Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/c4160d-772b-4567-a54e-751ac6807b04/1/CRKNGf_xuZYF0kNapyVmFyPmlEw.roa
File: CRKNGf_xuZYF0kNapyVmFyPmlEw.roa (raw, json)
Hash identifier: No5hma8g70yPMrFd8Y5GeYsaZ5JGY9aPRg048GjHko8=
Subject key identifier: 09:12:8D:19:FF:F1:B9:96:05:D2:43:5A:A7:25:66:17:23:E6:94:4C
Certificate issuer: /CN=e8d672fa60aee4c273a11507f49b584dc552c472
Certificate serial: 01942067FB43CA38931DD29D59B287C41A9A
Authority key identifier: E8:D6:72:FA:60:AE:E4:C2:73:A1:15:07:F4:9B:58:4D:C5:52:C4:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6NZy-mCu5MJzoRUH9JtYTcVSxHI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/c4160d-772b-4567-a54e-751ac6807b04/1/CRKNGf_xuZYF0kNapyVmFyPmlEw.roa
Signing time: Wed 01 Jan 2025 05:47:52 +0000
ROA not before: Wed 01 Jan 2025 05:47:52 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 35236
IP address blocks: 2001:67c:e2c::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:67:fb:43:ca:38:93:1d:d2:9d:59:b2:87:c4:1a:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8d672fa60aee4c273a11507f49b584dc552c472
Validity
Not Before: Jan 1 05:47:52 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=09128d19fff1b99605d2435aa725661723e6944c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:d2:52:57:ac:1f:d5:6d:d3:49:25:af:29:ab:
d2:bc:9b:49:7d:8c:d9:e9:7a:21:72:ce:ca:0d:84:
8a:0c:f5:b3:7a:c5:8e:99:c3:18:2f:c1:c2:aa:6b:
24:98:0b:48:0f:b1:0b:6d:01:3e:aa:d2:d8:ec:ea:
c7:88:93:32:9f:5f:77:f6:6d:0d:86:38:5e:e3:97:
2e:b1:e4:16:d1:27:a0:2f:cc:b7:e4:1e:5f:4e:bd:
a6:79:f8:ec:d7:5c:bd:11:fe:11:6e:99:22:93:28:
fe:ed:b3:5a:cf:8f:1b:53:79:73:f9:e6:c4:6d:f7:
07:1c:d8:6c:ea:ac:eb:09:11:1c:f4:dc:96:71:d1:
ad:b5:e0:f3:a9:f9:c0:c6:e6:e7:b3:3f:c3:7b:d3:
18:f9:39:17:41:7a:6b:68:fb:4e:38:2e:7f:53:ed:
48:01:c6:8d:e8:57:e1:8f:db:52:40:10:63:66:71:
1b:2e:f1:0b:c6:3f:64:c6:0e:13:8f:bf:41:4e:c2:
70:2a:be:e7:9d:23:04:33:16:63:1e:15:cd:8e:37:
49:cd:8e:c5:8e:9f:9d:68:7a:44:68:95:d1:4b:ad:
84:b6:6c:a5:d8:01:28:80:dd:63:09:67:ae:5d:1c:
0e:46:8c:03:38:c2:1e:19:0c:bd:19:2f:ae:2d:7a:
d7:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:12:8D:19:FF:F1:B9:96:05:D2:43:5A:A7:25:66:17:23:E6:94:4C
X509v3 Authority Key Identifier:
keyid:E8:D6:72:FA:60:AE:E4:C2:73:A1:15:07:F4:9B:58:4D:C5:52:C4:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6NZy-mCu5MJzoRUH9JtYTcVSxHI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/c4160d-772b-4567-a54e-751ac6807b04/1/CRKNGf_xuZYF0kNapyVmFyPmlEw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/c4160d-772b-4567-a54e-751ac6807b04/1/6NZy-mCu5MJzoRUH9JtYTcVSxHI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:e2c::/48
