Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/c6570e-f22b-488b-a3fe-fdcb93b491e5/1/YZzAhQaL88-jCpJ3mBWG-64btDU.roa
File: YZzAhQaL88-jCpJ3mBWG-64btDU.roa (raw, json)
Hash identifier: RCtjkx1poAnNZoTiswLMPNgLTI2laFXye8HspCS+ElI=
Subject key identifier: 61:9C:C0:85:06:8B:F3:CF:A3:0A:92:77:98:15:86:FB:AE:1B:B4:35
Certificate issuer: /CN=0ba068483acbc96a31e28bcda54bbeafe3482d19
Certificate serial: 01942826111607F239A9B9C83C268F824CF3
Authority key identifier: 0B:A0:68:48:3A:CB:C9:6A:31:E2:8B:CD:A5:4B:BE:AF:E3:48:2D:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C6BoSDrLyWox4ovNpUu-r-NILRk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/c6570e-f22b-488b-a3fe-fdcb93b491e5/1/YZzAhQaL88-jCpJ3mBWG-64btDU.roa
Signing time: Thu 02 Jan 2025 17:52:50 +0000
ROA not before: Thu 02 Jan 2025 17:52:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 204345
IP address blocks: 2001:678:634::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:26:11:16:07:f2:39:a9:b9:c8:3c:26:8f:82:4c:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ba068483acbc96a31e28bcda54bbeafe3482d19
Validity
Not Before: Jan 2 17:52:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=619cc085068bf3cfa30a9277981586fbae1bb435
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:b7:44:f2:05:d9:36:1f:57:ff:ee:e3:8c:b9:
ea:a6:f4:48:69:f8:45:39:36:83:30:6f:73:ce:03:
5d:87:7c:53:56:10:11:e2:7b:e1:3b:18:9c:47:47:
ca:5a:e8:b4:18:77:b7:58:d6:0e:92:57:9b:31:e5:
a5:d3:66:a4:64:a0:d6:61:1c:14:0c:50:cb:3d:c5:
8f:df:63:05:3e:2a:eb:73:74:6e:fd:ed:e9:64:b1:
5c:b5:ad:9d:c1:22:d6:b3:93:84:0d:68:67:92:6e:
49:00:29:56:01:ac:35:cf:4c:b2:31:15:42:8c:87:
c2:3d:75:95:08:c9:95:eb:9c:0c:15:56:f0:a0:e0:
30:34:f0:fc:f7:fe:77:13:e9:e3:27:33:d1:74:cc:
1d:8a:a4:61:ef:28:67:e1:aa:41:70:45:24:76:e6:
78:88:24:e8:e0:1b:7a:04:29:83:2c:fa:8d:ac:47:
06:60:92:b1:36:bc:88:d8:0f:09:23:6b:bf:a2:95:
22:92:98:61:38:f1:9e:36:5f:51:30:50:8f:09:1b:
39:a0:b9:c7:dd:2c:16:37:21:10:df:49:fe:90:2d:
32:e9:cd:ce:bf:f8:31:12:38:e6:f5:ad:ca:69:80:
3d:5e:9f:13:91:47:da:a7:91:b8:e8:ea:72:e4:b2:
b2:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:9C:C0:85:06:8B:F3:CF:A3:0A:92:77:98:15:86:FB:AE:1B:B4:35
X509v3 Authority Key Identifier:
keyid:0B:A0:68:48:3A:CB:C9:6A:31:E2:8B:CD:A5:4B:BE:AF:E3:48:2D:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C6BoSDrLyWox4ovNpUu-r-NILRk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/c6570e-f22b-488b-a3fe-fdcb93b491e5/1/YZzAhQaL88-jCpJ3mBWG-64btDU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/c6570e-f22b-488b-a3fe-fdcb93b491e5/1/C6BoSDrLyWox4ovNpUu-r-NILRk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:634::/48
