4fd0-b61e-d1a7772db076/1/yM5CLi9XK2yH-oyDEjS2WaOQOAc.roa
Signing time: Fri 11 Apr 2025 13:14:59 +0000
ROA not before: Fri 11 Apr 2025 13:14:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20473
IP address blocks: 86.110.33.0/24 maxlen: 24
86.110.42.0/24 maxlen: 24
86.110.49.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:24:fd:43:5e:e9:b6:de:32:d7:9e:f9:5b:5e:ad:31:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17067977efd14bc89fb0daba03bb0f600fbb0184
Validity
Not Before: Apr 11 13:14:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c8ce422e2f572b6c87fa8c831234b659a3903807
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:c2:31:f9:22:86:c7:83:a3:45:0d:e4:e2:36:
11:b2:13:c3:d2:0e:86:40:b7:29:ce:03:97:c5:40:
74:25:1c:d5:3a:c4:41:ce:4d:37:4e:a3:f2:5d:73:
51:fa:90:3c:30:c6:41:ef:82:b1:3e:56:54:fd:12:
5b:c2:fc:a9:89:72:88:6f:7b:3a:39:29:82:be:90:
38:09:ea:4a:3e:58:29:b7:99:03:a6:25:bc:de:1c:
b8:b0:44:67:3e:34:a5:1c:8f:b3:74:59:aa:50:06:
e5:c7:18:b1:9c:e4:6b:1d:54:36:cc:87:29:82:49:
c9:d4:9f:77:4f:d8:a9:1e:cf:1b:35:31:06:60:7b:
8f:1e:96:99:76:e5:f3:98:3b:89:34:fa:ba:ee:1b:
0e:fa:7b:b4:82:a4:79:f5:8a:16:fe:f6:66:46:1b:
25:74:30:39:39:a4:af:a4:83:86:b1:16:be:6e:eb:
14:18:0b:64:b1:f6:b2:66:3e:17:85:26:fe:50:8d:
1f:3d:d4:af:d2:fe:bf:03:8c:9d:65:cd:c2:04:3f:
7a:e1:fd:9f:19:5e:82:54:08:bb:9c:c4:dc:0c:79:
20:3f:e9:8d:54:bb:98:1b:48:31:15:c1:0e:f2:9d:
0e:e3:e0:91:a9:94:55:48:11:76:02:31:56:26:83:
2f:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:CE:42:2E:2F:57:2B:6C:87:FA:8C:83:12:34:B6:59:A3:90:38:07
X509v3 Authority Key Identifier:
keyid:17:06:79:77:EF:D1:4B:C8:9F:B0:DA:BA:03:BB:0F:60:0F:BB:01:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FwZ5d-_RS8ifsNq6A7sPYA-7AYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/e1ad7a-12e7-4fd0-b61e-d1a7772db076/1/yM5CLi9XK2yH-oyDEjS2WaOQOAc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/e1ad7a-12e7-4fd0-b61e-d1a7772db076/1/FwZ5d-_RS8ifsNq6A7sPYA-7AYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.110.33.0/24
86.110.42.0/24
86.110.49.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:04:c4:d5:76:b4:27:20:5a:7c:d7:c1:b4:e3:a5:36:10:6d:
3f:c1:a5:25:cf:b8:9f:62:e6:d7:c0:2f:c6:c6:af:47:cd:41:
f5:3e:20:58:ea:4c:9b:13:ce:c5:82:93:d8:36:4b:4c:3b:14:
7f:85:89:83:73:8a:89:21:1f:2f:d2:5c:ed:be:8c:7f:64:98:
9e:9f:42:ce:07:f6:8e:a3:7b:fe:35:13:54:a0:dd:64:2d:cf:
e7:57:1a:3c:93:68:1d:ca:e0:b3:1b:d5:4f:a9:29:8a:d3:5e:
ea:ce:eb:88:fb:e4:07:3d:7b:5b:0d:da:a3:a2:59:8f:f9:4d:
da:4f:ef:bc:ee:cb:14:7b:61:0c:cc:93:44:88:57:56:50:73:
3a:a3:c1:ec:be:6c:96:35:97:f5:c4:5f:b8:6c:00:3e:08:b3:
27:b5:4e:75:8c:ba:73:67:73:fb:51:af:9c:b9:75:cb:47:f7:
92:1b:b5:cd:c9:6c:5b:2c:1a:e2:87:6a:54:60:ad:ec:61:31:
c9:d5:3b:7c:ae:27:67:e3:99:ca:81:dc:b1:12:6b:20:23:d7:
79:b8:aa:d2:33:06:d1:fa:66:e2:c6:f4:f3:66:44:b5:c1:b7:
e6:75:06:f3:0f:12:86:a8:81:95:5f:ea:f7:74:4e:93:f9:92:
40:d7:3f:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:30 2025 by rpki-client on console.sobornost.net