Signature Algorithm: sha256WithRSAEncryption
3e:c7:a0:2c:10:28:85:3f:34:f1:77:74:58:a6:9c:0d:f6:dc:
34:32:19:79:c4:7c:a4:3d:52:54:b6:36:dd:ca:ef:84:aa:9b:
49:3c:0c:ec:36:16:78:38:80:e6:6c:d7:fa:5e:8b:4f:bc:b4:
d6:a2:d7:c6:b4:4c:b8:89:32:a2:62:3d:64:6f:0a:e2:d5:50:
25:51:2a:ca:95:a0:bf:48:37:63:2c:17:35:91:50:66:1a:dc:
46:79:e0:5c:03:da:00:5a:eb:63:07:15:a0:51:5c:89:fb:12:
b5:21:43:1b:f9:21:d0:47:ce:5f:35:18:1d:52:42:3c:31:1c:
2e:e9:78:08:67:cb:0a:85:36:b0:43:c0:20:b0:f2:0e:37:1c:
7d:cb:5f:f7:cb:36:01:fc:24:a0:4d:10:cf:08:fa:f3:cb:c8:
06:29:f0:69:71:1a:9f:10:b0:48:cc:77:33:7f:f8:29:b8:97:
70:35:96:7d:e7:8e:8c:f2:50:b1:ea:6a:c1:82:23:c9:17:64:
ff:bc:f9:75:12:f7:36:64:13:07:f4:a2:72:0f:c5:80:53:53:
99:5c:0d:a3:48:3e:da:32:2e:4c:57:ec:fc:6c:97:ae:2e:7c:
32:28:9d:7b:e4:c5:a0:40:ee:51:f3:1e:24:0b:e8:e6:e5:f8:
d9:75:f1:5a
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAZQgZ/tDyjiTHdKdWbKHxBqaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU4ZDY3MmZhNjBhZWU0YzI3M2ExMTUwN2Y0OWI1ODRkYzU1
MmM0NzIwHhcNMjUwMTAxMDU0NzUyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwOTEyOGQxOWZmZjFiOTk2MDVkMjQzNWFhNzI1NjYxNzIzZTY5NDRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtdJSV6wf1W3TSSWvKavSvJtJfYzZ
6Xohcs7KDYSKDPWzesWOmcMYL8HCqmskmAtID7ELbQE+qtLY7OrHiJMyn1939m0N
hjhe45cuseQW0SegL8y35B5fTr2mefjs11y9Ef4Rbpkikyj+7bNaz48bU3lz+ebE
bfcHHNhs6qzrCREc9NyWcdGtteDzqfnAxubnsz/De9MY+TkXQXpraPtOOC5/U+1I
AcaN6Ffhj9tSQBBjZnEbLvELxj9kxg4Tj79BTsJwKr7nnSMEMxZjHhXNjjdJzY7F
jp+daHpEaJXRS62Etmyl2AEogN1jCWeuXRwORowDOMIeGQy9GS+uLXrX8wIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFAkSjRn/8bmWBdJDWqclZhcj5pRMMB8GA1UdIwQY
MBaAFOjWcvpgruTCc6EVB/SbWE3FUsRyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNk5aeS1tQ3U1TUp6b1JVSDlKdFlUY1ZTeEhJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy9jNDE2MGQtNzcyYi00NTY3LWE1NGUt
NzUxYWM2ODA3YjA0LzEvQ1JLTkdmX3h1WllGMGtOYXB5Vm1GeVBtbEV3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMy9jNDE2MGQtNzcyYi00NTY3LWE1NGUtNzUxYWM2ODA3YjA0
LzEvNk5aeS1tQ3U1TUp6b1JVSDlKdFlUY1ZTeEhJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfA4s
MA0GCSqGSIb3DQEBCwUAA4IBAQA+x6AsECiFPzTxd3RYppwN9tw0Mhl5xHykPVJU
tjbdyu+EqptJPAzsNhZ4OIDmbNf6XotPvLTWotfGtEy4iTKiYj1kbwri1VAlUSrK
laC/SDdjLBc1kVBmGtxGeeBcA9oAWutjBxWgUVyJ+xK1IUMb+SHQR85fNRgdUkI8
MRwu6XgIZ8sKhTawQ8AgsPIONxx9y1/3yzYB/CSgTRDPCPrzy8gGKfBpcRqfELBI
zHczf/gpuJdwNZZ9546M8lCx6mrBgiPJF2T/vPl1Evc2ZBMH9KJyD8WAU1OZXA2j
SD7aMi5MV+z8bJeuLnwyKJ175MWgQO5R8x4kC+jm5fjZdfFa
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:35 2025 by rpki-client on console.sobornost.net