Signature Algorithm: sha256WithRSAEncryption
c7:34:bf:c8:61:93:0c:d5:2e:21:fe:87:e4:91:4f:81:87:e3:
a5:87:48:2e:d6:8e:13:95:4c:54:c5:fb:6c:d3:1a:6e:c5:85:
62:68:88:f9:ec:c6:45:b0:04:39:ad:2a:d4:7a:9c:fd:10:56:
55:7a:9c:62:0f:25:3a:b7:76:d7:ff:37:76:a2:f0:83:11:4d:
f0:a4:a0:56:7c:7c:d8:1d:c0:64:56:56:66:d6:b2:ee:d8:34:
15:09:0c:be:ff:33:7e:fb:c4:df:f4:4f:02:5a:1b:75:64:eb:
a6:91:60:fa:3f:e4:59:59:5b:84:19:be:9f:b3:eb:d6:8f:93:
cb:40:7f:e3:7e:fe:e9:ea:69:e1:9a:81:b8:1d:38:f3:32:93:
e3:69:1f:0f:c6:34:7c:63:ea:8e:a1:8c:64:af:3f:81:fc:67:
a6:2d:33:ab:e9:6b:04:a0:43:40:30:5b:6d:f2:d7:d5:06:69:
e6:30:83:a0:f0:6f:7b:70:f7:d1:30:37:40:21:9a:64:fc:46:
71:fe:bb:38:7d:f6:c2:b7:fd:3b:d1:2d:09:14:6c:3a:16:d9:
04:18:a5:f9:22:93:21:f8:5e:ee:b9:93:00:2a:e0:e2:cf:1e:
0b:86:9f:a0:f1:82:55:05:9b:78:e6:db:97:5f:c0:df:fa:15:
4d:12:93:1a
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAZQoJhEWB/I5qbnIPCaPgkzzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBiYTA2ODQ4M2FjYmM5NmEzMWUyOGJjZGE1NGJiZWFmZTM0
ODJkMTkwHhcNMjUwMTAyMTc1MjUwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MTljYzA4NTA2OGJmM2NmYTMwYTkyNzc5ODE1ODZmYmFlMWJiNDM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmbdE8gXZNh9X/+7jjLnqpvRIafhF
OTaDMG9zzgNdh3xTVhAR4nvhOxicR0fKWui0GHe3WNYOklebMeWl02akZKDWYRwU
DFDLPcWP32MFPirrc3Ru/e3pZLFcta2dwSLWs5OEDWhnkm5JAClWAaw1z0yyMRVC
jIfCPXWVCMmV65wMFVbwoOAwNPD89/53E+njJzPRdMwdiqRh7yhn4apBcEUkduZ4
iCTo4Bt6BCmDLPqNrEcGYJKxNryI2A8JI2u/opUikphhOPGeNl9RMFCPCRs5oLnH
3SwWNyEQ30n+kC0y6c3Ov/gxEjjm9a3KaYA9Xp8TkUfap5G46Opy5LKyZQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFGGcwIUGi/PPowqSd5gVhvuuG7Q1MB8GA1UdIwQY
MBaAFAugaEg6y8lqMeKLzaVLvq/jSC0ZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQzZCb1NEckx5V294NG92TnBVdS1yLU5JTFJrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC9jNjU3MGUtZjIyYi00ODhiLWEzZmUt
ZmRjYjkzYjQ5MWU1LzEvWVp6QWhRYUw4OC1qQ3BKM21CV0ctNjRidERVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMC9jNjU3MGUtZjIyYi00ODhiLWEzZmUtZmRjYjkzYjQ5MWU1
LzEvQzZCb1NEckx5V294NG92TnBVdS1yLU5JTFJrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeAY0
MA0GCSqGSIb3DQEBCwUAA4IBAQDHNL/IYZMM1S4h/ofkkU+Bh+Olh0gu1o4TlUxU
xfts0xpuxYViaIj57MZFsAQ5rSrUepz9EFZVepxiDyU6t3bX/zd2ovCDEU3wpKBW
fHzYHcBkVlZm1rLu2DQVCQy+/zN++8Tf9E8CWht1ZOumkWD6P+RZWVuEGb6fs+vW
j5PLQH/jfv7p6mnhmoG4HTjzMpPjaR8PxjR8Y+qOoYxkrz+B/GemLTOr6WsEoENA
MFtt8tfVBmnmMIOg8G97cPfRMDdAIZpk/EZx/rs4ffbCt/070S0JFGw6FtkEGKX5
IpMh+F7uuZMAKuDizx4Lhp+g8YJVBZt45tuXX8Df+hVNEpMa
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:34 2025 by rpki-client on console.sobornost.net